Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
File: U7EFBlwNkTm1_-3DLJAM9ktDEus.mft (raw, json)
Hash identifier: HNyJNsUPThswRgL45GWDs7hJtxWLfZdiPQM/Et/3Itw=
Subject key identifier: 7A:CD:FC:82:73:3B:AC:54:EB:E6:17:CD:BF:8E:FC:85:09:C1:0E:65
Authority key identifier: 53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
Certificate issuer: /CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Certificate serial: 01974A7ABBAA80A12E6FCAC5D9BC6B8AF662
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 13:00:46 +0000
Manifest this update: Sat 07 Jun 2025 13:00:46 +0000
Manifest next update: Sun 08 Jun 2025 13:00:46 +0000
Files and hashes: 1: U7EFBlwNkTm1_-3DLJAM9ktDEus.crl (hash: zm7G+fB1fCKyCHcbtEXt3zde5LP5c0y14Qj2KKKEgJU=)
2: dXA2sXCeF-zEI-_J4kU7kczSGDo.roa (hash: yLUH5uzp/Ib7vlJR5HEnjKQN0s3hZM+CwSBPhsePj6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:bb:aa:80:a1:2e:6f:ca:c5:d9:bc:6b:8a:f6:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Validity
Not Before: Jun 7 13:00:46 2025 GMT
Not After : Jun 8 13:00:46 2025 GMT
Subject: CN=7acdfc82733bac54ebe617cdbf8efc8509c10e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:18:e0:ae:94:ed:15:7c:2c:5c:b9:41:18:e2:
be:57:34:99:96:43:22:9e:83:79:8f:05:cc:8a:fc:
42:62:f5:a3:98:02:e3:65:7b:37:7d:2b:d7:30:cd:
c0:af:07:f7:70:41:14:c8:50:91:71:58:76:b7:b3:
08:ae:7a:91:60:12:fb:74:6f:f3:0d:84:fc:61:2b:
49:5c:e3:81:6b:a8:3f:b2:6e:0f:f4:7b:85:65:35:
c5:7d:00:de:62:b6:90:75:df:57:51:0b:2e:19:8f:
c3:2c:98:bd:a6:28:ab:84:67:39:b1:93:60:d3:36:
42:d4:76:12:ca:75:84:19:fe:2f:36:01:82:8e:b3:
e4:f2:9b:4d:fe:7c:5f:a4:15:bd:7b:a7:f7:be:da:
f3:e6:9c:5e:10:8d:83:71:3e:3e:82:95:4b:93:07:
5f:c2:e3:80:d0:bb:6c:ee:b3:f0:ea:36:a5:21:fa:
35:d7:98:c6:f4:f6:44:ee:de:c6:dd:6c:0b:28:82:
a4:51:48:75:37:92:bd:49:91:10:62:24:51:a6:7b:
fc:36:7d:a2:fe:cc:ce:eb:4a:c4:07:bd:43:24:cb:
ba:1f:f4:d5:43:b6:c5:3a:8f:b7:49:e3:09:af:c4:
fd:2c:f8:5f:51:35:2e:be:4a:59:bd:b8:b4:19:82:
07:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:CD:FC:82:73:3B:AC:54:EB:E6:17:CD:BF:8E:FC:85:09:C1:0E:65
X509v3 Authority Key Identifier:
keyid:53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:98:86:1c:58:aa:21:22:cc:ab:9a:e9:ec:8d:4a:3e:fa:f0:
69:49:0a:76:4b:0f:09:e2:98:68:92:ba:08:4c:d8:71:b6:47:
6f:c3:84:84:09:1c:38:7a:39:a1:f1:d0:33:d7:dd:1e:fa:30:
85:97:43:d8:69:ff:5e:ff:ed:23:68:ff:ec:d4:1e:c5:39:2c:
c6:76:4c:04:23:a1:e8:91:09:59:a3:57:e3:64:d6:21:f5:68:
db:27:d4:45:70:44:90:8c:d9:cf:fc:d9:2a:a3:a8:61:10:dc:
1c:20:c0:ef:02:f7:26:90:7d:8a:86:e6:93:08:f6:48:43:89:
bc:b1:8e:9c:c5:29:c0:6f:a4:e1:d3:49:6a:66:bf:42:80:8b:
4e:72:02:94:6a:a5:44:a7:8e:f4:bc:d7:31:1e:05:79:ff:6f:
2b:1a:62:bf:52:37:07:96:95:5f:15:bc:a6:01:4f:19:e2:4c:
a0:62:d0:c5:09:b0:95:a9:a1:fb:24:50:3b:84:91:98:da:9d:
e7:d2:55:08:96:89:d9:ba:91:2c:2c:aa:3a:d3:b0:d6:f0:9e:
b1:f5:22:d9:70:85:1e:98:29:d7:f5:c1:3a:54:e2:95:f7:64:
49:51:8d:79:ff:dc:34:4c:27:40:55:9c:62:4d:12:85:e4:bd:
50:b4:f7:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:58:49 2025 by rpki-client