Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
File: uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft (raw, json)
Hash identifier: tKEM3Ts8Aes5t1+f7vhWpSdlhCicAMY+Iq9+yBb5BfQ=
Subject key identifier: AC:9B:45:3B:99:6A:D6:E6:9B:90:16:58:9E:27:6F:7B:47:99:79:E8
Authority key identifier: B8:5E:0B:E6:B7:27:9C:DE:CF:78:BD:D6:41:05:F8:44:3D:0C:0C:02
Certificate issuer: /CN=b85e0be6b7279cdecf78bdd64105f8443d0c0c02
Certificate serial: 019923A0B4971EB3F87EC4CA4C7D28447A66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
Manifest number: 10C3
Signing time: Sun 07 Sep 2025 10:02:38 +0000
Manifest this update: Sun 07 Sep 2025 10:02:38 +0000
Manifest next update: Mon 08 Sep 2025 10:02:38 +0000
Files and hashes: 1: uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl (hash: hUUt/Qan2YovZflAwBImsSX45TRqQiRGuKtdQXZoYWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:b4:97:1e:b3:f8:7e:c4:ca:4c:7d:28:44:7a:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85e0be6b7279cdecf78bdd64105f8443d0c0c02
Validity
Not Before: Sep 7 10:02:38 2025 GMT
Not After : Sep 8 10:02:38 2025 GMT
Subject: CN=ac9b453b996ad6e69b9016589e276f7b479979e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2a:6e:ea:37:fd:78:9f:a9:a2:b3:d6:b7:61:
bf:79:29:60:bb:b7:82:65:b6:93:ad:75:13:4c:49:
de:a0:3a:eb:aa:8f:59:6e:7f:ef:f3:fc:8b:b6:c1:
ea:22:b5:4d:67:4f:d2:dd:bd:9b:d3:ed:60:78:f1:
6f:22:90:a5:d4:77:1a:10:d8:c1:54:c0:80:d3:b7:
3b:3a:5c:1b:4c:c5:9f:98:e3:f1:42:26:c5:66:72:
36:cf:2d:b8:7c:e7:d4:f0:4b:8a:2d:09:30:b8:a1:
d3:19:5c:a9:d8:e5:57:0e:23:ea:fa:a5:08:ef:67:
f9:ce:5d:01:ce:b5:d7:30:82:cb:71:54:97:6f:66:
66:ac:cb:1c:7e:58:e6:c7:67:50:78:2b:a7:12:43:
96:d3:66:dd:68:96:2e:5f:7a:27:4b:d9:0f:90:eb:
84:0b:90:93:7d:9c:50:16:6a:0b:a3:5e:80:05:66:
cd:a7:ea:0a:86:f1:5a:02:8d:5d:f6:63:a9:08:3d:
fe:b3:dd:4d:f5:fa:44:0d:12:8d:d5:7b:1d:d3:64:
80:ff:a1:a8:45:40:40:d5:e8:c4:11:ab:d5:eb:7f:
f1:44:a2:e5:6c:fb:b2:19:2b:45:aa:7e:d1:30:35:
b2:5b:5e:f7:1d:f8:52:fe:79:dc:e3:fa:b8:9e:56:
b7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:9B:45:3B:99:6A:D6:E6:9B:90:16:58:9E:27:6F:7B:47:99:79:E8
X509v3 Authority Key Identifier:
keyid:B8:5E:0B:E6:B7:27:9C:DE:CF:78:BD:D6:41:05:F8:44:3D:0C:0C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:90:39:06:28:f4:4d:c5:7d:68:96:9b:8b:39:e7:06:2b:58:
40:12:0a:5a:d7:41:27:88:82:e9:21:9c:36:54:d5:c1:c4:dc:
ae:7f:dc:73:13:b4:3d:bd:1c:cf:08:69:0a:b4:fc:38:f9:a7:
1b:6a:a9:6d:01:97:00:05:0f:63:5b:2a:54:8f:b8:b1:22:25:
a9:eb:dc:91:c1:68:2b:4e:44:18:cf:dc:3c:05:ac:14:af:ca:
49:69:fc:c7:e7:ea:ce:67:0c:13:72:79:a9:91:74:e2:52:44:
f2:36:53:f2:0c:99:3b:53:88:a8:aa:cb:9b:eb:b6:e9:0f:b6:
33:d4:31:61:b5:e6:fb:9b:6c:2b:d9:1f:b9:0c:2f:cc:f0:a3:
c0:b3:e4:25:6d:7c:5c:37:32:ca:9c:2f:67:65:e9:be:85:04:
7f:d3:06:fb:eb:a4:1f:da:b7:ff:f6:6a:42:ef:05:43:51:2a:
bc:7a:93:ea:24:87:7d:93:65:13:1a:ea:ee:c4:eb:b9:f4:6e:
e2:f7:cc:3f:c2:87:2e:1d:48:4c:0c:d7:73:3a:61:62:d5:f0:
bb:29:fa:37:ad:a6:3f:0f:03:49:2a:60:e0:ad:89:94:44:9c:
78:da:cb:f2:c1:54:29:b8:ed:d0:e3:26:0c:cd:36:ec:36:bf:
4e:06:40:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:18:38 2025 by rpki-client