Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft
File: ulnZ9a887kQgFLc1lhxzuWkmDhk.mft (raw, json)
Hash identifier: hza24qK+ywSj2FD56s/S9HRxjS0i/Wa/aYHHNq7c0ro=
Subject key identifier: 7C:52:E4:37:1F:11:01:82:C0:C6:67:42:8E:ED:11:49:1F:80:B8:12
Authority key identifier: BA:59:D9:F5:AF:3C:EE:44:20:14:B7:35:96:1C:73:B9:69:26:0E:19
Certificate issuer: /CN=ba59d9f5af3cee442014b735961c73b969260e19
Certificate serial: 0199239FC25BA875D937531094E4FF9B4D40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ulnZ9a887kQgFLc1lhxzuWkmDhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft
Manifest number: 166D
Signing time: Sun 07 Sep 2025 10:01:36 +0000
Manifest this update: Sun 07 Sep 2025 10:01:36 +0000
Manifest next update: Mon 08 Sep 2025 10:01:36 +0000
Files and hashes: 1: ulnZ9a887kQgFLc1lhxzuWkmDhk.crl (hash: dOsqkq4MFYZRLSknti9pgtFzbCmcnNwbhP97d5muBN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/ulnZ9a887kQgFLc1lhxzuWkmDhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:c2:5b:a8:75:d9:37:53:10:94:e4:ff:9b:4d:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba59d9f5af3cee442014b735961c73b969260e19
Validity
Not Before: Sep 7 10:01:36 2025 GMT
Not After : Sep 8 10:01:36 2025 GMT
Subject: CN=7c52e4371f110182c0c667428eed11491f80b812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3e:c2:ed:9f:35:90:9a:be:44:db:2a:15:6e:
2e:48:e8:00:b9:4b:e2:a1:8c:dc:33:d1:fc:d0:7d:
d2:82:84:43:7a:fe:01:7e:70:8f:f7:3b:b8:c7:fc:
a4:80:df:40:e6:b8:b6:1b:b5:9e:53:29:91:c2:95:
39:f2:a0:e8:a5:26:72:57:99:0b:14:66:66:12:32:
71:90:e5:17:bf:bd:10:71:b8:3a:53:f0:d1:32:b7:
db:21:3a:c2:2c:c3:15:9e:e7:72:19:4d:11:ab:d7:
c7:f5:02:f5:31:da:89:fc:60:e5:51:70:ee:cc:23:
9e:39:1a:06:83:a1:5e:02:1f:2e:05:18:fe:2e:11:
b1:1f:16:4e:09:e7:e1:57:0e:39:a8:28:53:9d:eb:
59:4c:1f:3e:99:4e:1a:47:34:cc:7c:01:6c:fc:48:
dc:e5:12:a7:ae:dd:52:95:f0:ca:6b:fe:d2:7a:b0:
d6:d9:6d:23:bb:b6:29:16:d5:c0:e7:15:f1:a4:e6:
5b:84:73:ae:52:f1:1b:f8:1b:c0:21:a9:0e:bc:81:
36:c4:8d:14:d4:f8:32:ed:df:b5:c4:cb:00:80:d8:
61:f1:8f:e9:d1:cc:5e:5a:3e:98:60:59:c1:53:86:
65:39:f0:dc:a6:fb:e0:fc:f9:18:75:2d:6e:e7:c9:
f0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:52:E4:37:1F:11:01:82:C0:C6:67:42:8E:ED:11:49:1F:80:B8:12
X509v3 Authority Key Identifier:
keyid:BA:59:D9:F5:AF:3C:EE:44:20:14:B7:35:96:1C:73:B9:69:26:0E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ulnZ9a887kQgFLc1lhxzuWkmDhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/03d3fa-9e22-441e-b5c5-d203e20018f5/1/ulnZ9a887kQgFLc1lhxzuWkmDhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:b1:bc:62:02:16:e8:14:a4:06:c8:60:4e:17:cf:44:fd:f0:
95:64:5f:29:df:58:46:02:65:f5:fe:77:50:07:5a:a3:ad:b9:
84:69:66:61:c0:09:0a:87:f0:3b:59:1d:d6:a8:1c:09:b0:45:
9a:be:54:8c:3b:e5:cf:67:b7:7e:0b:29:8d:2c:47:70:e4:c3:
56:89:b0:54:bb:83:4b:69:29:8d:38:8a:9f:6b:62:3f:ee:c0:
69:4a:20:58:18:32:41:32:b6:82:ae:38:01:33:b3:ee:16:3b:
2f:8f:a1:56:0a:10:9d:b2:58:9a:f8:ca:72:72:a0:f9:84:0d:
33:e9:5f:95:67:6e:17:d4:72:2e:1b:0c:c9:70:98:2e:04:b1:
dc:0a:52:c9:34:2e:e0:60:1e:a7:dd:91:59:67:56:51:44:9f:
7b:94:06:e4:87:63:49:a0:93:17:69:01:38:ff:8d:2a:30:a2:
7a:61:cd:77:7e:d5:eb:63:54:6f:46:ab:09:e3:ea:72:71:52:
15:f9:fa:81:c0:2d:08:b8:09:1b:8e:c0:9c:3e:11:a4:6f:be:
b1:d5:c0:4a:70:d5:1a:46:fe:99:4e:49:0b:96:42:63:92:a4:
99:f8:04:f3:b7:24:a0:96:5e:f7:58:67:29:de:2f:37:36:cb:
9b:79:56:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:43 2025 by rpki-client