Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
File: UFrRf0xiDVjUU9X218kjP84SZJk.mft (raw, json)
Hash identifier: 31Wi8TVPrUqPt9TFnjO0f2RG1tCzBiFROyfH7sJjlT4=
Subject key identifier: 94:44:2B:95:B5:BC:E5:F0:DB:CC:64:A2:A8:EA:D2:F1:F0:F2:94:B1
Authority key identifier: 50:5A:D1:7F:4C:62:0D:58:D4:53:D5:F6:D7:C9:23:3F:CE:12:64:99
Certificate issuer: /CN=505ad17f4c620d58d453d5f6d7c9233fce126499
Certificate serial: 019748C33AAC0711D9273683A367F78564DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
Manifest number: 0606
Signing time: Sat 07 Jun 2025 05:00:43 +0000
Manifest this update: Sat 07 Jun 2025 05:00:43 +0000
Manifest next update: Sun 08 Jun 2025 05:00:43 +0000
Files and hashes: 1: UFrRf0xiDVjUU9X218kjP84SZJk.crl (hash: g5AVz6GGJfCzwMOwbwuFADNtXLoNoQZB634r5n9NuyY=)
2: z0gK7j1eTNv7dmhYM5fYU83PlcI.roa (hash: F9PSIbqhKjRh7i/sDNMQoDtTGb+P8gRfs9+wZwKnUuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:3a:ac:07:11:d9:27:36:83:a3:67:f7:85:64:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505ad17f4c620d58d453d5f6d7c9233fce126499
Validity
Not Before: Jun 7 05:00:43 2025 GMT
Not After : Jun 8 05:00:43 2025 GMT
Subject: CN=94442b95b5bce5f0dbcc64a2a8ead2f1f0f294b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:35:1d:a3:83:5c:be:4c:b2:fa:4b:12:1a:db:
ab:8a:7e:2b:20:11:1b:e9:4b:be:c5:6f:f0:e0:d3:
74:1e:81:f7:7c:e1:13:cb:f8:d1:d8:58:9d:13:74:
0c:e8:88:67:56:78:69:47:21:f4:75:2e:be:e0:f7:
c3:50:d6:ed:8d:19:f8:b6:3d:02:f9:6c:a9:50:a5:
27:24:56:f0:74:50:f9:73:7c:83:1e:0c:b6:19:57:
fb:a7:9b:90:6b:e7:a5:a0:09:22:81:58:03:45:bd:
37:c9:c6:45:73:bf:41:67:02:04:09:9a:3b:ec:9f:
ff:e3:e2:1e:fc:bf:2b:b8:5f:ae:fd:14:e8:83:85:
4e:2d:9d:1b:4e:64:24:aa:6b:76:1a:de:b0:24:68:
5b:fd:25:2b:f6:22:32:44:f1:de:6c:a3:d5:69:42:
be:c6:90:21:33:48:ee:ac:80:df:f4:10:59:33:cc:
6f:06:58:1b:2b:5c:ee:45:78:d4:03:0f:75:26:a7:
14:88:6e:bc:bf:88:0b:a3:b5:3a:93:f9:2d:aa:03:
50:8a:fd:97:6e:a3:04:b5:71:b7:c3:1b:62:33:9d:
93:6b:b3:03:73:63:05:c3:90:9e:5c:a5:dd:fd:c9:
50:48:b0:f1:e5:a4:0a:1b:20:b5:88:85:68:e9:02:
88:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:44:2B:95:B5:BC:E5:F0:DB:CC:64:A2:A8:EA:D2:F1:F0:F2:94:B1
X509v3 Authority Key Identifier:
keyid:50:5A:D1:7F:4C:62:0D:58:D4:53:D5:F6:D7:C9:23:3F:CE:12:64:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFrRf0xiDVjUU9X218kjP84SZJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a2fc18-534b-4454-9bd1-fe6bb049337d/1/UFrRf0xiDVjUU9X218kjP84SZJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:0f:04:da:80:1e:a7:c1:c6:1e:50:1c:31:a1:6d:a8:de:6b:
37:4f:61:62:87:12:28:09:ab:50:77:3a:8d:6a:84:9f:ed:d0:
cc:9f:13:f5:09:28:11:ca:6a:cb:fe:38:9b:99:72:3c:1f:84:
18:d6:e2:f6:f0:b2:e1:1b:de:15:11:b4:b9:31:e8:cc:14:ca:
17:9d:ce:d2:e0:ce:72:b4:69:96:af:f0:12:e3:7b:94:f9:df:
95:1f:8f:c1:0e:e8:3b:41:13:93:27:35:92:a2:0a:25:9a:9f:
f8:8d:84:8e:e6:73:27:97:92:29:c1:e9:b5:d6:a0:fe:52:f8:
69:5a:26:08:13:81:3b:8d:ad:78:09:88:00:c9:e5:73:28:9f:
df:20:fd:32:62:12:9f:fa:ee:99:06:69:c1:5f:75:43:e6:9e:
1d:60:ef:1b:9d:af:70:d6:74:8c:46:4e:df:04:4e:6e:37:f8:
86:0c:30:53:67:3d:5f:39:b1:ea:f6:5c:a7:22:34:a1:8d:da:
f1:c6:82:ff:3b:03:55:bc:ec:00:11:77:53:ff:50:ea:9c:7d:
19:5d:1a:30:0b:d5:07:e7:5a:36:fd:22:08:dd:e9:4c:e3:b7:
5c:33:a6:fc:89:03:5a:9e:a3:f6:53:be:cb:6e:27:9c:8f:78:
32:89:ff:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:20:53 2025 by rpki-client