Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
File: ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft (raw, json)
Hash identifier: pTumQpa0N6PZhBrXwznr9Td36x24T+DR0oiLCga99ko=
Subject key identifier: DC:1D:DA:6F:0E:4C:15:AA:8B:BF:66:E0:7E:07:07:16:DE:1A:8E:36
Authority key identifier: B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
Certificate issuer: /CN=b9f1d5b06f5701555ff5888154dd141b48896117
Certificate serial: 0197469E3D0186519C3F9ECF612D9AA1B903
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
Manifest number: 1592
Signing time: Fri 06 Jun 2025 19:01:04 +0000
Manifest this update: Fri 06 Jun 2025 19:01:04 +0000
Manifest next update: Sat 07 Jun 2025 19:01:04 +0000
Files and hashes: 1: ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl (hash: 94Gbuuyxx/YO6YGkfJx/sDL6qbxvRe68X+o9CpK8apE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9e:3d:01:86:51:9c:3f:9e:cf:61:2d:9a:a1:b9:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f1d5b06f5701555ff5888154dd141b48896117
Validity
Not Before: Jun 6 19:01:04 2025 GMT
Not After : Jun 7 19:01:04 2025 GMT
Subject: CN=dc1dda6f0e4c15aa8bbf66e07e070716de1a8e36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c8:58:8d:16:47:cf:bc:5f:a6:5c:17:1a:f9:
95:3f:6f:97:b7:90:7f:d9:5c:ca:1e:2b:0d:f8:75:
d3:0c:a7:08:52:2d:cd:6f:0a:26:95:9b:d4:0f:65:
41:c7:89:29:f7:5f:a4:86:96:00:d3:a9:cd:ee:96:
a1:86:95:77:4b:94:d2:b1:b7:b4:34:3f:33:92:ec:
dc:d0:7e:f5:49:8b:1d:c8:99:99:8b:ec:3d:68:a2:
70:64:b9:cc:c0:ea:e8:11:90:a4:b9:94:e7:03:91:
d2:f2:0d:36:f2:72:21:30:ab:b8:b7:8a:f4:3d:22:
a9:2f:a7:13:50:6a:9b:e1:2a:b7:22:c8:fa:20:b7:
24:34:1d:63:56:13:89:ef:99:7f:fc:6c:91:65:15:
bd:cf:88:23:4f:ab:16:3c:e3:48:cf:69:49:c0:03:
95:8d:62:09:db:3f:23:77:c0:89:fe:c6:af:dc:43:
b2:e3:7e:28:2e:65:38:bc:5b:67:85:4e:61:88:f7:
2d:08:6b:1b:cd:37:aa:b1:72:71:cc:8a:60:fa:45:
45:2e:e0:07:cb:37:63:a2:f1:cf:77:2b:2c:ec:b3:
dc:de:04:03:92:6b:f3:75:65:0a:d2:f8:dd:75:50:
c7:10:cc:13:e5:6a:78:37:e9:60:d0:12:f5:5a:c8:
4c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:1D:DA:6F:0E:4C:15:AA:8B:BF:66:E0:7E:07:07:16:DE:1A:8E:36
X509v3 Authority Key Identifier:
keyid:B9:F1:D5:B0:6F:57:01:55:5F:F5:88:81:54:DD:14:1B:48:89:61:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufHVsG9XAVVf9YiBVN0UG0iJYRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/caf5ea-626e-455a-8708-f5ca8fa7270d/1/ufHVsG9XAVVf9YiBVN0UG0iJYRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:2b:85:5d:d7:41:94:43:6f:1e:03:17:27:37:40:e2:37:4e:
c7:12:04:06:09:c0:9e:72:bb:df:41:1a:b7:a5:5c:01:59:b5:
5c:27:0e:77:af:9b:b6:43:d3:63:54:15:50:67:68:a9:d9:58:
67:1f:44:94:11:e6:63:fd:83:49:de:16:18:9e:7d:92:ee:04:
84:ff:14:52:33:1a:7e:b4:08:2b:5d:d1:d6:12:cb:50:1c:05:
85:9c:ae:fb:fd:84:9b:99:61:5f:56:e4:af:aa:07:4f:1a:90:
42:25:cc:db:bd:c2:f1:8b:69:a0:e0:3c:ec:cc:5c:c4:26:ad:
82:97:3e:18:08:ab:16:f1:a6:01:f6:b1:52:29:b9:8e:29:ee:
88:dc:e5:89:6f:c9:98:68:b4:10:6b:51:ab:b1:e4:6a:02:64:
53:07:f3:f8:45:ba:cd:a0:ca:63:aa:cd:80:53:09:31:e4:cb:
5f:e0:d6:2f:a5:3d:93:44:2c:22:b5:88:88:d4:71:de:5b:dd:
d1:99:3a:d2:05:f2:6b:f6:5b:c9:24:34:af:39:fc:7e:b7:48:
6c:b6:f6:85:8d:92:d3:91:c3:5a:1f:bf:dd:7a:94:be:ac:2a:
b7:ac:ea:8f:88:3d:51:66:df:94:f5:39:63:dd:ab:cf:de:79:
fc:32:30:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGnj0BhlGcP57PYS2aobkDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5ZjFkNWIwNmY1NzAxNTU1ZmY1ODg4MTU0ZGQxNDFiNDg4
OTYxMTcwHhcNMjUwNjA2MTkwMTA0WhcNMjUwNjA3MTkwMTA0WjAzMTEwLwYDVQQD
EyhkYzFkZGE2ZjBlNGMxNWFhOGJiZjY2ZTA3ZTA3MDcxNmRlMWE4ZTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1shYjRZHz7xfplwXGvmVP2+Xt5B/
2VzKHisN+HXTDKcIUi3NbwomlZvUD2VBx4kp91+khpYA06nN7pahhpV3S5TSsbe0
ND8zkuzc0H71SYsdyJmZi+w9aKJwZLnMwOroEZCkuZTnA5HS8g028nIhMKu4t4r0
PSKpL6cTUGqb4Sq3Isj6ILckNB1jVhOJ75l//GyRZRW9z4gjT6sWPONIz2lJwAOV
jWIJ2z8jd8CJ/sav3EOy434oLmU4vFtnhU5hiPctCGsbzTeqsXJxzIpg+kVFLuAH
yzdjovHPdyss7LPc3gQDkmvzdWUK0vjddVDHEMwT5Wp4N+lg0BL1WshMNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNwd2m8OTBWqi79m4H4HBxbeGo42MB8GA1UdIwQY
MBaAFLnx1bBvVwFVX/WIgVTdFBtIiWEXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWZIVnNHOVhBVlZmOVlpQlZOMFVHMGlKWVJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jYWY1ZWEtNjI2ZS00NTVhLTg3MDgt
ZjVjYThmYTcyNzBkLzEvdWZIVnNHOVhBVlZmOVlpQlZOMFVHMGlKWVJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9jYWY1ZWEtNjI2ZS00NTVhLTg3MDgtZjVjYThmYTcyNzBk
LzEvdWZIVnNHOVhBVlZmOVlpQlZOMFVHMGlKWVJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdSuFXddB
lENvHgMXJzdA4jdOxxIEBgnAnnK730Eat6VcAVm1XCcOd6+btkPTY1QVUGdoqdlY
Zx9ElBHmY/2DSd4WGJ59ku4EhP8UUjMafrQIK13R1hLLUBwFhZyu+/2Em5lhX1bk
r6oHTxqQQiXM273C8YtpoOA87MxcxCatgpc+GAirFvGmAfaxUim5jinuiNzliW/J
mGi0EGtRq7HkagJkUwfz+EW6zaDKY6rNgFMJMeTLX+DWL6U9k0QsIrWIiNRx3lvd
0Zk60gXya/ZbySQ0rzn8frdIbLb2hY2S05HDWh+/3XqUvqwqt6zqj4g9UWbflPU5
Y92rz955/DIwSg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:02:01 2025 by rpki-client