Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
File: U8DiB45PPrpfh5UD_dgJw4O7dig.mft (raw, json)
Hash identifier: 3W81m8F1sV+iTeoQfO5nsB/EYaVRHwWd00d1n3tzmwI=
Subject key identifier: 52:E8:3D:EE:22:81:F4:36:00:4E:07:1D:DE:FB:07:EC:75:D9:56:A0
Authority key identifier: 53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
Certificate issuer: /CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Certificate serial: 01974CD742FFF010A4F3359335417CBABD14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
Manifest number: 0F7B
Signing time: Sun 08 Jun 2025 00:01:05 +0000
Manifest this update: Sun 08 Jun 2025 00:01:05 +0000
Manifest next update: Mon 09 Jun 2025 00:01:05 +0000
Files and hashes: 1: U8DiB45PPrpfh5UD_dgJw4O7dig.crl (hash: rD276p3Pw3ex4WR+yYoEVEt6cxgICEKysaayIQkAPO4=)
2: XOqVL4Qlgd2qj_R2o35sDNSHJkw.roa (hash: Vhjo7o5u3C511AphXSnY5EBALpIpM0HGnrEGYenlVkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d7:42:ff:f0:10:a4:f3:35:93:35:41:7c:ba:bd:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Validity
Not Before: Jun 8 00:01:05 2025 GMT
Not After : Jun 9 00:01:05 2025 GMT
Subject: CN=52e83dee2281f436004e071ddefb07ec75d956a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:55:22:91:d9:47:04:36:ce:a4:6e:ef:1f:e5:
35:25:f3:6f:ac:06:b1:44:10:e8:04:c3:7a:27:72:
40:b0:45:b3:1a:68:94:c4:54:34:44:3a:da:26:43:
94:ee:32:0b:14:ba:3c:71:9e:b9:6c:c7:e9:ad:18:
f6:bf:62:e1:bc:fa:ab:2a:0b:9c:5b:89:58:e9:b8:
e4:c3:ae:fa:ac:63:09:e4:3c:55:ea:43:b2:dd:c9:
f4:69:72:02:04:69:0d:ff:4f:04:b5:06:03:fc:2f:
fd:d4:00:81:a8:70:c6:8d:2e:d7:c0:4e:9f:73:90:
3f:8a:cf:6c:e3:7c:95:47:fd:42:d0:4e:b4:c2:7a:
18:a9:b4:55:52:8d:0d:9c:c8:78:b8:8e:e7:a5:81:
8e:52:3b:98:55:95:2f:29:42:f1:1e:9c:41:5d:1e:
32:95:35:e7:2c:a7:c5:9d:60:6d:66:46:e3:e0:c1:
bc:23:17:05:1b:66:41:ee:d4:f7:aa:b7:c0:ab:01:
c1:01:7f:74:5b:3e:4a:66:f6:10:bf:6c:b1:55:0a:
10:b0:c1:e4:7b:b9:a2:e5:2f:97:71:b4:a4:b6:97:
dc:55:41:46:6a:fd:55:47:16:7a:cc:c0:8e:31:fa:
d3:44:c8:f3:b6:0f:04:51:33:a3:72:f0:8a:30:c7:
d2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E8:3D:EE:22:81:F4:36:00:4E:07:1D:DE:FB:07:EC:75:D9:56:A0
X509v3 Authority Key Identifier:
keyid:53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:c2:15:56:b6:09:d2:f3:78:46:47:9b:28:83:9b:79:8e:db:
6e:59:e2:37:c5:a0:e6:81:6d:e2:8d:b2:19:7c:a5:00:b9:c0:
d1:94:18:46:40:c7:7d:0e:0b:be:c4:81:dd:92:d2:90:79:7c:
5b:76:84:ff:eb:fd:f8:87:f1:9d:a8:06:38:9e:fe:71:ea:8f:
ce:d5:0e:d7:f1:d8:7b:b5:00:bf:a2:3a:33:68:f1:9e:a6:69:
d7:e8:64:24:4d:65:e1:f8:f3:ae:97:d4:7e:88:5e:77:d8:6b:
eb:58:db:31:e9:75:c1:13:a1:1d:47:27:16:4e:9c:61:61:ea:
98:a2:bb:8d:11:61:3e:db:cc:a0:6d:ba:2b:8b:22:69:b9:85:
76:cc:0d:6e:88:7c:0a:ad:c9:1c:12:d2:6d:f7:57:76:02:5d:
0f:3e:bb:c0:8d:53:a3:db:94:46:96:23:b2:13:a8:d7:9b:2a:
78:96:dc:2b:33:ee:10:b6:24:47:2f:e8:e6:31:72:e5:d9:dc:
70:a5:e1:b1:1f:b0:14:c2:cd:56:e1:2b:19:9f:fb:a6:3c:01:
94:a9:77:da:6e:c5:0e:77:d1:5c:67:62:98:95:d2:05:c3:d1:
c5:ca:1c:2a:20:8c:11:af:c6:a7:c7:52:8e:01:97:1c:e2:6c:
a8:a9:1d:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:07:39 2025 by rpki-client