Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
File: UfSwsEaesNBxmUzYI480vvAMb74.mft (raw, json)
Hash identifier: pQfBNcChZ9nCMSvjsHZZGT9wbavCJ4szNz4SCJOUjEM=
Subject key identifier: 2B:FE:71:AF:3E:87:EF:C3:90:32:E1:CE:CF:2B:08:60:6E:20:06:97
Authority key identifier: 51:F4:B0:B0:46:9E:B0:D0:71:99:4C:D8:23:8F:34:BE:F0:0C:6F:BE
Certificate issuer: /CN=51f4b0b0469eb0d071994cd8238f34bef00c6fbe
Certificate serial: 019748C33862A79562A4D49A20215FB1DCA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
Manifest number: 04F0
Signing time: Sat 07 Jun 2025 05:00:42 +0000
Manifest this update: Sat 07 Jun 2025 05:00:42 +0000
Manifest next update: Sun 08 Jun 2025 05:00:42 +0000
Files and hashes: 1: UfSwsEaesNBxmUzYI480vvAMb74.crl (hash: 3IyHRCBHuGS4UnIPAXKlcc1s27yTlGEJOQsOlWEtsP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:38:62:a7:95:62:a4:d4:9a:20:21:5f:b1:dc:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51f4b0b0469eb0d071994cd8238f34bef00c6fbe
Validity
Not Before: Jun 7 05:00:42 2025 GMT
Not After : Jun 8 05:00:42 2025 GMT
Subject: CN=2bfe71af3e87efc39032e1cecf2b08606e200697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5e:ed:19:11:0e:65:3a:08:68:64:03:23:5f:
bc:f7:f1:de:c2:3b:0c:57:16:4a:d0:62:98:ef:b7:
b3:b3:f7:ee:94:71:fe:3c:0f:28:2e:59:02:40:e5:
2e:f8:9a:d9:d9:1e:af:69:1e:8e:67:08:e4:7d:03:
66:ab:75:ab:28:30:4a:26:56:8f:c1:d2:66:66:57:
77:11:0d:d3:67:8f:42:b9:31:8e:a9:55:ba:dd:51:
b0:cb:d6:9c:57:22:b1:3d:9a:d6:22:a4:2a:71:26:
06:13:bb:e0:e4:b4:97:c0:69:48:3a:2b:d8:3b:3f:
92:df:97:f6:3d:08:4c:d0:ec:cb:d5:e4:9a:be:c9:
83:72:0d:22:25:2d:0b:2f:8f:9a:86:57:e7:df:0a:
b7:2c:91:fd:d6:ea:95:2b:44:f0:82:3f:bb:4d:23:
fe:31:c3:37:27:f7:c3:5b:c1:06:9b:ca:58:5b:da:
72:7f:9f:b3:50:3e:e3:70:11:82:86:23:59:fc:5a:
c3:69:9b:f4:ed:ad:9a:a4:22:7d:fb:3f:71:71:37:
dd:4e:86:bd:d6:e1:e4:f2:4b:4a:db:2a:13:59:ea:
84:f6:00:50:f0:56:1d:d7:22:c2:14:8a:01:7d:2f:
0a:87:d5:c7:54:c2:ea:a4:31:5e:86:6d:4c:c3:eb:
23:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:FE:71:AF:3E:87:EF:C3:90:32:E1:CE:CF:2B:08:60:6E:20:06:97
X509v3 Authority Key Identifier:
keyid:51:F4:B0:B0:46:9E:B0:D0:71:99:4C:D8:23:8F:34:BE:F0:0C:6F:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UfSwsEaesNBxmUzYI480vvAMb74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/d3ab28-7f47-41f3-b231-78844e101133/1/UfSwsEaesNBxmUzYI480vvAMb74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:3a:30:17:ed:07:32:f8:40:d7:fb:99:22:de:9f:7d:6f:5b:
cb:92:09:da:c0:bf:26:f5:f3:e8:ca:cc:07:57:ff:19:3f:3b:
01:12:e6:23:2f:24:4d:66:f6:98:cf:67:a6:15:4c:8f:5b:9d:
ee:2a:44:97:e8:05:a0:c4:23:35:6b:b1:6b:46:87:40:3a:22:
bc:e5:24:96:c7:eb:33:0f:db:a9:90:12:0c:b4:5f:c2:22:63:
6c:e3:65:93:70:6c:46:47:5f:52:62:8a:22:45:73:34:99:b7:
b5:79:bf:e6:83:85:f7:42:10:f7:56:29:4b:ea:43:27:c5:87:
73:d8:e8:2a:52:13:d5:05:d6:bc:62:bb:0f:f5:64:1b:72:fd:
ca:a3:6f:e3:a7:45:87:a3:62:61:91:9f:06:09:fa:73:b6:9c:
92:67:37:24:25:ad:3d:69:68:4b:f1:f3:46:5b:f5:5c:54:af:
d2:66:49:4d:3c:7c:3a:d0:1d:46:eb:86:18:32:cd:b2:7a:1c:
0f:ef:0a:cd:51:7f:09:00:d4:9f:46:dd:49:7f:f3:5b:ea:24:
8f:72:4e:e2:87:c6:54:68:41:76:5d:e0:d0:e5:6b:9b:fc:f5:
e5:3e:03:fd:ef:75:aa:96:89:4b:1c:3e:91:8b:e0:0d:1c:db:
d0:1c:0a:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:22:03 2025 by rpki-client