Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
File: uH9ej-619ec7CXtmZX7tjbl0pA4.mft (raw, json)
Hash identifier: vaZjqyKGSBtZ7i49ubXWslf5ecMybYwLc0jujEoYQoE=
Subject key identifier: D3:BF:4E:99:F3:E2:8C:51:08:CA:2E:BD:DF:13:EB:AE:BB:B2:9C:F9
Authority key identifier: B8:7F:5E:8F:EE:B5:F5:E7:3B:09:7B:66:65:7E:ED:8D:B9:74:A4:0E
Certificate issuer: /CN=b87f5e8feeb5f5e73b097b66657eed8db974a40e
Certificate serial: 019921B0E6D19F9B88AA5FDF163E8FCF665F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
Manifest number: 0E4E
Signing time: Sun 07 Sep 2025 01:01:05 +0000
Manifest this update: Sun 07 Sep 2025 01:01:05 +0000
Manifest next update: Mon 08 Sep 2025 01:01:05 +0000
Files and hashes: 1: uH9ej-619ec7CXtmZX7tjbl0pA4.crl (hash: f0UlGR0D4xm59hyvsNKU9VI3beZf0bFA8KtRO1gOUiM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:e6:d1:9f:9b:88:aa:5f:df:16:3e:8f:cf:66:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87f5e8feeb5f5e73b097b66657eed8db974a40e
Validity
Not Before: Sep 7 01:01:05 2025 GMT
Not After : Sep 8 01:01:05 2025 GMT
Subject: CN=d3bf4e99f3e28c5108ca2ebddf13ebaebbb29cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:20:bd:cd:94:06:4b:00:76:d1:11:6f:a1:6f:
1e:42:d6:41:34:52:58:cf:50:cc:95:01:39:69:de:
5c:ff:49:f9:3b:34:91:98:a4:9d:df:d3:61:b8:bb:
44:9c:57:b9:93:12:1f:c2:d6:d9:9f:2f:f7:58:af:
74:e7:61:32:6d:22:e0:a2:5d:b9:96:8c:93:8c:4a:
41:bd:7b:c8:46:1b:30:c3:ab:a7:7e:7e:86:0c:a7:
ff:a2:a7:d7:c4:5c:ea:7b:7e:d3:9d:18:f8:3e:7c:
c4:22:23:d3:1f:18:9d:cc:02:5b:31:fd:35:fe:96:
28:97:17:3a:63:a6:4a:09:0b:a2:1a:d4:dd:19:24:
41:a7:d8:03:ce:08:01:40:ad:7b:42:12:68:ce:fe:
6d:92:3d:b0:0d:bc:50:d4:2c:d0:8a:b4:29:69:e6:
f3:ec:87:60:fd:cb:71:a4:05:37:9e:03:2d:50:2c:
25:2e:95:5b:03:e8:4e:dc:cb:72:48:ad:06:08:4d:
c0:eb:81:1f:39:93:29:4f:9e:8b:2a:79:55:be:c7:
e9:f0:f5:23:43:be:59:93:a5:82:84:00:f8:c1:c2:
69:2d:e8:f6:cb:68:d2:3b:4d:05:99:8a:04:6d:26:
b6:78:a7:a6:b6:7c:cc:f8:7e:02:f5:26:d8:af:78:
df:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BF:4E:99:F3:E2:8C:51:08:CA:2E:BD:DF:13:EB:AE:BB:B2:9C:F9
X509v3 Authority Key Identifier:
keyid:B8:7F:5E:8F:EE:B5:F5:E7:3B:09:7B:66:65:7E:ED:8D:B9:74:A4:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8b:a3:7c:2c:d5:cb:4b:34:7b:ac:3a:71:c5:8e:d3:d5:2d:
41:c5:0c:5f:6e:f9:78:4b:fd:a6:19:36:d3:8c:c4:e8:ee:e8:
75:85:36:4f:28:86:fe:e6:75:3c:34:59:34:63:fa:64:11:be:
54:35:92:a3:02:f1:68:a9:13:53:e7:0e:e9:0b:e5:f4:4f:e1:
c4:1d:02:29:d6:b4:7d:58:a3:22:9e:16:42:32:2f:e1:55:db:
85:05:b5:dc:cc:97:7c:ec:8c:33:0e:f1:de:ab:86:62:d8:c5:
a4:39:c7:59:2c:63:4f:56:12:0a:76:01:2a:c9:ff:fe:22:2c:
8b:b5:7f:d7:a2:9c:d8:69:2f:a0:0a:c0:ef:b5:92:10:77:b8:
a7:1b:82:b0:45:ae:30:1c:35:d3:95:ca:2a:de:63:82:82:ff:
de:c5:43:d6:4a:66:be:15:b6:0a:f2:fc:96:9c:e3:ab:19:59:
8d:d3:77:d0:df:30:5c:f6:6a:37:e8:d5:94:fd:44:a6:d8:b8:
77:fc:ec:32:d3:c0:d3:4b:3c:58:a3:dd:91:57:0a:c5:43:42:
05:ac:10:ad:43:b4:d3:5e:2c:2e:04:ad:80:2b:bb:31:27:ee:
61:64:ee:bb:47:f0:ee:a9:bc:21:1f:6d:66:2e:12:eb:9e:67:
3e:87:18:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:09 2025 by rpki-client