
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
File: UgX1htgmO7BtZAUPj0hMFOgDxLI.mft (raw, json)
Hash identifier: vPYuLBlvAQF5hQKNCwaHthg5uVNPrAZoTS7890d8tmQ=
Subject key identifier: AA:77:87:C3:2C:E2:BE:B7:E1:E9:8C:4B:22:DC:2E:3D:08:82:27:29
Authority key identifier: 52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
Certificate issuer: /CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Certificate serial: 01975BDC24C724D65573D640507D0B84D28C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
Manifest number: 0BC4
Signing time: Tue 10 Jun 2025 22:00:43 +0000
Manifest this update: Tue 10 Jun 2025 22:00:43 +0000
Manifest next update: Wed 11 Jun 2025 22:00:43 +0000
Files and hashes: 1: UgX1htgmO7BtZAUPj0hMFOgDxLI.crl (hash: xBRK1IfeQvZwBQV+cO8lJQymzsFB4Fzplo0BOpedI6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:dc:24:c7:24:d6:55:73:d6:40:50:7d:0b:84:d2:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Validity
Not Before: Jun 10 22:00:43 2025 GMT
Not After : Jun 11 22:00:43 2025 GMT
Subject: CN=aa7787c32ce2beb7e1e98c4b22dc2e3d08822729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fc:48:57:d0:00:2c:c6:e2:48:d1:3e:5f:3f:
3f:08:d2:65:87:f5:31:30:43:48:f7:b9:3c:32:83:
b8:6b:bb:ae:b3:55:60:22:47:e0:4a:36:a3:fa:d3:
bd:e0:ed:34:e4:50:5b:bf:b7:6c:01:4d:d5:87:33:
0f:9f:e3:f8:7e:5e:e0:39:52:1a:6e:db:d2:01:69:
e1:cd:b2:1f:c6:15:f2:3d:d4:f8:7f:c8:61:a2:15:
9b:a9:4d:7b:f2:0c:31:b6:85:13:4b:37:d4:24:c3:
d4:37:54:b5:71:ca:43:f0:37:7b:86:7f:db:20:cd:
c6:71:cb:05:fc:1e:43:24:bf:dd:9a:86:3e:85:65:
6a:7d:8c:3d:3a:60:ed:08:aa:5a:11:e3:3d:8c:ba:
b8:cd:7b:0d:c6:fe:7b:d4:f2:3c:82:2c:4a:d4:a8:
8a:90:fd:8a:8e:05:cb:7b:03:86:2f:85:35:54:91:
28:74:9b:67:04:17:1e:64:6c:89:29:32:77:d8:e0:
09:f7:ad:e4:4d:76:0f:1f:11:2a:fb:84:49:68:39:
7f:9c:2a:40:89:4e:56:82:e2:60:83:9f:17:07:cd:
3a:33:29:e3:d7:7b:a1:36:d8:41:86:22:55:46:4e:
34:d1:c0:22:14:3d:2f:7a:c1:c0:2d:6d:6b:52:cb:
02:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:77:87:C3:2C:E2:BE:B7:E1:E9:8C:4B:22:DC:2E:3D:08:82:27:29
X509v3 Authority Key Identifier:
keyid:52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:1c:30:ef:6b:2c:50:fa:f2:17:c0:87:0f:a3:fe:c2:48:ea:
68:30:86:f0:33:ae:e3:ab:35:d2:87:c0:55:f8:94:97:1d:ad:
f3:58:e1:07:bc:f0:f2:1a:b8:cb:ee:ff:17:78:d9:e6:da:ea:
bb:46:2f:82:ad:e9:c2:de:a4:2c:c9:e8:fc:64:86:07:3d:d1:
d7:75:b1:2e:b9:0e:b1:26:2b:79:82:3a:f7:38:7c:74:38:72:
03:39:36:df:fa:4e:8e:c0:c5:74:a7:03:6f:0b:fa:62:6f:10:
70:86:f3:99:08:7e:8b:d1:f1:49:8c:82:ad:09:5d:97:5d:bc:
6c:c4:05:21:dd:88:60:2a:ef:60:0a:38:54:82:73:f3:38:e1:
d2:46:05:cb:8b:96:04:3f:37:16:7f:44:04:f5:33:33:8c:97:
79:5d:3a:a4:21:b0:55:49:0b:4b:73:c0:e4:46:12:bc:7f:50:
b3:20:56:f9:12:80:df:50:20:e1:d9:01:dd:4d:d8:29:a0:8d:
64:89:b0:e3:a2:6f:11:a1:ad:cd:d0:30:8d:e2:2d:5c:6d:a7:
cd:88:59:5d:25:ad:3f:0d:44:35:2a:aa:7c:e1:7b:ed:c8:a7:
76:e9:90:51:bd:0d:39:a1:82:fe:25:0a:00:96:b5:19:bd:94:
7b:27:0b:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 03:00:01 2025 by rpki-client