Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
File: UgX1htgmO7BtZAUPj0hMFOgDxLI.mft (raw, json)
Hash identifier: DwaDPkcjm4x32wv21qKk/2czh0IlYoWJMfoevAGqx+8=
Subject key identifier: 3C:42:0B:F9:F0:11:B0:8C:36:F7:35:B5:A2:23:6B:AB:4D:AF:F1:45
Authority key identifier: 52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
Certificate issuer: /CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Certificate serial: 0199239FA8282A91725449359B272955F208
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
Manifest number: 0CB0
Signing time: Sun 07 Sep 2025 10:01:29 +0000
Manifest this update: Sun 07 Sep 2025 10:01:29 +0000
Manifest next update: Mon 08 Sep 2025 10:01:29 +0000
Files and hashes: 1: UgX1htgmO7BtZAUPj0hMFOgDxLI.crl (hash: JBtehPW5fa2kCEiKxPOD/KooMIVvg47QNiA/gYtVMnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:a8:28:2a:91:72:54:49:35:9b:27:29:55:f2:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Validity
Not Before: Sep 7 10:01:29 2025 GMT
Not After : Sep 8 10:01:29 2025 GMT
Subject: CN=3c420bf9f011b08c36f735b5a2236bab4daff145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d2:cb:9d:a7:2d:6f:41:4b:f5:76:21:7b:17:
64:0f:65:b6:da:94:d6:0b:66:a3:77:21:9e:96:5a:
29:4f:77:4e:d5:7c:15:0a:5b:5f:ea:a0:7f:18:d3:
83:9a:4f:45:91:af:36:be:07:fe:2e:2c:92:5a:c5:
4e:ea:62:2e:dd:43:b9:ee:54:a1:22:79:df:be:6e:
43:ef:3d:6c:bf:66:51:cc:3b:25:ff:3b:64:78:f1:
98:74:3e:77:aa:65:02:c7:59:cc:90:c1:d9:a9:03:
16:42:d5:7f:38:dc:f7:2c:37:c2:f0:ff:a1:b8:b6:
c7:31:78:95:09:46:af:c8:1d:b3:b4:f1:5a:ef:21:
42:4b:f8:a2:4a:b8:ee:4e:69:c2:9a:1b:97:aa:73:
19:c7:39:47:ed:38:ae:b7:f5:2f:16:a4:99:c7:c7:
32:6e:44:cd:e9:d3:d2:c9:0d:11:24:7d:a3:1f:d7:
89:fb:3d:73:20:61:fc:81:e2:e6:40:48:f5:f6:52:
c9:83:c9:21:d7:77:79:7c:63:ca:c9:f4:18:a2:a7:
7c:72:2b:af:c5:91:53:8b:d4:c3:02:bd:9b:4a:5b:
e4:8d:59:ea:e6:36:23:0f:7f:53:3f:c1:95:d0:45:
b2:12:17:1d:f0:6f:d8:c3:63:4a:f1:e2:c8:dc:50:
f9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:42:0B:F9:F0:11:B0:8C:36:F7:35:B5:A2:23:6B:AB:4D:AF:F1:45
X509v3 Authority Key Identifier:
keyid:52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:c6:4b:53:31:97:f5:55:a3:9e:03:59:1e:8e:4f:5f:b7:68:
49:27:61:5a:0a:5f:8a:e5:ea:20:01:ee:48:8f:7b:b5:95:e9:
53:05:d7:67:bb:7a:bc:61:6d:05:da:bb:02:1d:d9:93:a3:d2:
94:4b:45:51:00:7c:2b:42:37:54:98:ec:ee:dd:22:a8:04:05:
0d:88:03:2e:98:fe:db:48:60:a6:97:0e:de:ff:1b:44:0b:45:
86:99:c1:96:df:d0:d7:08:e9:86:04:c2:e2:56:9b:bb:e7:c0:
13:e8:c6:ab:ee:bc:d3:c6:f3:7d:e6:e0:85:b7:59:03:15:d8:
9e:37:b5:b5:24:60:72:12:ad:54:e6:ea:b9:7f:b4:05:87:06:
7b:48:3c:06:ac:1e:a4:33:47:da:69:ea:83:54:0d:3d:68:c9:
cc:b1:71:0c:62:d6:4c:8a:f7:eb:29:66:3d:13:2b:70:7c:e4:
c8:41:d3:69:84:e8:7a:bc:45:d3:9b:ba:cd:3c:53:4c:83:3d:
3d:e9:7f:a7:13:34:ab:87:d2:41:8b:05:13:85:28:c9:2e:67:
13:4c:b3:e1:aa:1a:e5:af:9a:d4:c9:4c:01:9c:18:5c:55:54:
cf:5d:5e:66:b5:40:24:0d:2c:5c:4b:ca:f0:76:1d:02:52:7f:
da:bd:ad:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:42:00 2025 by rpki-client