Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft
File: uglQnQRuXLar5boZqxurpUPTffg.mft (raw, json)
Hash identifier: 8/MQ4GBNldbfY8+tYFSTGLSZ9rqHwPcYyWsgnPgK6+o=
Subject key identifier: A8:FF:47:7E:C2:39:B1:BC:5D:10:EB:24:7E:8F:F9:7A:04:BD:B9:4A
Authority key identifier: BA:09:50:9D:04:6E:5C:B6:AB:E5:BA:19:AB:1B:AB:A5:43:D3:7D:F8
Certificate issuer: /CN=ba09509d046e5cb6abe5ba19ab1baba543d37df8
Certificate serial: 0197488C658E8E2C7F8BD297104C4B6BA3DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft
Manifest number: 0901
Signing time: Sat 07 Jun 2025 04:00:50 +0000
Manifest this update: Sat 07 Jun 2025 04:00:50 +0000
Manifest next update: Sun 08 Jun 2025 04:00:50 +0000
Files and hashes: 1: uglQnQRuXLar5boZqxurpUPTffg.crl (hash: y5zzKU1gdnZQ8s9UDVYZOO7X5crOb4tVVeVKm9nWtAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft
rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:65:8e:8e:2c:7f:8b:d2:97:10:4c:4b:6b:a3:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba09509d046e5cb6abe5ba19ab1baba543d37df8
Validity
Not Before: Jun 7 04:00:50 2025 GMT
Not After : Jun 8 04:00:50 2025 GMT
Subject: CN=a8ff477ec239b1bc5d10eb247e8ff97a04bdb94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5a:99:d9:fb:d5:6e:12:55:39:bc:3b:e5:0e:
ab:f3:89:01:65:40:3e:59:db:b5:44:df:28:15:40:
a3:7d:c0:d4:e2:b1:57:d3:06:9f:6a:7d:e5:05:72:
aa:50:21:a3:9a:f6:d2:a4:92:3c:ed:42:eb:80:51:
48:b6:60:ad:24:d9:b5:4e:4d:38:14:d3:12:0f:ae:
f1:27:6f:44:34:e8:d1:b3:4a:d5:49:79:4a:9c:9f:
b5:d9:13:d2:0a:a1:ee:d5:7c:d5:35:a2:57:d1:54:
51:ca:3c:b5:c0:56:b6:8f:c1:bb:e6:d9:91:2d:13:
4f:0f:0e:6b:f4:60:23:28:a8:6d:76:c6:28:85:9b:
96:14:a5:88:85:2d:b9:a3:f9:d0:df:5c:bc:36:22:
55:d3:9f:a2:a1:9a:f8:72:ec:0d:76:24:ee:a3:d3:
bc:7b:32:45:b1:5a:79:dd:40:ef:6c:43:39:74:dd:
4e:39:9f:4b:f9:92:b2:a7:2a:f2:35:6d:aa:91:3f:
01:49:04:c0:4e:88:56:e9:f5:38:d3:3d:87:e4:d1:
f5:39:2c:da:cc:8e:85:a4:eb:ee:4a:bd:92:6f:4e:
12:08:e4:bd:74:80:18:a0:d9:28:20:8d:4b:51:b7:
20:e9:32:07:4b:c2:c6:65:e8:70:b1:8f:4b:dd:2e:
65:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:FF:47:7E:C2:39:B1:BC:5D:10:EB:24:7E:8F:F9:7A:04:BD:B9:4A
X509v3 Authority Key Identifier:
keyid:BA:09:50:9D:04:6E:5C:B6:AB:E5:BA:19:AB:1B:AB:A5:43:D3:7D:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:14:5e:07:28:38:db:96:3d:e0:82:10:2f:87:45:cb:bb:c0:
5a:46:71:ef:10:7c:87:af:d6:61:22:5f:a7:d9:f7:37:50:4f:
71:82:3f:d7:13:23:6d:3d:6e:34:ef:a1:04:71:59:7e:ea:95:
48:0c:a3:60:74:79:14:7a:16:87:4e:bc:f0:d8:22:0c:3d:16:
2c:35:cc:c6:41:7a:3f:24:04:9d:a7:b4:7c:f3:f8:97:58:3e:
01:64:2f:b8:2a:a9:6b:90:e5:6d:d5:f4:13:66:e1:9d:98:82:
70:2d:74:0f:7c:47:72:4d:c7:53:d1:16:c5:b2:18:e7:ee:51:
9b:eb:17:30:cf:68:5c:ad:de:70:8f:56:c7:2b:e0:80:c9:04:
13:b2:38:36:11:39:cc:18:bf:99:cd:69:dd:5b:6e:cc:41:a8:
7a:a2:79:08:78:1c:12:55:22:0a:17:42:88:70:86:e3:de:bd:
f9:86:35:be:76:ae:79:be:eb:1b:2d:15:05:4b:f1:23:92:dd:
66:23:72:bc:4d:5b:33:52:89:53:76:98:89:fb:87:71:56:f6:
d8:46:c6:c0:1f:be:03:5d:1d:a5:84:a4:8b:16:85:e6:9b:dc:
03:bf:f7:e1:a1:a5:66:d4:40:bc:ad:e5:c9:a3:e1:50:60:4e:
4a:d3:af:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:11:18 2025 by rpki-client