Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.mft
File: ujWrXugfdPzKSgwT6XLsHP6WeTs.mft (raw, json)
Hash identifier: zJXHGUDKrjrgIZiErMo2ka/a7p0Ax6o23uCuK3ZV4qA=
Subject key identifier: F2:A9:B9:10:FA:66:68:92:5C:E1:DF:DE:52:DA:28:70:92:E5:97:D9
Authority key identifier: BA:35:AB:5E:E8:1F:74:FC:CA:4A:0C:13:E9:72:EC:1C:FE:96:79:3B
Certificate issuer: /CN=ba35ab5ee81f74fcca4a0c13e972ec1cfe96793b
Certificate serial: 019921B0F6ADA5FF682E98048E93CD3F3F18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ujWrXugfdPzKSgwT6XLsHP6WeTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.mft
Manifest number: 0948
Signing time: Sun 07 Sep 2025 01:01:09 +0000
Manifest this update: Sun 07 Sep 2025 01:01:09 +0000
Manifest next update: Mon 08 Sep 2025 01:01:09 +0000
Files and hashes: 1: ujWrXugfdPzKSgwT6XLsHP6WeTs.crl (hash: jdsdG3LZD3NAOfAjp9+zQH4F8qbrn+cLnPjIfJKMHC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ujWrXugfdPzKSgwT6XLsHP6WeTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:f6:ad:a5:ff:68:2e:98:04:8e:93:cd:3f:3f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba35ab5ee81f74fcca4a0c13e972ec1cfe96793b
Validity
Not Before: Sep 7 01:01:09 2025 GMT
Not After : Sep 8 01:01:09 2025 GMT
Subject: CN=f2a9b910fa6668925ce1dfde52da287092e597d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:db:2b:0b:23:f0:77:84:32:3b:07:0a:2c:96:
d4:50:90:23:97:a3:83:9c:d9:cb:e8:3f:d2:c7:d8:
e3:92:67:57:32:37:ca:12:b9:c2:c1:72:31:98:54:
af:e5:94:ff:d2:7c:be:74:7d:01:f2:1d:e0:fb:48:
a6:50:5b:ed:d8:01:a5:6f:21:9b:87:1f:5e:b8:28:
9d:2d:a9:ad:22:1a:b8:5c:1c:d3:6d:a8:09:4b:b9:
fb:c7:a8:a2:b4:f4:ea:76:70:18:a2:cc:8c:ac:be:
4b:99:e7:83:c4:a6:7f:24:af:ac:4c:9c:86:ca:3e:
b0:86:1d:d1:d7:8a:d5:14:b9:27:03:50:e2:1b:18:
62:1b:64:34:4b:60:a1:86:d9:5a:da:70:39:34:6b:
96:71:a8:f0:bb:3c:7b:8b:46:dd:d2:f3:b0:c3:55:
30:27:ae:82:d6:fe:93:9e:30:0b:67:07:88:6f:47:
a1:29:ce:f1:fc:5c:18:82:d7:e1:bf:e1:bb:8c:11:
08:24:0c:a3:e1:4e:12:99:56:3c:7b:52:53:cb:b4:
4e:38:a5:fb:65:13:ec:0c:68:ca:9a:2e:16:ea:2e:
50:20:0f:35:bd:03:37:ce:66:92:61:09:e8:bd:d0:
c0:ce:82:06:75:7f:17:4f:5f:2a:68:50:9d:9e:81:
ef:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A9:B9:10:FA:66:68:92:5C:E1:DF:DE:52:DA:28:70:92:E5:97:D9
X509v3 Authority Key Identifier:
keyid:BA:35:AB:5E:E8:1F:74:FC:CA:4A:0C:13:E9:72:EC:1C:FE:96:79:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ujWrXugfdPzKSgwT6XLsHP6WeTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:ea:79:4f:75:93:31:8e:00:58:c4:b3:e2:88:dd:52:de:d0:
b4:2a:ae:49:b5:49:ca:a6:33:2d:e8:cb:d3:94:cb:47:86:0d:
56:a9:4a:a0:45:ba:3f:58:40:90:4f:aa:61:ac:bd:11:b1:40:
bf:0b:f6:0d:03:0c:d0:66:1c:f5:c0:42:9c:b6:9d:d1:17:30:
23:ae:9c:da:18:d7:ad:29:fd:c6:ec:fb:08:3a:1a:d4:2a:0c:
e0:b2:67:ba:d1:bb:9e:26:37:75:bb:e4:5a:96:ef:9b:a0:5e:
0c:2f:43:23:ba:6f:34:2f:09:1b:ea:c1:a2:90:a5:05:fc:2b:
08:09:21:3c:ce:af:66:e4:17:a5:60:c4:97:6a:98:4f:63:17:
3e:62:e3:68:ec:d3:85:ce:71:5d:7c:db:21:b0:92:43:02:84:
30:c0:35:92:ba:68:a9:13:d7:02:d9:0a:eb:39:0b:75:d4:57:
8d:02:b2:00:4e:8f:cc:43:f4:35:52:d0:13:e6:73:9c:74:51:
f3:fa:27:ae:0f:9b:f5:ea:ac:ba:2b:24:a7:1f:d4:d0:b9:0b:
1f:fc:4a:17:40:f7:f5:97:6f:68:b3:c0:1b:6f:eb:e2:84:c1:
ed:77:87:7d:b0:0d:f2:69:e0:38:eb:78:1a:db:26:d9:a2:e6:
5c:c2:66:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:15:10 2025 by rpki-client