Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
File: UeFdozln1BRwqW1hQcg0DyJAWBw.mft (raw, json)
Hash identifier: J2X/6EAHyPWfVebmvwHqgmyLgwyKPd+hFnFBrTpOW4U=
Subject key identifier: 2C:4E:1B:0A:01:8B:4F:14:D5:14:7F:8A:EA:62:4B:AE:C3:A5:D5:13
Authority key identifier: 51:E1:5D:A3:39:67:D4:14:70:A9:6D:61:41:C8:34:0F:22:40:58:1C
Certificate issuer: /CN=51e15da33967d41470a96d6141c8340f2240581c
Certificate serial: 0198D54DCD11EE73D8A4F11A835D84A754F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 05:01:42 +0000
Manifest this update: Sat 23 Aug 2025 05:01:42 +0000
Manifest next update: Sun 24 Aug 2025 05:01:42 +0000
Files and hashes: 1: UeFdozln1BRwqW1hQcg0DyJAWBw.crl (hash: VGnJ+XyBlJsFik0h9i0VRy2YxC6I3F+3itwoRgtuV40=)
2: gBYCWzo5jT_O6BTkSg1kyvPsFw4.roa (hash: +/mKf9OZ57+DTvZmgtnYONd6u+f9yDN0GFvCHTpFrgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:cd:11:ee:73:d8:a4:f1:1a:83:5d:84:a7:54:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e15da33967d41470a96d6141c8340f2240581c
Validity
Not Before: Aug 23 05:01:42 2025 GMT
Not After : Aug 24 05:01:42 2025 GMT
Subject: CN=2c4e1b0a018b4f14d5147f8aea624baec3a5d513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:84:9d:34:1f:ca:4b:2e:60:93:54:d4:fe:55:
37:2a:eb:07:38:a3:7b:9f:82:d5:86:7d:f3:ab:cb:
7b:d9:ce:a6:a1:fb:6b:0f:0e:54:8d:2c:80:98:c0:
73:a2:80:a7:d0:97:90:c9:57:3b:fe:13:bb:1d:92:
0d:e0:7f:d2:b7:1b:c6:1c:b6:00:58:0a:16:7f:4f:
ad:bb:de:ff:1d:2c:46:4c:48:c5:41:be:40:dd:47:
b9:2a:c3:b7:d3:ac:2b:ab:59:20:65:be:cc:76:1e:
0e:73:03:76:a3:91:74:83:88:43:9c:8e:73:f2:c3:
8e:f6:6c:5e:e2:e1:6b:57:12:de:a9:c8:b2:7d:59:
30:6c:24:32:b9:c2:57:1d:77:f4:42:1e:8c:f0:46:
ce:d1:20:b3:c0:5d:42:c9:84:ae:2d:b2:67:f5:ec:
16:3e:9a:9a:6c:1d:b6:ce:49:94:40:69:b2:97:72:
e9:1b:dc:f2:d8:77:40:2b:8b:d8:1a:16:c7:8e:d9:
b3:12:04:15:1a:d4:8b:86:57:eb:33:47:fc:2b:0c:
bd:ae:5f:2c:c1:8c:f1:9b:2c:3e:f3:23:46:63:9f:
34:fa:08:71:0c:53:ed:b5:8a:df:30:94:c8:ab:8a:
c0:79:1c:a7:fe:0d:5e:c2:e0:2d:47:b6:0a:bd:5e:
bd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:4E:1B:0A:01:8B:4F:14:D5:14:7F:8A:EA:62:4B:AE:C3:A5:D5:13
X509v3 Authority Key Identifier:
keyid:51:E1:5D:A3:39:67:D4:14:70:A9:6D:61:41:C8:34:0F:22:40:58:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:19:97:66:c6:54:62:95:21:30:9e:70:28:45:d1:71:3d:e0:
c6:8f:07:d0:2e:ff:fd:81:2a:59:d9:98:ab:40:09:77:77:8d:
8e:b4:2f:07:41:23:df:70:9d:a4:92:0f:ca:94:92:28:70:b1:
37:43:11:b4:97:dc:b1:ff:30:93:98:8d:89:28:45:6c:99:25:
5d:43:94:07:c2:06:6a:3f:27:5c:66:a6:76:7a:e3:61:7b:43:
a7:0a:d8:ac:8a:3c:c6:e1:f3:12:c4:df:c6:ef:f4:d3:21:5b:
00:3d:53:56:8a:86:c3:56:1f:00:b8:dd:bc:11:0e:44:4b:fb:
79:8b:c2:20:4e:b6:c3:70:50:f7:e8:e3:3b:b8:6f:64:85:ae:
a8:74:7e:e1:9e:20:73:a2:08:13:ac:38:f6:1b:b1:49:bb:0a:
f6:c8:18:80:9e:41:1b:65:44:3d:54:7e:11:ba:29:32:b5:5d:
a1:35:a8:5c:0e:0e:29:34:41:bb:a2:01:8c:fd:35:13:f7:5b:
97:16:de:9e:02:af:97:8c:22:9f:3a:c5:b0:6f:cc:47:85:8c:
e4:28:68:ee:44:8a:60:24:cb:3d:d3:34:4f:cd:bb:68:ff:3a:
f9:b8:df:91:85:db:8c:27:e3:27:0b:c1:f8:f4:30:0a:9c:92:
58:34:72:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTc0R7nPYpPEag12Ep1T5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxZTE1ZGEzMzk2N2Q0MTQ3MGE5NmQ2MTQxYzgzNDBmMjI0
MDU4MWMwHhcNMjUwODIzMDUwMTQyWhcNMjUwODI0MDUwMTQyWjAzMTEwLwYDVQQD
EygyYzRlMWIwYTAxOGI0ZjE0ZDUxNDdmOGFlYTYyNGJhZWMzYTVkNTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYSdNB/KSy5gk1TU/lU3KusHOKN7
n4LVhn3zq8t72c6moftrDw5UjSyAmMBzooCn0JeQyVc7/hO7HZIN4H/StxvGHLYA
WAoWf0+tu97/HSxGTEjFQb5A3Ue5KsO306wrq1kgZb7Mdh4OcwN2o5F0g4hDnI5z
8sOO9mxe4uFrVxLeqciyfVkwbCQyucJXHXf0Qh6M8EbO0SCzwF1CyYSuLbJn9ewW
PpqabB22zkmUQGmyl3LpG9zy2HdAK4vYGhbHjtmzEgQVGtSLhlfrM0f8Kwy9rl8s
wYzxmyw+8yNGY580+ghxDFPttYrfMJTIq4rAeRyn/g1ewuAtR7YKvV69JQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCxOGwoBi08U1RR/iupiS67DpdUTMB8GA1UdIwQY
MBaAFFHhXaM5Z9QUcKltYUHINA8iQFgcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWVGZG96bG4xQlJ3cVcxaFFjZzBEeUpBV0J3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8yM2Q1YzEtYWM2Ni00NjFmLTkwMGYt
MzgwODg1NzQwZDRhLzEvVWVGZG96bG4xQlJ3cVcxaFFjZzBEeUpBV0J3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8yM2Q1YzEtYWM2Ni00NjFmLTkwMGYtMzgwODg1NzQwZDRh
LzEvVWVGZG96bG4xQlJ3cVcxaFFjZzBEeUpBV0J3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFRmXZsZU
YpUhMJ5wKEXRcT3gxo8H0C7//YEqWdmYq0AJd3eNjrQvB0Ej33CdpJIPypSSKHCx
N0MRtJfcsf8wk5iNiShFbJklXUOUB8IGaj8nXGamdnrjYXtDpwrYrIo8xuHzEsTf
xu/00yFbAD1TVoqGw1YfALjdvBEOREv7eYvCIE62w3BQ9+jjO7hvZIWuqHR+4Z4g
c6IIE6w49huxSbsK9sgYgJ5BG2VEPVR+EbopMrVdoTWoXA4OKTRBu6IBjP01E/db
lxbengKvl4winzrFsG/MR4WM5Cho7kSKYCTLPdM0T827aP86+bjfkYXbjCfjJwvB
+PQwCpySWDRy7w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:30:33 2025 by rpki-client