Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
File: UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft (raw, json)
Hash identifier: A6FG0GU0dDoDi21DW33qUeKX75RFHpbJ1azkck1E7kc=
Subject key identifier: F0:05:2A:7D:D3:45:F5:55:B4:B3:83:79:80:F4:7D:82:BA:65:5D:5B
Authority key identifier: 52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
Certificate issuer: /CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Certificate serial: 0197B5C47C934795E059106547E64883BAF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
Manifest number: 1391
Signing time: Sat 28 Jun 2025 09:00:42 +0000
Manifest this update: Sat 28 Jun 2025 09:00:42 +0000
Manifest next update: Sun 29 Jun 2025 09:00:42 +0000
Files and hashes: 1: En0AxaNswsA9xI4lqkSKkt-F7C0.roa (hash: q8FwSEiSjvslMUXDVxvqWzOjw6rMu6h87zO4Dcum1yM=)
2: UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl (hash: 09MJfxvXNZ30ZbNCRNfT0LiM/q1KqJhRq5b/s4DfLVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:7c:93:47:95:e0:59:10:65:47:e6:48:83:ba:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Validity
Not Before: Jun 28 09:00:42 2025 GMT
Not After : Jun 29 09:00:42 2025 GMT
Subject: CN=f0052a7dd345f555b4b3837980f47d82ba655d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:88:c6:4a:c3:55:fb:0c:9d:d4:e4:c5:9d:f5:
f9:51:9b:3b:87:db:94:ed:cd:84:90:ac:18:5a:14:
6c:a8:b3:dc:00:32:34:2a:5f:35:32:1f:de:1c:46:
7e:17:c3:54:de:17:40:37:09:8e:71:e7:63:76:a1:
a7:f8:a1:1e:80:6b:a5:bb:4e:9a:70:08:98:8a:5d:
f9:b2:49:2b:a5:cb:09:de:b1:a1:b9:30:96:e3:5c:
db:1e:d4:07:b5:71:5d:7f:92:14:97:b0:6f:81:2d:
d5:2f:f4:3d:65:11:28:b9:d2:7b:5b:41:a5:cd:d2:
a2:08:c8:0b:0e:37:3a:23:1b:90:2e:5e:8f:9a:f9:
61:ab:21:07:2f:69:ab:c0:c5:9d:3b:f7:87:34:66:
ca:58:63:ef:5b:ac:0d:fa:a8:c1:33:d1:70:52:c1:
72:dd:24:82:3b:dc:7b:e9:9e:45:c4:c7:be:c3:a6:
e9:5c:a6:db:57:63:45:4d:8a:38:b4:04:90:6c:84:
ac:a2:28:16:93:61:a2:57:fd:e9:f1:e1:e5:e7:7b:
b2:c7:45:29:b7:f6:5e:30:a9:35:8f:41:82:f2:1e:
a3:7c:33:c1:73:c0:c5:7b:85:36:bd:b6:ff:c8:e4:
58:a4:6d:0a:de:f7:ce:70:fa:bb:ae:71:11:ee:04:
ba:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:05:2A:7D:D3:45:F5:55:B4:B3:83:79:80:F4:7D:82:BA:65:5D:5B
X509v3 Authority Key Identifier:
keyid:52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:d7:e6:bb:ff:03:74:e1:78:57:4e:9e:01:0d:54:84:c2:92:
b8:e6:50:54:5b:16:73:a9:05:63:76:d0:45:b9:ad:32:32:56:
41:94:35:69:e8:e0:5c:e9:6a:0e:ea:8a:6f:5c:b9:b7:8e:09:
72:cf:4a:cf:6d:af:3d:76:e8:8a:43:64:e9:aa:34:42:d7:8c:
86:24:76:0e:8b:17:5b:18:6c:1e:ad:04:bb:b6:83:a3:c5:26:
24:e5:ee:42:5f:79:e4:75:79:8f:5a:49:97:92:2a:e2:e3:e5:
11:ee:92:2a:b6:2e:3c:2d:15:74:ce:e8:e1:a5:15:c9:2e:3c:
df:e4:97:7b:0e:a2:0b:ea:c2:7c:d0:bd:ff:ad:0f:00:a1:1d:
2b:47:3f:8d:90:0d:eb:ad:ea:ed:a5:2c:7d:19:70:20:37:db:
12:7a:1e:7c:d8:b6:63:db:b6:d2:bf:6c:b4:6c:0c:37:86:24:
84:e8:6c:92:8d:da:55:89:6a:56:38:c3:4a:17:82:1e:a8:5a:
2e:36:43:56:61:7f:90:2c:3a:a2:86:71:26:6b:4c:37:ac:1c:
c7:97:56:b4:3b:6c:f5:d9:7a:7c:b8:8c:9f:34:79:ed:02:67:
e9:ed:1b:9f:c9:9e:46:63:3a:45:ad:52:37:f8:fa:7f:74:24:
11:e5:d9:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:37:07 2025 by rpki-client