Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
File: UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft (raw, json)
Hash identifier: /SY9+00udPSd0oVzlbsTPLYkvQSTrtBvy9HSCXYAj00=
Subject key identifier: 07:B5:59:6C:74:52:C0:52:EF:E7:46:11:A1:CF:FB:FB:D4:63:BE:AF
Authority key identifier: 52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
Certificate issuer: /CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Certificate serial: 0199FCFD6AE20DE0B0B987CAD96BC1428735
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
Manifest number: 14BF
Signing time: Sun 19 Oct 2025 15:01:30 +0000
Manifest this update: Sun 19 Oct 2025 15:01:30 +0000
Manifest next update: Mon 20 Oct 2025 15:01:30 +0000
Files and hashes: 1: En0AxaNswsA9xI4lqkSKkt-F7C0.roa (hash: q8FwSEiSjvslMUXDVxvqWzOjw6rMu6h87zO4Dcum1yM=)
2: UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl (hash: 3IckWYLLSI5l9+7zibcuz6v4vDDuS3cFVBkk6JhD7D8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:6a:e2:0d:e0:b0:b9:87:ca:d9:6b:c1:42:87:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7
Validity
Not Before: Oct 19 15:01:30 2025 GMT
Not After : Oct 20 15:01:30 2025 GMT
Subject: CN=07b5596c7452c052efe74611a1cffbfbd463beaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5a:e9:57:e4:a1:65:1f:31:e3:91:bc:ac:7d:
29:02:e9:36:e4:4e:ea:29:a7:95:e5:0a:f6:84:62:
a7:10:24:b4:72:86:77:45:83:11:c2:ae:dd:b3:cc:
53:5f:4b:cd:57:c3:95:3f:59:3d:b0:ed:fc:19:38:
24:14:80:1a:78:0f:f9:23:72:bf:01:88:58:52:42:
ba:5e:dc:f4:35:8a:f6:bc:df:e7:99:ab:e9:c5:d7:
21:fe:de:fd:d5:1f:cc:a7:e6:71:36:fa:b7:b2:9e:
1b:d2:67:13:c4:ad:1d:0e:d6:34:be:5a:b9:53:81:
90:ae:c8:9d:8c:f6:2c:f0:ee:47:3f:ee:83:bc:a5:
bf:ba:04:5b:be:3f:2f:a1:6c:69:04:2a:b6:a2:6a:
33:f6:be:a4:ae:41:82:6a:77:f0:94:2a:21:0c:7f:
65:02:5f:62:14:90:a9:79:2f:d6:34:86:6b:7c:cb:
1c:c0:59:f8:f0:26:7a:4b:0a:1c:38:77:fc:5d:b5:
9c:5a:7f:70:05:30:97:a6:44:b9:30:56:a7:db:05:
04:82:0a:6e:b4:fd:12:1d:29:05:b1:90:64:c0:d6:
28:e1:7a:1e:b7:cd:d0:de:cf:3d:71:0e:66:85:77:
8d:1f:cb:36:e6:a8:90:29:0f:1c:53:69:04:b5:e1:
f3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B5:59:6C:74:52:C0:52:EF:E7:46:11:A1:CF:FB:FB:D4:63:BE:AF
X509v3 Authority Key Identifier:
keyid:52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:7f:69:d7:bb:dc:94:1b:93:26:11:6a:79:df:23:4c:e9:8d:
60:ef:29:f6:ec:5e:76:9f:08:24:6c:8c:34:bd:4f:c7:bf:37:
55:49:89:d1:32:a7:84:38:2c:5f:d5:13:71:87:af:12:f0:ff:
67:0b:10:93:fe:23:53:ae:fc:e0:4a:c3:d0:cf:06:43:6a:de:
35:82:8d:7a:b0:67:6c:16:f2:d8:83:73:d3:b6:8c:d2:e3:04:
ee:54:d5:88:82:21:aa:e3:9d:60:85:62:f9:ef:e8:f6:f3:52:
48:a3:85:9e:ac:f7:b3:2b:8f:16:16:6a:35:87:40:da:0e:47:
c9:b5:2a:4a:a6:7e:fe:cc:8e:82:ee:f4:3f:84:07:99:86:4b:
4f:6d:3b:a1:7c:a6:9a:26:51:bc:9d:8d:3b:35:b2:64:b8:ee:
1c:53:ea:55:5e:e9:5d:0d:62:25:0a:51:03:69:d3:2b:53:70:
06:06:00:4e:2e:03:42:21:be:a3:59:6f:5f:30:28:0b:22:24:
75:4c:8c:22:ac:f6:d4:03:55:3b:2f:83:1c:6c:d8:6d:34:8e:
be:4c:ef:a0:87:6b:50:cb:d8:66:fa:aa:96:ab:f2:39:93:50:
7a:72:86:78:f6:cb:95:62:fe:8b:66:81:99:95:72:ee:71:58:
4c:ec:81:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:28:02 2025 by rpki-client