Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: JXwQgNTwRGuxH+HpPZJtXZzqOkWXDV5KX+YYeGUrbfA=
Subject key identifier: 0F:DB:19:B1:9D:B6:0F:BE:70:48:FB:B6:79:93:68:97:00:89:DD:A2
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 0198D4E0B582F3EC0DF18B29B48F2341C74D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 041B
Signing time: Sat 23 Aug 2025 03:02:32 +0000
Manifest this update: Sat 23 Aug 2025 03:02:32 +0000
Manifest next update: Sun 24 Aug 2025 03:02:32 +0000
Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: Q4BpRU50tHC/Q5Phk3Uvyj5TOSJnGlXivdVfT8/GpzQ=)
2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:b5:82:f3:ec:0d:f1:8b:29:b4:8f:23:41:c7:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Aug 23 03:02:32 2025 GMT
Not After : Aug 24 03:02:32 2025 GMT
Subject: CN=0fdb19b19db60fbe7048fbb6799368970089dda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6d:f1:07:ac:b0:f4:0d:ef:b8:9a:64:be:41:
70:fb:e6:5e:33:9e:42:2d:59:fa:22:8c:7d:ec:5a:
a4:d7:fe:e8:6a:c5:1b:52:79:11:40:d9:10:31:c1:
63:29:c2:e9:86:03:38:1f:07:1e:90:83:8f:46:2a:
78:42:80:22:1c:35:f9:98:d9:91:30:a8:c3:1b:04:
1e:a2:c0:3b:9d:d9:96:bf:fb:57:fb:53:d4:d8:9a:
07:f3:93:22:4e:2b:41:ad:71:bf:8a:36:76:60:1e:
09:06:36:47:41:29:8a:f4:3a:92:ba:16:9e:2f:8a:
a6:d6:ab:6e:8c:93:54:12:55:93:fc:06:06:06:bf:
53:57:a9:62:14:59:1a:ee:45:ca:51:e8:96:95:4b:
ff:28:0a:c2:1d:5b:8c:31:83:1f:a4:43:b9:11:6f:
65:4f:67:7d:ed:39:d1:b1:3a:c4:da:4b:c0:ed:6d:
16:bf:ab:58:77:bf:4a:00:a0:79:e4:fa:0b:68:f8:
4d:9e:66:d1:8c:ca:69:a2:07:7b:45:f9:f8:2d:7b:
84:35:4c:c1:1c:73:32:22:4d:3a:28:ae:d7:6d:75:
c6:7b:f5:d5:5d:12:68:3f:59:72:5b:b6:2d:d2:d9:
a5:f0:d3:f6:f7:3e:1a:8c:0f:37:80:d2:1b:c1:6a:
14:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:DB:19:B1:9D:B6:0F:BE:70:48:FB:B6:79:93:68:97:00:89:DD:A2
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:1f:0b:8b:03:63:1c:38:c5:95:bd:7c:e3:25:94:ee:7c:d8:
9d:cd:8a:ef:9f:67:da:3a:76:30:65:c1:55:f8:18:7d:fb:76:
3a:c8:18:60:ad:7c:db:7e:f5:1c:47:4c:60:11:30:bb:34:3f:
c1:2d:52:de:1b:6b:57:1f:56:b8:7f:49:58:da:c1:61:5a:23:
0d:17:88:b8:58:06:6a:ed:01:c0:f5:ee:c1:20:80:fa:5f:aa:
30:89:33:e1:28:dd:d3:38:3b:8c:93:0a:6a:fa:fc:29:5b:16:
3d:df:42:9c:80:9b:18:67:cc:5c:72:38:08:e5:35:0d:77:ff:
06:b0:31:e2:b6:63:f3:82:45:46:54:dd:f2:c5:a3:57:22:66:
aa:0d:5d:43:7f:24:d7:48:e4:43:ed:93:bb:62:60:35:eb:64:
da:0f:91:d9:49:48:9a:d3:d5:46:df:bf:9b:cd:a1:11:8d:c8:
44:ea:c5:c8:e4:06:c7:d1:ed:9a:10:7e:be:63:0b:61:2a:7f:
31:03:2d:b9:5c:39:cd:93:cf:53:97:66:a2:5d:99:ab:b3:aa:
14:d1:4d:d8:da:28:74:a2:99:4d:0e:44:12:53:cf:34:04:8e:
da:ca:8c:9b:98:a6:9d:3e:0b:8d:59:dd:53:a8:cc:35:c2:48:
3d:90:91:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:09:57 2025 by rpki-client