Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: nwTLu0Asf9J+JPZukl8oOPNzvB/W2cQ1MY1KTyTKLIY=
Subject key identifier: F6:55:87:B7:09:68:CD:C9:DD:54:75:09:F5:E5:4D:1A:3C:15:88:E6
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 0197B70E4E419AFD90B665B7632EA26BFFDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 0387
Signing time: Sat 28 Jun 2025 15:00:57 +0000
Manifest this update: Sat 28 Jun 2025 15:00:57 +0000
Manifest next update: Sun 29 Jun 2025 15:00:57 +0000
Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: n6TZZFPyIMK0Ju3KKY7oqET0rqQsak+JSzaColJ/2uI=)
2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:4e:41:9a:fd:90:b6:65:b7:63:2e:a2:6b:ff:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Jun 28 15:00:57 2025 GMT
Not After : Jun 29 15:00:57 2025 GMT
Subject: CN=f65587b70968cdc9dd547509f5e54d1a3c1588e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6c:76:d1:ad:01:91:d0:d4:fb:ac:0c:52:a4:
b4:89:52:33:d6:d9:91:23:54:26:31:42:b6:b6:6b:
d3:75:12:c5:60:6e:6d:61:d5:ed:81:c9:6b:79:92:
ef:c7:d3:96:6c:2f:31:5b:36:e3:74:c5:c9:58:14:
40:05:00:f3:8b:f9:89:bc:c0:d1:00:f3:02:6f:24:
ff:00:84:29:98:70:5f:84:92:40:9a:fa:59:08:29:
55:eb:7d:c1:25:61:03:d8:69:34:94:c1:1a:91:20:
53:c8:68:c5:21:34:97:34:93:bc:67:4c:14:4b:1d:
d5:18:77:c6:73:9c:38:95:4d:33:1a:be:af:fb:36:
f4:d5:14:1c:9f:93:90:22:69:d3:d6:22:9e:94:11:
ee:09:c8:28:c4:b7:bd:01:14:d1:58:10:0b:80:fc:
21:ae:40:47:f9:89:84:a2:24:97:04:41:a5:df:2a:
4e:e8:ae:b8:b0:25:26:28:8e:e5:20:b2:5a:cd:7c:
a4:d9:f4:5b:56:88:20:cc:d9:d8:88:f1:de:e1:cf:
06:59:98:60:aa:99:38:42:17:fe:2e:10:6f:34:07:
92:bb:68:b5:73:c9:90:9c:55:e3:14:ed:35:91:0d:
09:88:6c:ac:eb:81:c5:af:9e:9e:8e:d6:69:cd:60:
1d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:55:87:B7:09:68:CD:C9:DD:54:75:09:F5:E5:4D:1A:3C:15:88:E6
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:19:fd:34:86:9e:70:7d:69:b2:46:73:6b:91:3d:fa:e8:4f:
cb:a3:4c:63:35:dc:f7:a2:b6:8a:50:e4:77:28:fa:1c:89:85:
a5:ee:0c:19:dc:bd:f7:38:bd:78:c6:a0:46:52:22:c3:57:19:
4b:2e:79:29:8f:23:5a:e6:45:3f:49:83:43:24:2f:73:f1:9e:
a7:bb:f6:f7:5d:d4:48:50:03:09:cf:68:f2:71:9a:db:8d:f4:
9f:20:3d:f3:f8:72:8e:7b:e9:65:b7:1f:56:63:4a:a0:04:42:
4e:5b:ff:03:96:fc:5f:63:89:4d:eb:61:d5:69:32:65:63:c6:
e5:be:2b:be:59:cf:a6:17:ba:5e:c3:1b:77:08:01:67:30:3b:
dd:f1:0f:03:da:84:37:0c:c2:a0:3e:71:49:82:eb:6e:cd:4f:
6f:43:64:bd:74:2e:c5:d5:a4:0f:cc:a9:73:18:51:dc:7a:9c:
28:b3:99:4d:38:f5:23:17:21:b9:15:92:ac:4b:3f:50:16:5f:
5d:5d:50:96:fb:6b:0f:57:4f:f0:f8:d1:73:0b:5b:9c:73:7c:
3d:ba:f6:85:af:59:d6:c0:23:6f:41:78:2f:1e:00:ae:6d:16:
6d:27:70:0b:60:cc:16:93:1b:33:19:a4:4e:81:5f:80:b6:f1:
63:20:48:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3Dk5Bmv2QtmW3Yy6ia//bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYTY1YzYyODQ4M2E3NTY2ODhiYjE1OGMyOGFiN2MwZDQ3
ZGUyN2MwHhcNMjUwNjI4MTUwMDU3WhcNMjUwNjI5MTUwMDU3WjAzMTEwLwYDVQQD
EyhmNjU1ODdiNzA5NjhjZGM5ZGQ1NDc1MDlmNWU1NGQxYTNjMTU4OGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmx20a0BkdDU+6wMUqS0iVIz1tmR
I1QmMUK2tmvTdRLFYG5tYdXtgclreZLvx9OWbC8xWzbjdMXJWBRABQDzi/mJvMDR
APMCbyT/AIQpmHBfhJJAmvpZCClV633BJWED2Gk0lMEakSBTyGjFITSXNJO8Z0wU
Sx3VGHfGc5w4lU0zGr6v+zb01RQcn5OQImnT1iKelBHuCcgoxLe9ARTRWBALgPwh
rkBH+YmEoiSXBEGl3ypO6K64sCUmKI7lILJazXyk2fRbVoggzNnYiPHe4c8GWZhg
qpk4Qhf+LhBvNAeSu2i1c8mQnFXjFO01kQ0JiGys64HFr56ejtZpzWAduQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPZVh7cJaM3J3VR1CfXlTRo8FYjmMB8GA1UdIwQY
MBaAFFKmXGKEg6dWaIuxWMKKt8DUfeJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMt
NTAxNWUxMjA4MTE5LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMtNTAxNWUxMjA4MTE5
LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbRn9NIae
cH1pskZza5E9+uhPy6NMYzXc96K2ilDkdyj6HImFpe4MGdy99zi9eMagRlIiw1cZ
Sy55KY8jWuZFP0mDQyQvc/Gep7v2913USFADCc9o8nGa2430nyA98/hyjnvpZbcf
VmNKoARCTlv/A5b8X2OJTeth1WkyZWPG5b4rvlnPphe6XsMbdwgBZzA73fEPA9qE
NwzCoD5xSYLrbs1Pb0NkvXQuxdWkD8ypcxhR3HqcKLOZTTj1IxchuRWSrEs/UBZf
XV1QlvtrD1dP8PjRcwtbnHN8Pbr2ha9Z1sAjb0F4Lx4Arm0WbSdwC2DMFpMbMxmk
ToFfgLbxYyBI6g==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:35:44 2025 by rpki-client