Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: nZNStoR2/Dxl9fyoOk647MQiCicdGKsg59CTNVVK8/I=
Subject key identifier: AE:56:F1:5B:EF:67:19:50:2D:52:37:2E:E1:00:E7:A9:34:8A:F3:4E
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 0199FC587EE8B4A609DFBE642259C2ECBB9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 04B4
Signing time: Sun 19 Oct 2025 12:01:21 +0000
Manifest this update: Sun 19 Oct 2025 12:01:21 +0000
Manifest next update: Mon 20 Oct 2025 12:01:21 +0000
Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: nUfiRkjnRPmlawf2Knsg2d3R7EuyLVb7iHucpd1gweE=)
2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:7e:e8:b4:a6:09:df:be:64:22:59:c2:ec:bb:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Oct 19 12:01:21 2025 GMT
Not After : Oct 20 12:01:21 2025 GMT
Subject: CN=ae56f15bef6719502d52372ee100e7a9348af34e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:48:fd:b7:40:5c:fc:a0:98:78:2c:44:0a:18:
8a:bb:52:b5:c1:71:7d:64:6c:a3:6d:1e:65:2b:74:
45:e0:0e:29:f2:49:d9:03:6d:9d:68:12:28:2a:b1:
48:4c:2e:2f:56:cd:49:03:71:3d:1b:66:da:cb:49:
31:c6:5b:c3:ad:58:f0:ff:82:d5:24:b1:db:85:65:
7f:7f:c6:86:43:87:ec:4d:1e:ab:35:d4:af:57:ef:
f5:46:27:39:76:9b:aa:c7:9f:46:0b:26:1c:c9:da:
90:e0:93:7f:f9:6b:71:69:b2:12:dc:cc:ad:70:b6:
09:6a:e5:97:6e:f6:b9:31:ec:83:35:c7:fe:c1:8b:
38:f5:dc:b6:36:8e:32:61:88:62:59:43:80:34:16:
75:7e:de:e2:df:d2:ce:5c:b9:5a:62:6f:0d:1a:75:
90:80:77:53:cb:be:d4:de:56:2c:48:0f:c3:7d:71:
7b:49:c2:14:bd:85:bb:a4:0f:06:9e:3b:72:b8:35:
c7:0b:c6:1d:1f:1a:c5:1e:01:b8:15:48:dd:d2:e4:
58:d4:d8:21:a5:42:81:55:6d:bc:ce:9c:de:c9:c2:
f4:1d:9a:19:8a:09:05:61:91:25:ee:78:a0:46:aa:
d7:cf:11:df:30:7e:51:05:02:76:e2:a7:36:66:92:
59:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:56:F1:5B:EF:67:19:50:2D:52:37:2E:E1:00:E7:A9:34:8A:F3:4E
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:f2:69:d0:1b:f5:09:fd:c1:ed:c9:67:a3:bf:7f:20:f0:94:
fd:d0:85:87:c4:53:f0:ee:48:49:7b:0f:47:c3:68:cb:4c:be:
d0:07:e6:c3:7c:2a:bd:fc:34:3b:3c:7e:cd:eb:16:1c:74:f0:
8e:95:62:07:0a:e4:f3:00:a8:6d:9f:ac:7d:00:07:00:74:cf:
f8:d8:bf:d0:61:52:28:ea:88:47:96:f6:10:2d:75:30:e1:89:
bc:25:4c:34:8b:ef:c8:d5:0d:02:78:26:0a:46:08:e4:47:62:
2d:be:84:39:2a:fd:83:60:8c:16:84:57:b9:42:0e:ca:23:b1:
3a:85:e3:f0:25:17:37:e3:0f:07:44:32:7a:e0:4d:a2:5d:68:
a9:c4:55:3a:2d:5e:97:ad:db:96:e7:0f:c5:32:0a:83:17:1c:
29:73:3b:35:8d:cc:1d:82:37:73:ad:76:20:2b:02:dc:70:90:
b5:3d:eb:8f:89:b2:e5:11:61:fd:cf:54:5f:85:d1:2f:ee:96:
bd:c6:46:7d:e9:19:71:16:f6:59:15:21:bd:0f:d1:82:48:ce:
a8:f4:a0:2b:d7:0f:a0:c3:57:ba:f1:be:93:a6:6d:6f:c9:78:
d5:7b:4a:39:9d:50:bb:5f:a2:51:6f:ac:94:b7:a1:39:f8:2e:
d1:5a:24:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:33:26 2025 by rpki-client