Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
File: Uylu4zFT725pONV6KhMsHlJtxDA.mft (raw, json)
Hash identifier: ZgzTelh99HjthebisZtJvBzYTPT7ERjF+GJ4wpuXuYU=
Subject key identifier: DF:56:C7:A1:22:B4:8B:9C:5E:22:D5:F6:D6:DB:9F:ED:19:1E:B7:4B
Authority key identifier: 53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30
Certificate issuer: /CN=53296ee33153ef6e6938d57a2a132c1e526dc430
Certificate serial: 0199FB45DAE14259A7526311D906F64903CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
Manifest number: 15B7
Signing time: Sun 19 Oct 2025 07:01:23 +0000
Manifest this update: Sun 19 Oct 2025 07:01:23 +0000
Manifest next update: Mon 20 Oct 2025 07:01:23 +0000
Files and hashes: 1: Uylu4zFT725pONV6KhMsHlJtxDA.crl (hash: AuslwkfCJJ0DTDdZe4C6CK8kLo990eIS6VJR8UZW1MY=)
2: kWgx2Wjql2LYt0QNUa7UD3E-ZNs.roa (hash: NPB7ZX6Td6/rM0WpZJID5mJD7qpTT41mPi5DDVNwg5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:da:e1:42:59:a7:52:63:11:d9:06:f6:49:03:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53296ee33153ef6e6938d57a2a132c1e526dc430
Validity
Not Before: Oct 19 07:01:23 2025 GMT
Not After : Oct 20 07:01:23 2025 GMT
Subject: CN=df56c7a122b48b9c5e22d5f6d6db9fed191eb74b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d2:9c:28:09:58:4f:cb:5e:ca:89:7b:26:1a:
cd:7d:2d:8b:a1:25:2f:6e:49:97:28:f6:ad:29:b0:
7c:26:e2:96:03:f6:5a:37:ca:0c:4a:09:9a:9c:1a:
c9:cc:c6:a9:71:ce:d2:e4:8a:97:b7:8e:0f:95:10:
70:25:ff:7f:fd:21:b4:3f:c6:33:c6:94:ae:5c:bc:
84:c5:1a:a6:21:8c:48:85:5b:2b:09:b7:ce:66:a5:
3d:9e:22:8a:2a:28:ee:20:07:02:e7:c3:e0:a1:7b:
c7:84:cb:b2:e5:45:c3:77:a5:5b:0a:32:d2:8e:05:
b2:d9:4c:54:a9:90:d7:90:1b:0d:25:68:e3:33:4b:
e8:1b:00:a4:86:c5:37:2e:3f:45:cf:2d:eb:af:e4:
8c:32:af:9e:ef:74:0c:0a:ad:cc:51:f5:cb:4a:c6:
d7:6d:88:cc:e3:df:d0:1e:b4:c4:4d:78:6b:49:df:
52:56:8d:e9:81:3a:d3:7e:3a:4a:cf:35:14:65:60:
52:39:85:f8:31:24:5f:3e:dd:f2:37:28:d3:7a:8f:
c2:fc:61:c6:d8:05:40:81:3c:31:55:df:68:e5:00:
0c:20:2f:0b:2c:09:c3:06:ac:66:3c:7d:a9:23:d7:
cf:29:98:d0:75:ea:2c:85:df:41:cd:20:91:8b:e2:
be:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:56:C7:A1:22:B4:8B:9C:5E:22:D5:F6:D6:DB:9F:ED:19:1E:B7:4B
X509v3 Authority Key Identifier:
keyid:53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:b0:10:8e:89:7c:eb:23:ef:13:8b:8c:79:1b:e9:6b:dc:04:
83:e4:50:24:55:52:4e:16:95:b8:6e:a6:f9:61:8e:e4:1e:cd:
31:c2:89:30:27:c8:f9:67:8d:1c:07:b4:e3:df:1e:e7:6a:ab:
85:59:ca:41:67:af:3b:c0:4c:1a:41:6d:a2:7d:53:a0:9e:1c:
53:fe:92:80:b8:a3:f8:02:70:3d:43:c1:c4:8c:af:9b:23:89:
eb:ff:81:58:bf:d6:79:dd:88:95:99:82:7c:13:51:09:07:00:
e2:44:b1:29:0b:0e:23:26:28:f8:ca:c6:f4:26:02:9f:fb:e1:
90:7d:75:36:97:ee:6e:97:23:10:7a:ce:8b:35:d5:eb:79:93:
96:4f:b8:fa:02:5a:66:bb:33:41:c7:00:51:65:3b:f3:08:98:
e1:fc:d7:9d:c7:f7:81:9a:fa:6b:0f:3d:c3:b5:7c:89:ca:09:
14:aa:69:a3:f2:9b:c9:0b:1c:f8:ca:ab:e5:1f:32:a5:5e:d1:
55:13:3f:f0:cd:23:c8:46:f1:58:7e:70:86:77:d5:ba:08:85:
b8:a0:c7:f0:e1:d9:22:c9:d9:9d:78:3b:75:b5:d4:dc:4b:2f:
e5:13:f6:66:5e:d6:fb:05:b4:65:a3:d4:d4:a4:a1:72:0f:12:
45:8b:69:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:20:23 2025 by rpki-client