Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
File: UIqaCKvvdNzFEAT0-uAmbWIDleM.mft (raw, json)
Hash identifier: k2ke7srPKkAUvWgVi6lEdr7hGLhwKKI1oYCE7YV8y+U=
Subject key identifier: 4B:99:D3:2D:90:DD:2D:89:35:86:46:84:CC:3C:03:4D:61:9A:5F:48
Authority key identifier: 50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
Certificate issuer: /CN=508a9a08abef74dcc51004f4fae0266d620395e3
Certificate serial: 0198D4E06F2EA7A2FD6475213586CACB8E8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
Manifest number: 0E3D
Signing time: Sat 23 Aug 2025 03:02:14 +0000
Manifest this update: Sat 23 Aug 2025 03:02:14 +0000
Manifest next update: Sun 24 Aug 2025 03:02:14 +0000
Files and hashes: 1: 8CmFhnWxaCeDeglOctNQZC1ZN84.roa (hash: mRPJMJZCvcTnlYvn8UFVdthp3gWoolEvhKxuWOWcGDk=)
2: UIqaCKvvdNzFEAT0-uAmbWIDleM.crl (hash: ZZiLWyH/s0o4eePBNplTpN7fn4h1kEvGXhfYNLRB81w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:6f:2e:a7:a2:fd:64:75:21:35:86:ca:cb:8e:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=508a9a08abef74dcc51004f4fae0266d620395e3
Validity
Not Before: Aug 23 03:02:14 2025 GMT
Not After : Aug 24 03:02:14 2025 GMT
Subject: CN=4b99d32d90dd2d8935864684cc3c034d619a5f48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f4:f3:36:35:07:3a:33:db:91:0e:b6:74:cb:
ca:01:9e:c3:70:5c:a6:69:e3:33:26:23:2f:8c:b6:
82:e2:45:7f:ef:77:21:df:0c:25:a4:47:99:80:90:
a7:a8:3b:0a:43:2b:e7:01:4c:a2:28:00:29:6e:85:
e3:9c:f2:76:d7:34:21:bb:c4:d3:69:ea:20:6b:62:
37:59:56:e8:2b:b7:fe:e2:c8:f2:d5:01:ee:88:1e:
15:54:14:83:71:79:e6:1d:c7:7e:23:57:13:e0:0c:
4a:7b:e8:08:8c:e6:b7:cc:ce:79:6f:41:0c:7e:5b:
d9:24:94:2b:cf:20:07:8a:19:06:42:9f:0b:ea:61:
7d:6c:4e:12:3f:a2:8b:a2:cc:e2:4c:7c:0b:09:f6:
18:e3:7f:b4:5a:bf:53:3d:a6:b4:fd:92:1a:63:5d:
bd:91:c4:82:97:84:34:52:a6:68:e7:59:7d:c8:be:
bf:d1:80:92:e3:a4:12:ca:12:8a:13:58:86:e4:9d:
1e:81:f2:d6:99:77:b6:92:4e:7e:36:a6:ff:bf:4b:
70:48:ec:ac:79:2c:74:5f:0a:24:cd:d1:66:9c:8a:
91:14:82:ec:3b:33:f4:e4:70:b9:da:5b:63:c6:a5:
85:10:b2:13:a9:dc:cc:49:32:3a:3c:5f:43:e0:ff:
b4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:99:D3:2D:90:DD:2D:89:35:86:46:84:CC:3C:03:4D:61:9A:5F:48
X509v3 Authority Key Identifier:
keyid:50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:f5:7a:4c:ed:64:7b:90:c5:d8:cb:69:26:ed:56:00:e7:72:
7a:bc:ea:4d:15:04:2c:58:61:d1:ab:c8:1f:1a:af:09:4c:82:
08:df:21:77:4f:81:7d:c9:9d:61:32:69:0a:fc:a3:22:d8:68:
66:35:08:6e:23:ae:b1:21:4f:b4:d8:6f:27:4c:01:33:4e:8e:
33:ab:ee:1e:cf:3d:fd:a0:dc:b4:76:56:11:f5:99:6f:f0:15:
4e:6c:b8:30:97:c7:0a:c7:0d:48:af:70:33:75:47:f0:f8:f2:
0d:db:da:90:83:5b:76:b2:fa:7d:2c:17:3c:24:4d:48:07:16:
4c:ab:c8:b6:a4:6e:5d:d0:a8:e7:56:a0:8f:79:30:08:ce:6d:
45:90:0b:bc:9e:1a:be:d6:ea:8d:08:78:95:08:b5:1f:85:3e:
00:fa:b7:1a:d1:7d:58:4b:99:be:7c:57:02:29:0e:c7:eb:c1:
6e:d7:28:ef:db:8f:5c:a6:2b:55:2d:34:17:74:ec:fa:14:e3:
c2:4b:60:fb:62:36:96:a2:f0:72:78:28:33:9f:c3:6b:de:90:
da:b3:26:31:19:00:ec:13:98:3a:cb:d6:c8:24:35:89:5f:03:
f9:81:2e:9f:90:73:8f:03:60:78:0d:49:1d:33:8c:af:43:69:
42:98:07:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:48:21 2025 by rpki-client