Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft
File: UMXKBp6qqux3WtCk6jtHYFtyiiU.mft (raw, json)
Hash identifier: 4VT5oXQhZC4uY7B3P+D4NSb7434Bro7j/N0zNByb0dI=
Subject key identifier: BE:2B:1D:72:8F:87:79:42:9B:35:E3:92:2A:D3:E6:78:44:46:CA:79
Authority key identifier: 50:C5:CA:06:9E:AA:AA:EC:77:5A:D0:A4:EA:3B:47:60:5B:72:8A:25
Certificate issuer: /CN=50c5ca069eaaaaec775ad0a4ea3b47605b728a25
Certificate serial: 0198D515A08213CA356BDB28103CC718ECF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMXKBp6qqux3WtCk6jtHYFtyiiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft
Manifest number: 159B
Signing time: Sat 23 Aug 2025 04:00:20 +0000
Manifest this update: Sat 23 Aug 2025 04:00:20 +0000
Manifest next update: Sun 24 Aug 2025 04:00:20 +0000
Files and hashes: 1: FEtsoc8GhVwS-itqE7wFwW_E2l0.roa (hash: wzhGlUkDAVqaCjdqlX0sPOVL6b9f0X/6vMu8NbyqVQo=)
2: UMXKBp6qqux3WtCk6jtHYFtyiiU.crl (hash: a/LAsgrAQo+XuH2WEYN51Yst4Jv62QEuR+gSBK6YjEQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UMXKBp6qqux3WtCk6jtHYFtyiiU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:a0:82:13:ca:35:6b:db:28:10:3c:c7:18:ec:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50c5ca069eaaaaec775ad0a4ea3b47605b728a25
Validity
Not Before: Aug 23 04:00:20 2025 GMT
Not After : Aug 24 04:00:20 2025 GMT
Subject: CN=be2b1d728f8779429b35e3922ad3e6784446ca79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:9f:89:11:5d:46:1b:d2:03:9e:12:d8:1a:5c:
72:aa:4b:7b:04:9d:37:46:3b:9c:23:d4:3d:33:2e:
71:e7:aa:92:36:8d:5f:8f:dc:71:08:eb:ac:3d:f1:
40:55:0b:c2:75:ee:57:cf:fa:26:37:97:d3:a0:5c:
ca:95:52:21:9d:5e:da:83:76:7a:48:00:8c:f2:87:
a6:67:1a:cc:77:7b:b7:74:15:db:db:56:98:82:cc:
a7:7f:9e:64:db:06:75:f2:b4:83:f4:96:bf:da:f6:
c6:0e:ed:7c:77:9a:de:1e:8d:9c:e8:5f:97:fb:1a:
96:36:d0:a0:03:0b:7d:54:14:dd:0c:60:9d:18:9a:
d6:a1:59:3c:5c:c4:86:2b:b8:8f:64:b5:86:88:81:
44:92:c2:71:45:b2:9e:2e:ef:fd:78:db:77:81:76:
74:7d:a8:9a:70:2b:9b:9f:77:fb:92:af:15:82:a1:
2b:41:c2:5a:f2:59:f6:bb:48:d0:71:0c:70:96:98:
9f:14:3b:0b:0e:30:80:1f:47:57:0d:81:33:6b:dd:
b1:eb:42:b5:1c:b5:ce:5e:6f:3a:e8:5d:51:1a:64:
06:2c:31:9f:b6:cb:92:a3:20:0a:5a:f7:5a:4b:4f:
52:c0:88:40:6d:27:8b:d3:80:11:f9:12:88:4b:d0:
6e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:2B:1D:72:8F:87:79:42:9B:35:E3:92:2A:D3:E6:78:44:46:CA:79
X509v3 Authority Key Identifier:
keyid:50:C5:CA:06:9E:AA:AA:EC:77:5A:D0:A4:EA:3B:47:60:5B:72:8A:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMXKBp6qqux3WtCk6jtHYFtyiiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:d1:53:27:97:b7:06:a4:be:d9:d7:69:91:8d:bc:3f:22:b3:
58:6d:c0:8b:b4:2c:e8:14:04:57:88:dc:d0:aa:af:e3:a9:22:
4d:87:a0:36:7c:04:5c:6c:9d:ad:8a:b2:18:ea:2a:60:7d:8a:
0c:19:bb:b3:ae:45:8c:1e:8a:dc:3c:ca:be:09:e7:37:ba:2f:
ac:50:1e:73:a1:39:b9:1e:18:f8:0a:55:0c:64:24:39:4f:59:
61:92:b1:f1:55:63:e3:0a:e3:3f:c5:1a:f5:00:9a:88:e9:40:
a7:25:2f:e5:2e:27:55:df:64:09:b6:39:fa:c3:ad:14:cf:69:
e9:99:25:d7:64:6b:85:76:c4:2d:0a:41:f4:40:90:0a:14:31:
45:8e:51:a4:29:48:a4:7e:f9:62:74:19:96:26:f5:58:00:ad:
e6:aa:14:0c:3a:da:0f:97:f8:98:d3:96:a0:e2:6f:75:65:2a:
e4:2d:a5:bc:4a:9d:0f:6a:26:d4:a0:94:14:3c:5b:bc:c3:73:
89:6f:1d:a0:d0:87:f9:d0:6c:a9:15:e6:2d:34:1f:a5:81:54:
77:2d:68:d9:04:02:fa:dd:03:13:a3:aa:40:81:19:5d:70:17:
92:52:b7:ff:fa:46:cb:83:fe:cf:df:fd:e1:e7:63:b4:ca:40:
07:1e:be:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:32 2025 by rpki-client