Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
File: UHDcUgTez3q-pQcNdfoFjIrAE9U.mft (raw, json)
Hash identifier: verbqEgVBqySXQMs26mD9H03BLGNwf+Y5gqOI2lPvEA=
Subject key identifier: 57:34:90:BC:CD:EB:0C:86:95:36:FA:13:7E:D7:C2:7E:22:2B:DA:AE
Authority key identifier: 50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5
Certificate issuer: /CN=5070dc5204decf7abea5070d75fa058c8ac013d5
Certificate serial: 0199FFC8907AA76C5A568F6269692A13ECDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
Manifest number: 1405
Signing time: Mon 20 Oct 2025 04:02:38 +0000
Manifest this update: Mon 20 Oct 2025 04:02:38 +0000
Manifest next update: Tue 21 Oct 2025 04:02:38 +0000
Files and hashes: 1: 1qF2qpZ4KDEQgCHi8Zz6Mofp1Bw.roa (hash: ZUGdPkmwhsuvGIfhBFvpGPh0RIr8NwcoDU94MyjHlG0=)
2: UHDcUgTez3q-pQcNdfoFjIrAE9U.crl (hash: Sdixz92QQYfAzf5wosqR8pd+yS1Zt6LNU3c4jcrhEcM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:90:7a:a7:6c:5a:56:8f:62:69:69:2a:13:ec:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5070dc5204decf7abea5070d75fa058c8ac013d5
Validity
Not Before: Oct 20 04:02:38 2025 GMT
Not After : Oct 21 04:02:38 2025 GMT
Subject: CN=573490bccdeb0c869536fa137ed7c27e222bdaae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:af:0d:30:4f:3b:c4:28:c0:cb:06:92:7e:cf:
38:28:7c:78:2c:b5:d7:9f:0b:c4:77:2b:62:2a:74:
9d:4c:00:0f:a1:b1:9b:0b:cd:f2:8c:eb:4a:b0:62:
b6:68:c1:d3:53:80:ad:5a:bc:9c:92:5a:18:85:0d:
d8:81:49:2f:58:ba:b5:96:3d:dc:2b:84:4f:82:4f:
db:b2:65:0f:a4:c4:10:a3:c4:0c:00:a4:b9:cb:a5:
d6:ed:d2:d3:a4:67:f9:f8:c2:51:09:4c:d0:eb:91:
ad:0d:f6:17:ce:33:9d:5a:4f:01:7c:ea:66:d7:3b:
4f:b3:2d:a8:59:6e:1b:7a:5d:63:34:d1:ac:48:56:
ca:7e:e6:73:31:3b:9e:7f:f8:5f:3c:a1:52:b8:a8:
44:63:b3:a5:9d:a1:c4:e4:f5:a4:de:e3:65:f9:c2:
58:49:8d:e2:f6:7a:84:c5:3a:ea:63:f3:7b:ba:b5:
76:65:0e:75:86:ba:54:54:0c:f0:79:68:96:a0:a6:
d3:61:10:3e:83:0d:59:9c:20:c7:69:0f:ec:ce:17:
de:c9:6a:ab:1a:a8:7d:65:6c:87:36:65:10:ab:c4:
8b:f0:6e:92:ec:ad:a7:0a:a9:73:d9:57:f3:53:bc:
f0:02:99:b7:d7:c7:ee:c5:de:b9:f2:97:23:de:f4:
94:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:34:90:BC:CD:EB:0C:86:95:36:FA:13:7E:D7:C2:7E:22:2B:DA:AE
X509v3 Authority Key Identifier:
keyid:50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:dd:7e:37:5f:1b:83:b9:43:9e:73:6e:65:87:19:e3:aa:e2:
06:af:05:50:2d:c8:62:c1:26:c8:31:5b:48:91:8b:a5:af:0e:
94:25:79:cf:1b:98:ff:75:b0:b4:3b:a2:cd:bf:1a:d0:15:c4:
bd:d4:41:02:9e:11:2c:f0:04:b6:23:bb:e4:48:fc:1f:52:b4:
92:f0:43:e9:02:a8:e0:d4:9b:ee:f9:8b:58:a6:99:52:d1:75:
f3:e4:ea:74:1d:e4:14:14:2f:cc:26:57:60:d7:b3:e9:ad:31:
f7:ce:56:58:1c:0d:fa:d3:96:96:ea:68:da:e5:c5:e7:3a:0a:
d7:6e:a2:44:c4:fa:5e:bd:78:20:5d:90:f1:23:a4:85:80:b6:
09:11:b3:72:12:a7:11:24:1d:a2:0f:72:5b:27:7f:eb:cd:9b:
b3:4f:45:79:0c:47:43:5a:a8:28:8f:ff:5f:7b:7f:b9:87:65:
32:df:9d:a7:11:75:3d:66:cb:22:1a:a5:51:d6:00:99:07:5f:
95:c4:b0:1f:62:51:59:17:01:25:68:84:ca:dc:1c:b8:b0:f7:
6b:06:b0:af:13:06:d4:67:3d:2f:cf:af:2f:00:c4:d8:a7:32:
3c:e6:e1:50:e0:ed:a0:6f:5c:74:d1:41:58:33:ac:ac:d3:0a:
d1:63:41:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 06:27:34 2025 by rpki-client