Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
File: UhqgJHWNjRBOEXnFUDmBZjav4pg.mft (raw, json)
Hash identifier: xZopgqNX81aDRD7XnZrGnXob4TyMKyo2Mli1/wMhdnU=
Subject key identifier: 48:7B:FC:E0:69:95:39:9A:57:1D:85:C0:71:9E:36:8F:8E:73:1E:B3
Authority key identifier: 52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98
Certificate issuer: /CN=521aa024758d8d104e1179c55039816636afe298
Certificate serial: 0199FDD8E48827DDE9EAD6A1EDCFCE028091
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 19:01:13 +0000
Manifest this update: Sun 19 Oct 2025 19:01:13 +0000
Manifest next update: Mon 20 Oct 2025 19:01:13 +0000
Files and hashes: 1: UhqgJHWNjRBOEXnFUDmBZjav4pg.crl (hash: oW7rxPEac5O/5m4WNwPa7GHexLxi8698aSCeMiN0CVE=)
2: wzHTUEDPSJ9fu6Go3MzUkAR9gVE.roa (hash: HH9rFvWwfqcHjpbJnsKsdwBfEEqoBLNu0bOt5Pi9+gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:e4:88:27:dd:e9:ea:d6:a1:ed:cf:ce:02:80:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=521aa024758d8d104e1179c55039816636afe298
Validity
Not Before: Oct 19 19:01:13 2025 GMT
Not After : Oct 20 19:01:13 2025 GMT
Subject: CN=487bfce06995399a571d85c0719e368f8e731eb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:40:f7:7e:ec:0e:4a:a1:27:29:cc:e6:0e:02:
0f:4c:c1:04:b8:55:6a:cb:7f:5b:35:a5:24:26:38:
a9:6a:74:e6:9d:e6:9f:4c:0b:0f:39:b7:5a:68:18:
7a:1e:87:a1:94:ad:ef:f3:51:41:a8:60:08:3a:e6:
46:2a:24:77:4a:3f:01:30:6d:0d:35:16:a7:98:f5:
bc:26:14:94:25:a4:b9:eb:72:af:35:96:50:6b:16:
da:bb:f2:06:90:a3:6c:b7:cf:fa:7e:13:27:b1:e3:
7f:12:0a:17:32:4b:85:d4:75:f8:2b:34:3a:a5:bd:
4f:c2:de:96:f5:08:ba:91:92:f6:ab:08:9b:5e:b5:
52:69:30:f4:26:bb:e1:ef:f3:ae:24:d7:fe:fb:a6:
43:0b:e0:81:e9:fc:ed:fa:67:ec:68:c5:39:79:be:
5f:91:de:0f:f3:b8:9e:0f:df:57:b7:e0:24:79:11:
15:68:12:dd:83:0a:2f:9e:ee:53:83:7d:ee:86:8a:
1b:66:5b:30:57:38:25:17:67:7d:ae:2b:d2:aa:ee:
82:cc:86:d0:45:33:42:4d:60:3b:ca:38:70:88:54:
e2:d8:69:7c:45:b0:0c:c2:0c:8b:81:f0:a8:ea:9c:
e9:2c:3e:8c:d8:15:ff:f8:af:75:3e:8b:93:83:45:
8a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:7B:FC:E0:69:95:39:9A:57:1D:85:C0:71:9E:36:8F:8E:73:1E:B3
X509v3 Authority Key Identifier:
keyid:52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:0b:94:3d:55:77:d3:b1:63:84:19:bc:05:23:f6:10:2c:85:
a3:2a:82:36:c2:c3:ee:a6:ff:1e:cc:59:55:4b:67:43:31:17:
15:68:5c:47:70:5a:5b:1b:ec:aa:31:f8:50:e4:75:29:65:75:
fa:7a:b9:e0:00:03:71:03:46:a5:6e:c7:2b:b7:0e:f7:e9:c9:
c7:a5:37:ba:43:74:05:e6:94:43:1e:74:d6:31:7a:b5:5b:19:
87:f3:26:33:57:5c:bc:47:d5:81:77:70:17:4e:2c:8c:31:ad:
26:e1:23:d8:37:0a:cf:2a:a6:50:ad:16:19:aa:fe:ba:9c:59:
ad:9d:e4:c1:aa:92:3e:f5:37:02:00:45:75:ca:dc:19:9b:3b:
6e:da:ac:97:61:fe:37:7f:1b:4a:ba:60:0e:a4:c2:db:9e:8c:
5a:47:b3:6b:0b:40:20:c5:ac:88:81:57:92:1b:3c:06:76:16:
bd:5c:90:ba:4b:e1:f2:7d:f6:68:d8:38:9b:ab:e6:da:0c:62:
d8:b3:e0:32:85:06:0d:53:dc:37:05:4b:fd:c9:06:4c:94:4c:
bb:96:8d:12:9e:ab:8a:fa:57:6f:0b:ee:45:5e:bf:49:84:cb:
c5:ee:b1:aa:16:77:85:4f:c5:26:a9:9c:11:90:ef:3a:a8:c7:
1b:6e:a5:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:13:55 2025 by rpki-client