Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
File: UqWb8EMIAwY1n1opSR9UWwcFHAU.mft (raw, json)
Hash identifier: yYPeZwy0nmUOV865FAsOA/ICHSKPmepQSvVaX8c1wAY=
Subject key identifier: 33:CD:38:1A:C8:A3:31:45:DC:BE:29:77:C8:F5:FC:C9:05:AC:CC:CB
Authority key identifier: 52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05
Certificate issuer: /CN=52a59bf043080306359f5a29491f545b07051c05
Certificate serial: 0198D472BDBE229BD1B2C26097BA3CD916B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 01:02:26 +0000
Manifest this update: Sat 23 Aug 2025 01:02:26 +0000
Manifest next update: Sun 24 Aug 2025 01:02:26 +0000
Files and hashes: 1: GvWU7eZamVvazZtWUoco1OLF2MQ.roa (hash: 9kEJ/d7rwclzCBcSORu1ByXHG+IDCNPxceZqglg+1Hw=)
2: UqWb8EMIAwY1n1opSR9UWwcFHAU.crl (hash: Yp0ipIRciFBSfrTp5KQ1RPrctMljBYhy88YCkGTeu0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:bd:be:22:9b:d1:b2:c2:60:97:ba:3c:d9:16:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a59bf043080306359f5a29491f545b07051c05
Validity
Not Before: Aug 23 01:02:26 2025 GMT
Not After : Aug 24 01:02:26 2025 GMT
Subject: CN=33cd381ac8a33145dcbe2977c8f5fcc905accccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b3:6d:c5:fe:0c:e6:18:b2:a4:19:0a:bd:a9:
2f:d9:fa:82:eb:73:b1:e7:18:06:37:5c:cf:fe:fa:
18:d6:cc:b4:10:1e:62:e8:33:cc:53:e7:4f:cd:7a:
e2:c4:61:f8:b3:bb:a3:aa:a8:4c:43:16:86:52:d1:
15:31:ee:ff:d5:cc:18:78:e1:1c:5a:e5:1c:af:bc:
32:03:e3:94:bc:8b:6b:cb:70:7b:76:46:59:c6:5b:
f3:e9:31:57:4f:ed:93:5b:6a:7f:d4:8f:8d:a2:e2:
1a:b9:0b:18:27:f2:0a:ce:5f:80:f8:ef:1d:9c:13:
e4:ef:4c:e0:f9:64:08:fa:d6:ad:a7:39:11:42:35:
3c:2a:5e:98:7f:7c:ee:6f:59:32:ed:55:e9:61:a4:
ed:df:e6:63:f6:16:88:f2:20:3b:81:8b:15:1e:0c:
a6:d5:65:6b:aa:b3:6a:5b:f9:6d:72:b3:a2:ce:46:
1f:81:8b:d2:74:f9:7d:47:c0:13:9a:0b:a0:57:9b:
3d:7f:f5:84:55:d6:3d:69:73:5f:cf:bf:de:89:5c:
ad:53:a2:37:4b:e8:c4:f8:ba:f4:9d:52:d6:af:c1:
04:2a:42:a6:b7:87:94:a3:7b:b8:73:78:f2:b2:5e:
bb:99:8d:f1:00:59:28:66:7d:d2:73:26:7d:9a:9a:
35:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CD:38:1A:C8:A3:31:45:DC:BE:29:77:C8:F5:FC:C9:05:AC:CC:CB
X509v3 Authority Key Identifier:
keyid:52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:af:c4:6e:2a:82:b2:ea:b6:2b:4e:04:2d:e7:67:50:74:ce:
b9:63:1c:69:0b:51:3d:e3:3d:22:2b:68:8c:b9:a1:d0:73:e3:
6d:55:99:ab:77:39:fb:db:0f:e0:49:98:79:64:4a:35:c2:68:
d9:48:4a:07:b5:05:13:63:ce:c3:04:ef:ce:4d:d7:75:a9:ac:
9d:67:82:ae:92:a6:c2:81:31:75:dd:60:0f:08:81:a4:b8:0d:
72:e9:e3:bb:83:9e:cf:c6:2a:f6:2a:35:ab:59:87:06:66:a5:
4c:af:6b:27:72:54:01:45:b8:bb:c6:1e:16:a1:23:09:b8:ed:
83:a2:fc:4f:31:a1:4d:46:f2:52:32:1d:ba:44:6c:13:b6:6c:
70:fa:d2:b2:54:a1:18:31:52:4d:13:2a:9e:1e:fc:a7:3c:29:
d8:e5:04:9e:4d:81:e6:25:f5:f4:4e:04:4f:b4:ca:42:c0:6e:
51:e9:cd:05:2e:eb:eb:b0:47:75:13:0b:7f:9e:fc:52:02:04:
c6:d6:39:00:bc:86:6f:2a:24:e7:92:88:90:a2:b9:ab:b3:26:
09:9e:24:3e:13:d3:c0:2b:d3:54:83:13:cd:18:5a:4a:98:fe:
28:0b:88:96:70:2d:44:7d:41:dc:c5:69:ca:1f:23:ad:2a:69:
d1:89:34:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcr2+IpvRssJgl7o82RazMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyYTU5YmYwNDMwODAzMDYzNTlmNWEyOTQ5MWY1NDViMDcw
NTFjMDUwHhcNMjUwODIzMDEwMjI2WhcNMjUwODI0MDEwMjI2WjAzMTEwLwYDVQQD
EygzM2NkMzgxYWM4YTMzMTQ1ZGNiZTI5NzdjOGY1ZmNjOTA1YWNjY2NiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0LNtxf4M5hiypBkKvakv2fqC63Ox
5xgGN1zP/voY1sy0EB5i6DPMU+dPzXrixGH4s7ujqqhMQxaGUtEVMe7/1cwYeOEc
WuUcr7wyA+OUvItry3B7dkZZxlvz6TFXT+2TW2p/1I+NouIauQsYJ/IKzl+A+O8d
nBPk70zg+WQI+tatpzkRQjU8Kl6Yf3zub1ky7VXpYaTt3+Zj9haI8iA7gYsVHgym
1WVrqrNqW/ltcrOizkYfgYvSdPl9R8ATmgugV5s9f/WEVdY9aXNfz7/eiVytU6I3
S+jE+Lr0nVLWr8EEKkKmt4eUo3u4c3jysl67mY3xAFkoZn3ScyZ9mpo1MwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDPNOBrIozFF3L4pd8j1/MkFrMzLMB8GA1UdIwQY
MBaAFFKlm/BDCAMGNZ9aKUkfVFsHBRwFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXFXYjhFTUlBd1kxbjFvcFNSOVVXd2NGSEFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy82ZDcyOWUtZTE2Yi00MWE5LTkwMTIt
MDE0YzcwOTc3ZDQ5LzEvVXFXYjhFTUlBd1kxbjFvcFNSOVVXd2NGSEFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy82ZDcyOWUtZTE2Yi00MWE5LTkwMTItMDE0YzcwOTc3ZDQ5
LzEvVXFXYjhFTUlBd1kxbjFvcFNSOVVXd2NGSEFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa6/EbiqC
suq2K04ELednUHTOuWMcaQtRPeM9IitojLmh0HPjbVWZq3c5+9sP4EmYeWRKNcJo
2UhKB7UFE2POwwTvzk3XdamsnWeCrpKmwoExdd1gDwiBpLgNcunju4Oez8Yq9io1
q1mHBmalTK9rJ3JUAUW4u8YeFqEjCbjtg6L8TzGhTUbyUjIdukRsE7ZscPrSslSh
GDFSTRMqnh78pzwp2OUEnk2B5iX19E4ET7TKQsBuUenNBS7r67BHdRMLf578UgIE
xtY5ALyGbyok55KIkKK5q7MmCZ4kPhPTwCvTVIMTzRhaSpj+KAuIlnAtRH1B3MVp
yh8jrSpp0Yk0pA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:36 2025 by rpki-client