Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
File: UIJpb7xB2QYWimDOCUlJAiz2Keg.mft (raw, json)
Hash identifier: Ix6tZvCP5Gtli/ypiXiKM7JlmiMyAh83v1zFeZztyQM=
Subject key identifier: C4:2A:38:AF:46:CF:24:E2:9C:F6:5B:37:38:D9:9A:C8:64:60:BD:0F
Authority key identifier: 50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
Certificate issuer: /CN=5082696fbc41d906168a60ce094949022cf629e8
Certificate serial: 0198D5F1BC5B83411B2849ACCDE66ABBA6EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
Manifest number: 03D1
Signing time: Sat 23 Aug 2025 08:00:46 +0000
Manifest this update: Sat 23 Aug 2025 08:00:46 +0000
Manifest next update: Sun 24 Aug 2025 08:00:46 +0000
Files and hashes: 1: UIJpb7xB2QYWimDOCUlJAiz2Keg.crl (hash: lJT5ne6UmFhBwTqfOQCQqi0cxn2K0CFcxt8taRz9hLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:bc:5b:83:41:1b:28:49:ac:cd:e6:6a:bb:a6:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5082696fbc41d906168a60ce094949022cf629e8
Validity
Not Before: Aug 23 08:00:46 2025 GMT
Not After : Aug 24 08:00:46 2025 GMT
Subject: CN=c42a38af46cf24e29cf65b3738d99ac86460bd0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c4:0a:19:3b:62:05:a9:94:21:8f:41:69:de:
6e:9c:7f:ee:a4:8e:bd:cb:21:3d:b9:98:ee:7a:be:
31:19:75:63:36:5a:05:66:d8:0f:42:ae:7a:0d:94:
dd:a2:2e:54:df:28:2d:ca:f6:1d:0d:3c:fc:17:3e:
92:b1:ed:04:24:f8:0c:ce:ad:8c:a1:9f:b5:4b:1e:
e4:a6:f7:71:71:94:6a:30:7d:36:8c:bb:fc:3d:31:
1b:27:75:58:27:51:6c:46:8c:4a:04:a5:ac:a2:cc:
10:c1:12:f9:be:8e:d3:26:b8:24:18:c3:26:af:7f:
59:ef:18:78:57:e1:cc:50:7f:14:76:2c:cc:99:a1:
6f:a5:32:93:2a:e2:9a:b4:5e:23:e4:7f:dc:2d:b2:
4e:b9:a0:fd:cc:c7:db:7c:83:32:1b:f1:53:3b:73:
0f:83:26:1f:98:28:c7:37:d3:99:b2:fa:2e:26:ea:
ce:45:2a:30:98:cc:cd:a2:cd:0f:4d:55:f9:00:74:
8f:4c:76:01:d2:99:a1:fc:8c:9d:bb:07:e8:50:87:
a6:e3:aa:5c:ee:7e:dd:b0:e8:7d:1a:30:f2:5c:0f:
66:24:07:49:4e:2d:12:b5:0b:01:e1:9a:9b:43:2c:
65:34:61:ad:91:84:94:d1:f9:50:fd:2e:51:59:42:
0b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:2A:38:AF:46:CF:24:E2:9C:F6:5B:37:38:D9:9A:C8:64:60:BD:0F
X509v3 Authority Key Identifier:
keyid:50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:dd:b9:2d:43:ca:79:8c:93:49:f3:76:2a:70:74:dd:a8:55:
62:33:86:20:9d:dc:10:be:1e:ca:6d:31:9b:e4:fa:77:d4:a0:
d5:7c:27:c0:bc:e2:f8:f5:e0:56:56:8b:a8:d7:7d:86:80:28:
6e:b6:7f:43:cd:4a:14:77:6a:8c:f1:38:3a:ac:19:17:e2:93:
90:06:ed:8b:ff:48:b4:20:dd:57:10:50:71:44:9a:39:18:5c:
9c:be:d0:32:40:9a:95:2d:91:f2:4f:69:be:a6:b2:74:e7:ef:
7c:3a:bc:d8:41:51:85:2b:a2:ee:6c:39:2a:9c:3a:d9:47:96:
7f:bb:23:e8:78:0e:06:45:07:25:07:4a:d8:f9:27:7e:6e:f7:
a1:f6:05:a9:fe:e1:35:2f:87:2d:0b:d5:c4:a0:28:75:88:5c:
9b:42:6e:56:fe:75:51:60:30:9f:e3:d9:7d:cd:75:d7:20:a5:
b2:bc:dd:0a:7b:f4:98:38:72:23:a8:64:fc:f7:b6:5a:59:7a:
4a:27:c0:f1:2e:6f:2f:5c:76:11:a2:03:95:a3:36:f0:cb:71:
04:1f:c0:6a:84:83:44:a9:9a:e9:4b:5b:ee:9f:c5:53:12:d0:
e7:38:ac:a6:8d:05:09:01:8a:f2:12:d3:a4:6f:46:de:ca:4d:
73:98:9d:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8bxbg0EbKEmszeZqu6buMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwODI2OTZmYmM0MWQ5MDYxNjhhNjBjZTA5NDk0OTAyMmNm
NjI5ZTgwHhcNMjUwODIzMDgwMDQ2WhcNMjUwODI0MDgwMDQ2WjAzMTEwLwYDVQQD
EyhjNDJhMzhhZjQ2Y2YyNGUyOWNmNjViMzczOGQ5OWFjODY0NjBiZDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsQKGTtiBamUIY9Bad5unH/upI69
yyE9uZjuer4xGXVjNloFZtgPQq56DZTdoi5U3ygtyvYdDTz8Fz6Sse0EJPgMzq2M
oZ+1Sx7kpvdxcZRqMH02jLv8PTEbJ3VYJ1FsRoxKBKWsoswQwRL5vo7TJrgkGMMm
r39Z7xh4V+HMUH8UdizMmaFvpTKTKuKatF4j5H/cLbJOuaD9zMfbfIMyG/FTO3MP
gyYfmCjHN9OZsvouJurORSowmMzNos0PTVX5AHSPTHYB0pmh/IyduwfoUIem46pc
7n7dsOh9GjDyXA9mJAdJTi0StQsB4ZqbQyxlNGGtkYSU0flQ/S5RWUILkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMQqOK9GzyTinPZbNzjZmshkYL0PMB8GA1UdIwQY
MBaAFFCCaW+8QdkGFopgzglJSQIs9inoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9hOWYwYmItODZmNi00Y2EzLWE1M2Yt
MmU5NzIxZDg2YzNkLzEvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS9hOWYwYmItODZmNi00Y2EzLWE1M2YtMmU5NzIxZDg2YzNk
LzEvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQt25LUPK
eYyTSfN2KnB03ahVYjOGIJ3cEL4eym0xm+T6d9Sg1XwnwLzi+PXgVlaLqNd9hoAo
brZ/Q81KFHdqjPE4OqwZF+KTkAbti/9ItCDdVxBQcUSaORhcnL7QMkCalS2R8k9p
vqaydOfvfDq82EFRhSui7mw5Kpw62UeWf7sj6HgOBkUHJQdK2Pknfm73ofYFqf7h
NS+HLQvVxKAodYhcm0JuVv51UWAwn+PZfc111yClsrzdCnv0mDhyI6hk/Pe2Wll6
SifA8S5vL1x2EaIDlaM28MtxBB/AaoSDRKma6Utb7p/FUxLQ5zispo0FCQGK8hLT
pG9G3spNc5idQA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:01 2025 by rpki-client