Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
File: UAFR5GSyl5E3bAxXvrQMWE71oc8.mft (raw, json)
Hash identifier: ae7kXDAnWlKEPyqY2pUeqO07KVBWCXBmwyANAU8enUI=
Subject key identifier: 10:C4:2A:71:87:95:A7:B1:BC:98:8D:A6:A7:6F:1D:4F:76:11:20:94
Authority key identifier: 50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
Certificate issuer: /CN=500151e464b29791376c0c57beb40c584ef5a1cf
Certificate serial: 0199FDD93997957BF27681333BAF4CC7A0A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
Manifest number: 1008
Signing time: Sun 19 Oct 2025 19:01:35 +0000
Manifest this update: Sun 19 Oct 2025 19:01:35 +0000
Manifest next update: Mon 20 Oct 2025 19:01:35 +0000
Files and hashes: 1: UAFR5GSyl5E3bAxXvrQMWE71oc8.crl (hash: 2g32ubzCK6ZYNWdNANJqvITrd4kaL4o7fUOZFFRjJfA=)
2: bo7KO9XdD_Urskdk1n4Bj-fW4fs.roa (hash: ubQY2gOF+3dPO6O676JWntfiT2uJ103t4smlNmiKGh4=)
3: w9MEWUoUc8xZKY1er3NSZNyKi7U.roa (hash: POwTU/L0ZyJ5NYemVS0exc18aJZvc21A0g3ouxix4G8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:39:97:95:7b:f2:76:81:33:3b:af:4c:c7:a0:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500151e464b29791376c0c57beb40c584ef5a1cf
Validity
Not Before: Oct 19 19:01:35 2025 GMT
Not After : Oct 20 19:01:35 2025 GMT
Subject: CN=10c42a718795a7b1bc988da6a76f1d4f76112094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:67:c2:7e:50:77:06:5f:91:b9:4d:fd:b6:2a:
64:8c:5c:e3:7e:db:44:35:7c:2c:2d:4b:53:8a:eb:
b0:c3:1f:fd:0e:a5:11:4d:65:29:6c:43:8b:7f:54:
95:96:33:1a:fb:6e:11:14:59:58:20:61:81:a0:64:
f2:1b:17:1f:27:50:d6:85:fc:38:60:02:5d:50:bc:
22:cd:75:f8:3d:cb:ba:66:2f:bf:b4:74:a2:68:28:
55:ed:e3:d0:d9:b0:50:79:35:cb:40:e5:d5:ab:94:
4c:45:6f:88:86:d2:7b:78:e8:cc:61:54:1d:84:7e:
1d:20:c9:b8:46:29:c8:93:4a:0b:94:67:9e:df:28:
a3:78:ed:e6:0d:ca:c6:36:fe:18:38:2d:d8:7c:b6:
13:66:df:8c:48:fb:a8:d8:aa:45:85:b7:e8:dc:20:
cc:bb:29:ae:26:44:f1:71:2f:d4:52:4a:3e:ca:c0:
a1:aa:43:45:82:e4:92:5c:19:10:f5:2a:60:4a:3f:
59:17:b5:92:57:b6:24:23:0f:6a:4c:34:7c:ae:6f:
e0:38:b2:37:99:8c:93:9d:3a:ed:6c:b4:b8:9b:9b:
20:8b:29:ed:93:0f:25:ce:a7:28:ae:da:45:87:d5:
f1:ca:44:9b:4e:6c:87:1d:c8:b1:e4:83:e5:84:05:
9d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C4:2A:71:87:95:A7:B1:BC:98:8D:A6:A7:6F:1D:4F:76:11:20:94
X509v3 Authority Key Identifier:
keyid:50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:a0:11:d0:1f:1b:51:d4:cb:d2:d9:9b:1a:8b:da:3c:22:42:
e9:bf:72:d5:5c:6e:38:0a:3b:7e:5b:78:16:05:e1:ee:4e:52:
41:12:75:f2:de:08:1e:f5:8c:5b:ea:e3:5b:9c:6c:f8:c7:13:
42:62:e2:34:aa:83:c1:b3:52:1a:36:8a:14:3a:d7:7b:fd:9f:
28:ca:18:af:14:37:7a:9a:10:67:fe:47:fa:f4:1c:31:40:ec:
74:39:bc:9b:22:41:4b:43:d0:58:2d:0e:6e:a3:64:89:bc:7f:
3d:73:d1:49:9f:23:75:0f:69:2f:84:20:95:12:69:c8:c4:5b:
10:a0:43:8e:cc:2c:8b:63:77:d4:81:96:7b:84:52:a3:a6:0a:
22:b4:94:b6:51:a5:c3:46:14:1b:27:1c:d8:8c:4a:81:eb:9f:
5e:41:89:d9:6a:64:11:52:1d:04:f4:d4:0b:95:ef:61:7c:3a:
d6:88:20:62:86:ef:52:7e:af:aa:80:33:f5:85:8a:db:0c:4c:
9d:31:76:a9:4b:c1:2a:54:d9:7a:55:e4:ae:fc:c5:ba:a4:4d:
36:9b:d3:8a:0e:8d:90:47:66:14:b6:46:8e:27:eb:10:c2:4a:
08:e9:f9:0c:22:69:6e:02:cb:52:77:c2:f9:15:cb:d7:43:8a:
84:d3:da:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:47:05 2025 by rpki-client