Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
File: UAFR5GSyl5E3bAxXvrQMWE71oc8.mft (raw, json)
Hash identifier: 2c0C/4myhkBr82Yk2cSXokFncL4wuXN/fNT+deXziuI=
Subject key identifier: 21:31:DE:76:36:7C:DD:E9:BE:8D:C5:25:C3:77:FF:74:E0:25:88:8A
Authority key identifier: 50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
Certificate issuer: /CN=500151e464b29791376c0c57beb40c584ef5a1cf
Certificate serial: 0198D84F6C87C411D5E8505CF7D4ADD4B8D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
Manifest number: 0F70
Signing time: Sat 23 Aug 2025 19:02:20 +0000
Manifest this update: Sat 23 Aug 2025 19:02:20 +0000
Manifest next update: Sun 24 Aug 2025 19:02:20 +0000
Files and hashes: 1: UAFR5GSyl5E3bAxXvrQMWE71oc8.crl (hash: 5rJIoRFxRz4W0PlJ/2hyDWorBxs99rXeSk0phWEBnPU=)
2: bo7KO9XdD_Urskdk1n4Bj-fW4fs.roa (hash: ubQY2gOF+3dPO6O676JWntfiT2uJ103t4smlNmiKGh4=)
3: w9MEWUoUc8xZKY1er3NSZNyKi7U.roa (hash: POwTU/L0ZyJ5NYemVS0exc18aJZvc21A0g3ouxix4G8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:6c:87:c4:11:d5:e8:50:5c:f7:d4:ad:d4:b8:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500151e464b29791376c0c57beb40c584ef5a1cf
Validity
Not Before: Aug 23 19:02:20 2025 GMT
Not After : Aug 24 19:02:20 2025 GMT
Subject: CN=2131de76367cdde9be8dc525c377ff74e025888a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:19:6b:05:2b:d4:38:5e:14:01:3f:77:44:bc:
42:3c:9d:bd:9a:40:43:dd:24:ff:79:9a:da:f6:e4:
a6:4b:da:50:65:43:d7:72:8b:a1:02:db:09:09:78:
a4:1c:46:bc:2f:8e:b4:05:cb:80:f8:79:0c:e1:17:
69:7d:50:e0:a4:fd:d9:9f:ff:8c:a9:66:be:63:5a:
ab:65:4d:7e:af:02:26:25:06:92:cf:0e:0a:16:7c:
33:0e:fa:80:cb:95:d7:f4:34:7c:ae:99:94:75:0b:
9d:c9:70:36:e8:e8:8a:fb:ce:a5:ed:58:4d:b7:5d:
ca:fd:02:02:7f:7c:a3:61:d0:2a:53:d7:5d:cb:1f:
c6:e9:27:28:f6:11:8e:2f:95:e7:33:52:1b:2b:73:
e2:79:4e:23:4f:b9:40:3a:97:46:86:67:85:a3:a1:
ca:26:78:2e:da:f6:8a:18:9d:fe:4b:b9:9f:83:94:
c4:69:f4:69:d6:9a:1b:01:3e:c9:0c:7f:d8:f1:31:
1d:40:a0:a5:07:bf:81:0d:e5:e6:c8:cd:19:8f:87:
ce:6a:6d:fe:b0:26:2b:55:18:3b:f4:21:5d:75:5f:
3c:f7:64:96:01:01:ac:df:dd:e9:62:d9:dc:99:4c:
4f:c9:2c:52:93:2e:17:75:02:08:29:73:56:3b:e4:
bc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:31:DE:76:36:7C:DD:E9:BE:8D:C5:25:C3:77:FF:74:E0:25:88:8A
X509v3 Authority Key Identifier:
keyid:50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:a9:7e:ae:fb:f2:65:db:7b:f7:6a:b9:ca:77:37:85:9b:26:
87:36:88:61:8a:a9:e4:e1:1f:c7:06:7d:de:f2:9e:f4:2e:b5:
d4:31:5a:ae:a8:39:c2:d2:d9:d0:cd:72:f5:4c:f9:06:55:3b:
13:94:de:8b:68:03:ae:e6:a3:6b:c8:88:8f:b9:f6:18:c9:e7:
47:83:71:b4:a3:3d:d7:a9:0f:78:75:6a:a2:a1:86:d8:10:5b:
fd:54:36:97:6c:e9:74:1f:bd:36:45:b9:04:a0:ab:57:af:38:
f2:f1:16:39:70:c0:1e:8b:76:12:5b:dd:78:5f:a3:30:38:9e:
56:b7:94:f2:7f:6e:58:83:bd:ba:38:0f:c5:cd:e5:b2:1f:43:
de:08:05:b0:7a:53:7c:07:4d:ce:68:c3:a4:d2:6e:b6:c3:92:
6d:03:8b:65:18:d5:1a:14:6a:33:d1:d4:a2:dc:46:c3:50:f0:
42:3c:74:95:ad:dc:22:74:3b:22:2a:f3:f9:3f:01:8d:a1:0d:
8d:47:7a:82:51:53:ba:63:1d:74:13:b4:f7:dd:64:a2:5f:73:
2f:80:5d:13:f4:41:6d:7c:59:d8:7f:31:63:f8:2a:eb:d2:c2:
dc:21:21:3e:4d:18:56:06:59:0a:43:79:19:52:9f:30:ef:38:
ea:d4:3a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:22:07 2025 by rpki-client