Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
File: UztG46ndW36oqL_aL247rRVQkRM.mft (raw, json)
Hash identifier: AIRYyr1aQCT2oTZdGwZI7/SAIPnr3UDOtHh5PKnmXeA=
Subject key identifier: 79:45:47:BB:CF:D2:1D:1F:7A:B2:4B:B7:16:21:3B:BB:5B:AD:F0:FD
Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Certificate serial: 0198D54E2D294BD1834B7E33B054788847F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 05:02:06 +0000
Manifest this update: Sat 23 Aug 2025 05:02:06 +0000
Manifest next update: Sun 24 Aug 2025 05:02:06 +0000
Files and hashes: 1: 8xMxjtO-k2WYJj5fJmeVkGV5YA4.roa (hash: h2/dulkFhykUkX0igL56x6SI1vv2NsPZ43/9G+3BAxs=)
2: UztG46ndW36oqL_aL247rRVQkRM.crl (hash: GADuHZjb9v/q1Ulv0JfzCEqNV3q0teNY+8BHLJl7Ukg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:2d:29:4b:d1:83:4b:7e:33:b0:54:78:88:47:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Validity
Not Before: Aug 23 05:02:06 2025 GMT
Not After : Aug 24 05:02:06 2025 GMT
Subject: CN=794547bbcfd21d1f7ab24bb716213bbb5badf0fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:55:31:5d:b2:26:b2:3b:81:44:4d:a3:71:70:
f1:52:3b:d2:45:c1:a5:dd:ef:e3:1f:57:a3:35:46:
61:25:f0:c4:20:dc:f6:e9:bd:82:0d:a6:d4:22:b7:
4f:e8:0c:c8:bc:f4:3e:c6:fe:c3:4a:de:7d:a3:b8:
6f:00:84:7d:eb:b3:5b:5f:b8:97:77:34:f4:e7:e5:
ba:02:30:3d:0c:19:d2:20:33:39:cc:e2:ac:c3:4e:
1a:c5:e2:11:02:da:b3:7b:f7:b6:6d:92:da:82:25:
6d:30:d2:02:d7:9e:ae:df:7a:89:7d:a7:6d:a2:48:
62:cc:4f:46:fa:ad:1c:9f:11:a9:81:11:e7:fe:c1:
1a:a7:f5:50:d0:64:a2:17:0c:83:62:b1:25:76:d7:
96:91:60:e4:59:6d:fe:f9:3f:7e:68:c3:4a:d4:5c:
e9:be:6a:85:6e:c9:a1:93:ce:92:0f:4f:97:51:3b:
36:f8:f8:9b:35:0e:93:cd:a3:f1:95:e4:8d:55:e9:
11:3e:41:ee:2b:8b:e6:20:89:31:5d:d1:39:b5:35:
67:43:41:da:64:32:b3:c4:17:05:84:60:23:07:e7:
c3:bf:c5:4e:f8:34:d2:6a:84:37:29:4e:f1:04:61:
b3:c5:e2:a6:94:07:86:fd:62:76:1e:e9:fa:4f:6c:
16:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:45:47:BB:CF:D2:1D:1F:7A:B2:4B:B7:16:21:3B:BB:5B:AD:F0:FD
X509v3 Authority Key Identifier:
keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:02:c8:2a:9b:c3:ac:6f:74:68:ae:ac:04:25:cd:e1:a0:8b:
2b:5e:25:51:3b:72:f3:39:d7:c1:45:29:72:06:23:44:38:c9:
06:82:fb:d7:39:c7:2d:23:47:7b:7f:b2:5b:6f:f7:09:94:00:
77:82:6b:df:d3:55:66:e0:d0:68:c4:9f:17:6d:dd:c4:d7:84:
83:b6:fe:4a:dc:47:ea:20:f5:48:31:d6:50:ad:3a:b4:3c:a1:
d6:df:56:fa:f4:d7:1d:e7:a8:6e:ff:5e:99:12:3f:9e:08:e9:
62:09:e0:6b:9f:91:2a:a0:46:99:7a:86:53:a1:c0:71:53:d5:
1d:c3:9c:3e:96:cf:6e:26:19:49:a4:08:c0:8d:d8:4e:40:2d:
60:03:ef:d6:7d:75:61:4b:37:de:81:68:5d:12:af:99:48:93:
2d:a2:e7:9e:bb:91:a3:b6:f4:b5:e0:50:06:5c:a0:6e:16:eb:
a7:6a:50:26:c4:f7:49:3d:f1:9b:e9:e9:fb:a2:d3:6e:ae:85:
49:4e:08:b1:2a:e3:00:db:32:8c:65:2a:26:5d:a5:aa:7c:ef:
1f:3c:37:61:2f:47:84:1d:31:53:5e:af:2c:4f:5e:71:c8:fb:
10:e4:f8:ab:5d:73:f8:46:29:31:78:d8:34:97:54:ab:17:ac:
48:b3:c5:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:28:46 2025 by rpki-client