Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
File: UztG46ndW36oqL_aL247rRVQkRM.mft (raw, json)
Hash identifier: VPi57uoXrt//zxtBO5pN17sQwORhz6tpeObqTfmzulo=
Subject key identifier: A8:A1:6C:FD:C7:C4:DD:16:98:17:3D:01:A7:6C:2D:AB:50:F6:39:84
Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Certificate serial: 0199FEB54A25C16A385E66D17BF06D1605B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 23:01:57 +0000
Manifest this update: Sun 19 Oct 2025 23:01:57 +0000
Manifest next update: Mon 20 Oct 2025 23:01:57 +0000
Files and hashes: 1: 8xMxjtO-k2WYJj5fJmeVkGV5YA4.roa (hash: h2/dulkFhykUkX0igL56x6SI1vv2NsPZ43/9G+3BAxs=)
2: UztG46ndW36oqL_aL247rRVQkRM.crl (hash: F+yeDvAcfO26z9jfzU4c3DMr9dq7ZHiBC82n64PGO0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b5:4a:25:c1:6a:38:5e:66:d1:7b:f0:6d:16:05:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Validity
Not Before: Oct 19 23:01:57 2025 GMT
Not After : Oct 20 23:01:57 2025 GMT
Subject: CN=a8a16cfdc7c4dd1698173d01a76c2dab50f63984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:90:24:de:35:d8:df:e2:ee:72:37:ac:31:96:
d6:6f:b7:79:1b:a4:3d:52:c8:3b:20:80:6a:ed:e9:
6c:d1:f4:a2:18:5c:ce:5b:0c:d5:c0:72:32:ce:1d:
24:aa:78:80:be:67:60:c6:bd:86:06:3b:8e:14:0d:
3b:12:d3:6d:b7:e7:8e:95:12:86:c8:ab:37:2c:0a:
38:b5:f3:b5:6b:aa:22:70:c5:b9:b1:48:38:96:44:
58:2b:63:b6:68:9c:59:ac:c3:ef:14:ec:4c:63:b0:
29:c1:13:74:f8:01:97:96:f4:27:a6:83:09:84:cc:
10:ab:50:44:7e:38:ae:2b:33:ba:cd:d6:36:fe:bb:
b7:ca:85:71:17:38:da:a1:8a:c4:3b:86:f3:48:b8:
fb:db:07:be:aa:67:82:d8:1b:bf:16:4a:25:a7:92:
89:4b:c2:07:23:a1:14:ca:fc:c0:04:04:32:1f:b3:
fb:84:4a:9d:5c:69:08:03:eb:8f:37:2a:c0:4d:d9:
bf:03:b3:19:42:96:18:8f:23:56:91:37:07:9f:e4:
eb:ac:5b:dd:1d:3f:3b:76:b2:25:26:69:f6:6e:ad:
4d:fd:e9:2c:69:03:a1:bb:9f:30:25:1c:75:2c:2b:
a1:cb:60:d0:f9:bd:e3:2b:be:09:91:27:54:be:08:
93:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:A1:6C:FD:C7:C4:DD:16:98:17:3D:01:A7:6C:2D:AB:50:F6:39:84
X509v3 Authority Key Identifier:
keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:fb:ba:5b:25:29:6d:db:b5:54:b6:82:91:17:fa:28:09:94:
79:72:0c:56:02:f3:ec:c3:ce:dd:73:ea:b4:25:83:87:bf:f6:
02:57:df:d8:c5:b9:fd:2e:75:35:88:16:8e:e8:9c:24:15:63:
81:1d:fe:0e:6f:8c:4b:7b:d8:76:da:61:8e:c0:8c:ae:47:c7:
85:91:3f:cf:89:a3:c9:84:ce:34:66:7b:e7:fa:ea:02:27:9c:
51:32:1b:e7:ea:da:54:75:f1:70:4d:40:1c:f0:9d:1b:31:4e:
48:66:10:f5:da:b8:1e:a5:b0:00:66:9f:bc:ef:52:85:d6:be:
d7:dd:88:0d:5a:e4:91:a7:b3:89:ff:5f:05:e3:5d:14:13:38:
15:97:1a:0a:96:b1:5a:91:08:d1:0b:3f:97:08:48:0f:4b:6b:
fa:bb:1f:91:5a:30:a6:b3:10:10:e0:44:a1:13:c5:10:b3:42:
f0:46:61:ef:da:4e:03:8c:5b:70:80:19:59:51:a6:3e:fc:9a:
af:29:52:97:06:32:a6:00:60:76:33:dd:22:3b:5e:ea:22:67:
ac:e6:64:6c:32:58:aa:00:9f:3e:75:9a:a8:c0:c9:11:d7:cb:
b1:47:7b:ce:c3:d6:bf:8b:07:78:2d:f6:8c:bc:d4:74:6d:1e:
d6:15:fa:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:39:39 2025 by rpki-client