Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
File: UztG46ndW36oqL_aL247rRVQkRM.mft (raw, json)
Hash identifier: XolWasNvZie269LVzJ9LBWunRZ2HPlYKRBgCqj1GKKg=
Subject key identifier: 7C:99:52:D8:E7:FF:BE:0F:3E:DF:01:57:5A:8B:20:A0:61:42:E2:85
Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Certificate serial: 0197B77C2EFAF4A94E0454F5E320EE23B9C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 17:00:58 +0000
Manifest this update: Sat 28 Jun 2025 17:00:58 +0000
Manifest next update: Sun 29 Jun 2025 17:00:58 +0000
Files and hashes: 1: 8xMxjtO-k2WYJj5fJmeVkGV5YA4.roa (hash: h2/dulkFhykUkX0igL56x6SI1vv2NsPZ43/9G+3BAxs=)
2: UztG46ndW36oqL_aL247rRVQkRM.crl (hash: CfPFZfckEwr77upejQmJ7RIm9e6bHR3BQAfF2HNxSm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:2e:fa:f4:a9:4e:04:54:f5:e3:20:ee:23:b9:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Validity
Not Before: Jun 28 17:00:58 2025 GMT
Not After : Jun 29 17:00:58 2025 GMT
Subject: CN=7c9952d8e7ffbe0f3edf01575a8b20a06142e285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:7b:ac:d1:d4:ac:2b:ae:d2:1f:4f:ff:f1:b3:
d5:d4:6b:3d:d6:09:e5:67:b2:20:7a:34:70:2c:96:
ea:60:20:2c:c5:1b:ce:0f:26:00:de:98:ef:45:12:
5d:f7:a7:a5:9b:35:4d:44:bf:d6:b4:d7:b1:7e:ff:
a2:78:03:dd:55:54:dd:bc:cc:44:55:8f:6b:72:6a:
f1:72:78:8e:75:d4:60:d8:6b:9a:85:db:25:38:08:
90:b5:3f:55:a8:bf:6b:fd:ff:a0:1f:16:56:f0:2d:
ba:67:35:5b:05:20:0e:0c:ea:67:97:d8:1a:03:32:
ec:eb:6b:8e:94:ed:82:d2:bf:03:9b:57:04:61:e9:
24:ee:b9:8c:a3:a2:50:f7:22:6d:c7:8f:3f:ca:5d:
68:28:20:b2:1e:27:a5:f6:5b:25:37:dd:a3:61:f3:
59:c2:ca:36:3d:44:4e:aa:07:27:bd:d8:9b:1c:a9:
2c:98:20:ab:14:03:be:3a:c4:4f:c9:3e:eb:9a:b7:
c0:d9:10:1c:76:07:7a:19:cc:1c:7e:30:e6:29:d7:
00:80:62:76:8e:64:2b:5c:5f:04:3a:2d:af:5a:7c:
e5:86:3e:6a:4e:4b:3f:a8:54:f9:cc:1c:8d:b3:5d:
d7:dc:ae:9d:8e:32:0c:69:16:7e:e6:c0:b4:25:89:
01:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:99:52:D8:E7:FF:BE:0F:3E:DF:01:57:5A:8B:20:A0:61:42:E2:85
X509v3 Authority Key Identifier:
keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:c8:34:21:74:df:a9:56:ea:34:8b:6e:a1:90:4f:cb:c9:10:
90:15:3d:36:bc:3b:0e:55:22:fc:a7:4e:9b:4b:df:ce:6d:71:
42:18:19:c0:aa:54:a2:cb:43:72:e1:c3:3d:af:07:81:d9:ad:
22:65:84:db:9b:16:46:3c:49:3d:7b:84:74:f5:33:e6:0f:11:
3a:2a:9c:d6:82:4b:68:d8:16:51:23:94:1e:28:fe:af:41:45:
8a:77:7f:04:d1:ba:1e:33:05:c8:6a:9a:98:5d:79:ed:9b:46:
0e:10:c3:3d:ce:f9:d7:19:04:54:65:3b:cd:bb:ce:3f:51:51:
5a:81:eb:ec:fb:d0:2e:16:73:a2:ad:80:05:0b:64:c4:e6:f7:
0e:55:10:e6:54:ae:f8:8f:2c:3b:cc:bc:9c:c4:61:b7:98:b8:
70:48:a8:e6:92:c8:ed:08:ea:e4:41:6f:f7:1d:d9:0a:1f:3d:
5c:b6:ea:e1:ad:18:02:46:15:96:2f:4b:b7:e9:af:81:e4:c7:
a7:02:cf:d6:85:7d:8d:41:87:76:26:cc:99:93:a8:b0:ed:12:
e3:e2:78:ff:49:b9:d3:94:29:54:0b:6a:3f:95:04:8c:84:6b:
cc:3b:16:13:10:56:ab:0a:72:83:d3:b9:a0:1d:71:15:53:4c:
ad:bb:18:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fC769KlOBFT14yDuI7nIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzM2I0NmUzYTlkZDViN2VhOGE4YmZkYTJmNmUzYmFkMTU1
MDkxMTMwHhcNMjUwNjI4MTcwMDU4WhcNMjUwNjI5MTcwMDU4WjAzMTEwLwYDVQQD
Eyg3Yzk5NTJkOGU3ZmZiZTBmM2VkZjAxNTc1YThiMjBhMDYxNDJlMjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Hus0dSsK67SH0//8bPV1Gs91gnl
Z7IgejRwLJbqYCAsxRvODyYA3pjvRRJd96elmzVNRL/WtNexfv+ieAPdVVTdvMxE
VY9rcmrxcniOddRg2GuahdslOAiQtT9VqL9r/f+gHxZW8C26ZzVbBSAODOpnl9ga
AzLs62uOlO2C0r8Dm1cEYekk7rmMo6JQ9yJtx48/yl1oKCCyHiel9lslN92jYfNZ
wso2PUROqgcnvdibHKksmCCrFAO+OsRPyT7rmrfA2RAcdgd6GcwcfjDmKdcAgGJ2
jmQrXF8EOi2vWnzlhj5qTks/qFT5zByNs13X3K6djjIMaRZ+5sC0JYkBdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHyZUtjn/74PPt8BV1qLIKBhQuKFMB8GA1UdIwQY
MBaAFFM7RuOp3Vt+qKi/2i9uO60VUJETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9mNTBlMmQtZTQwMC00NGYxLTg4MzIt
ZTI2OTYwYmYzNGU1LzEvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9mNTBlMmQtZTQwMC00NGYxLTg4MzItZTI2OTYwYmYzNGU1
LzEvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAMg0IXTf
qVbqNItuoZBPy8kQkBU9Nrw7DlUi/KdOm0vfzm1xQhgZwKpUostDcuHDPa8Hgdmt
ImWE25sWRjxJPXuEdPUz5g8ROiqc1oJLaNgWUSOUHij+r0FFind/BNG6HjMFyGqa
mF157ZtGDhDDPc751xkEVGU7zbvOP1FRWoHr7PvQLhZzoq2ABQtkxOb3DlUQ5lSu
+I8sO8y8nMRht5i4cEio5pLI7Qjq5EFv9x3ZCh89XLbq4a0YAkYVli9Lt+mvgeTH
pwLP1oV9jUGHdibMmZOosO0S4+J4/0m505QpVAtqP5UEjIRrzDsWExBWqwpyg9O5
oB1xFVNMrbsY2g==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:56:59 2025 by rpki-client