Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json)
Hash identifier: w5YWdi8EvITqUZbV2HTepIpNcRCbtRU1M7/ONfSEbd0=
Subject key identifier: D7:E7:87:DB:91:D9:A3:72:17:1A:01:AC:9C:72:C3:B1:13:16:7F:2D
Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589
Certificate serial: 0199FC58F6D0F6F95FBE0C8DD64A759F8370
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
Manifest number: 0E56
Signing time: Sun 19 Oct 2025 12:01:52 +0000
Manifest this update: Sun 19 Oct 2025 12:01:52 +0000
Manifest next update: Mon 20 Oct 2025 12:01:52 +0000
Files and hashes: 1: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: H9PFC6xGQKVtcR+zcwbah799ZekcxWgLR/U3oTM+iIY=)
2: yiSfs72_nEyzYSAodCILSS2FNUg.roa (hash: S9gHpNvUCJD2H4bcxuT5WWB4Uck7rHXNRIxCLUlb2hE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:f6:d0:f6:f9:5f:be:0c:8d:d6:4a:75:9f:83:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5061754f7689169f6a15065095472672ba2b4589
Validity
Not Before: Oct 19 12:01:52 2025 GMT
Not After : Oct 20 12:01:52 2025 GMT
Subject: CN=d7e787db91d9a372171a01ac9c72c3b113167f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:46:32:21:b1:bc:3b:69:4c:6b:70:68:b3:7e:
23:e0:ed:86:7d:c5:ed:2a:10:42:81:fd:0e:71:7e:
7c:de:69:79:c8:c6:c9:22:30:38:26:02:a1:f7:9e:
be:7a:59:b8:4a:ef:f5:55:2b:03:f0:28:fc:bf:d6:
85:fb:e0:6b:f1:80:90:bf:c1:0b:69:28:e1:e4:92:
4b:32:f7:cb:db:8f:ef:83:23:2a:9a:bf:2b:d9:17:
dc:58:d4:2a:30:9b:15:ca:a8:05:32:fa:47:85:5f:
79:1d:6e:36:97:de:0b:6d:0e:36:6e:25:fc:57:39:
99:cd:8d:29:5e:8d:54:93:74:0f:d0:08:3f:85:95:
eb:58:2b:d9:b3:e2:b8:7a:e1:2d:fd:e4:62:d3:70:
35:1a:39:8b:c0:05:79:a2:39:08:7e:91:75:e3:63:
e8:5b:32:6d:e5:08:5b:bf:95:a4:a4:41:3b:36:63:
a4:36:80:42:a9:44:1b:5a:3d:49:66:1b:21:dc:05:
e7:6e:20:14:03:25:59:31:9b:e4:bc:22:77:02:bc:
90:6e:b7:cb:62:ca:1b:32:e0:5d:fb:57:dc:77:c8:
8d:91:4e:18:3f:a0:ca:ed:7e:61:be:82:9f:6f:35:
29:56:58:27:41:75:04:b0:79:4b:4d:c0:e2:1b:fd:
f9:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E7:87:DB:91:D9:A3:72:17:1A:01:AC:9C:72:C3:B1:13:16:7F:2D
X509v3 Authority Key Identifier:
keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:dd:2a:a8:d3:9e:56:bd:57:62:9f:c7:e2:4b:eb:44:ee:47:
1c:89:99:9e:7a:2f:11:85:5d:54:95:d4:0d:a8:5a:7b:93:56:
a4:24:61:31:66:f9:d6:2d:d5:21:e6:22:8a:5d:6e:5e:02:27:
d4:a5:91:e0:a2:69:43:39:70:4d:c0:2c:f6:3d:9a:3e:48:99:
28:92:e5:c3:e6:b4:d9:64:ff:31:fc:11:fc:34:fb:16:16:2c:
24:c5:a2:e7:1e:20:75:57:d0:18:1f:d0:0b:09:67:66:e9:45:
4e:b7:b7:ac:61:10:a4:52:bc:0b:17:15:9a:00:bb:8b:23:57:
9e:db:68:15:69:82:5d:fb:94:17:c3:7c:54:e7:3d:91:f9:f7:
54:c8:95:df:cb:2a:b7:cf:10:92:e6:78:5e:ed:f0:55:fa:8e:
92:b9:43:f6:79:c8:8d:a7:72:90:b0:56:c9:ac:1a:bf:aa:8e:
4f:e8:7d:66:e9:a5:b7:f9:3a:54:cf:2a:b4:63:d4:de:7e:e5:
14:0c:ec:d3:a2:64:16:dc:63:19:08:4e:bf:d1:82:b7:b9:c8:
25:c0:cd:4b:bf:a8:1e:97:0f:5a:9e:89:72:59:2b:b0:7b:67:
0c:59:16:af:71:c8:dc:0e:48:91:bf:48:f1:37:92:95:ed:02:
cb:26:ff:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:50:30 2025 by rpki-client