Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json)
Hash identifier: cYqQEu7vjdwAlfrE89jTQM4wVeDFzcHAJZtiAlygIR0=
Subject key identifier: B8:EA:B8:12:61:1E:E1:01:50:65:7F:D1:E4:FD:AD:CC:68:D4:A7:D7
Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589
Certificate serial: 0198D4E01C0FF046AA506C0EFEFAC2F0FC0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
Manifest number: 0DBD
Signing time: Sat 23 Aug 2025 03:01:53 +0000
Manifest this update: Sat 23 Aug 2025 03:01:53 +0000
Manifest next update: Sun 24 Aug 2025 03:01:53 +0000
Files and hashes: 1: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: WXudd7/JHZvh6UnSovIsK2V7RZ9A4BKtP8BFRbwuzo4=)
2: yiSfs72_nEyzYSAodCILSS2FNUg.roa (hash: S9gHpNvUCJD2H4bcxuT5WWB4Uck7rHXNRIxCLUlb2hE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:1c:0f:f0:46:aa:50:6c:0e:fe:fa:c2:f0:fc:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5061754f7689169f6a15065095472672ba2b4589
Validity
Not Before: Aug 23 03:01:53 2025 GMT
Not After : Aug 24 03:01:53 2025 GMT
Subject: CN=b8eab812611ee10150657fd1e4fdadcc68d4a7d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b8:23:d9:0b:9a:fe:7b:62:1c:00:1f:ce:bc:
66:5e:35:4b:e5:99:fd:ae:6d:e9:74:00:d6:ea:5b:
46:21:1a:00:c0:56:3c:86:79:15:12:fa:f9:26:14:
de:22:a6:72:f9:2e:53:72:5c:97:fe:a3:99:6c:62:
07:c5:8d:b3:e4:72:90:e3:c6:37:f4:6e:01:a3:ad:
83:89:ea:6b:8a:b5:0c:f1:cb:2a:91:c7:f8:a6:d1:
14:e7:ae:59:63:e2:5e:ad:9e:33:cd:9f:87:dd:64:
d2:85:a9:5d:4d:ab:d2:49:90:de:79:b9:29:c9:5f:
2b:e5:34:99:48:a0:c9:f4:97:e6:d9:f3:86:22:ba:
84:6f:e6:6c:b3:ac:ee:ed:74:e7:cc:18:f5:0d:6f:
cd:51:0e:04:0b:e9:93:4b:98:e1:76:4b:25:c1:02:
ff:d8:39:f9:c6:96:bd:4e:ba:f6:21:93:e0:3c:6a:
03:90:e8:16:71:37:1d:fe:67:60:e6:b8:46:ff:2d:
2e:7f:a9:5d:90:dd:e9:df:d7:e5:f3:b0:59:f4:21:
e3:74:c5:7e:b1:d3:2e:9c:11:50:73:8f:b9:13:12:
1a:b0:a7:94:8e:25:fa:af:dc:5a:1b:2f:d1:55:2c:
4a:8a:d4:69:ed:92:08:34:bf:e3:ee:7a:26:fa:be:
a8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:EA:B8:12:61:1E:E1:01:50:65:7F:D1:E4:FD:AD:CC:68:D4:A7:D7
X509v3 Authority Key Identifier:
keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:ac:fb:3c:f9:b6:c4:a7:cc:71:6c:62:be:33:d9:c9:b4:c8:
dc:d0:fc:de:b5:1a:b3:89:9f:45:e5:dd:0c:ba:cb:aa:3b:4a:
0f:bb:86:fe:f9:6b:ef:9b:7e:c8:66:45:60:78:cb:a1:4d:d7:
05:d3:44:4f:ac:c1:bb:28:8a:6f:cf:91:93:5e:03:10:c1:47:
ca:46:82:9f:74:96:cc:cc:93:63:0e:de:09:20:44:68:82:5f:
96:b5:06:cc:e2:a1:6e:af:01:23:52:ac:d1:db:c5:3a:36:3c:
30:45:d2:5c:10:d2:bd:0c:f7:9e:4c:f9:9c:eb:c3:3a:ab:d4:
91:d6:da:12:6b:5b:6f:fc:66:b5:0c:ea:05:33:19:5d:f6:10:
99:b7:82:25:9b:e6:90:99:a8:b6:8c:42:dc:f8:62:1a:22:06:
7d:ba:e2:d7:3c:cf:19:71:1b:50:f5:d1:06:92:4d:33:13:c3:
3f:bd:d8:50:60:df:07:90:7d:a7:ba:a0:2a:1f:46:66:e9:19:
d8:10:44:4b:05:4e:97:4c:86:19:07:f5:b4:e4:20:8a:ec:b1:
77:e5:bb:cd:90:7e:c3:33:cb:d2:5e:ee:b1:cc:0c:a9:1a:b0:
9c:d0:e3:df:70:2e:cb:05:7b:7e:4d:96:4e:b9:b0:98:34:3e:
ba:26:d5:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:30:51 2025 by rpki-client