Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
File: UgX1htgmO7BtZAUPj0hMFOgDxLI.mft (raw, json)
Hash identifier: xroCeIqy1jNATmWAzZ6eKtEbfsHfozfA5qVvyehqb1s=
Subject key identifier: 75:9B:DB:82:97:DB:B5:48:B2:7D:B5:48:53:9F:F4:8C:65:A7:FD:F9
Authority key identifier: 52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
Certificate issuer: /CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Certificate serial: 0198D660BB80C0B2E7E5D5517BAF21C9CF59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
Manifest number: 0C88
Signing time: Sat 23 Aug 2025 10:02:00 +0000
Manifest this update: Sat 23 Aug 2025 10:02:00 +0000
Manifest next update: Sun 24 Aug 2025 10:02:00 +0000
Files and hashes: 1: UgX1htgmO7BtZAUPj0hMFOgDxLI.crl (hash: a01DuYF343xZDI4MmaIedqnv95D0HAe2KrvrNi2LCI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:bb:80:c0:b2:e7:e5:d5:51:7b:af:21:c9:cf:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Validity
Not Before: Aug 23 10:02:00 2025 GMT
Not After : Aug 24 10:02:00 2025 GMT
Subject: CN=759bdb8297dbb548b27db548539ff48c65a7fdf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b4:ef:d1:f7:cd:1d:53:84:74:a7:5a:da:7c:
4c:59:bd:63:cd:90:4b:ac:80:72:b5:62:f7:94:0c:
97:9f:84:dc:c2:be:c2:63:35:06:81:63:8e:78:f0:
d7:cd:d3:da:0d:25:f3:26:bc:62:32:10:6c:ec:9b:
52:1e:7b:93:6c:fa:15:63:ed:15:57:e2:5e:d6:96:
cd:a3:43:28:b0:66:23:ec:49:69:3b:b1:80:67:a1:
19:81:ce:ce:f7:31:7d:a6:84:e5:b3:71:b3:72:64:
e4:5f:97:e0:71:e9:6b:e8:1c:cc:23:0c:be:c5:63:
69:71:bf:5e:a8:05:56:cf:9f:ba:f4:cd:01:f3:6c:
37:4e:c5:91:cc:69:8c:b3:dc:5c:b3:81:dc:b5:55:
52:49:cc:b1:6a:51:e2:1a:62:05:94:9a:38:d9:de:
d9:82:85:21:0f:d4:0e:fc:65:2b:6c:ec:b8:28:56:
b7:49:5f:20:95:02:30:05:8a:83:db:8b:06:bd:90:
1e:40:c9:ad:1c:ec:4f:1b:54:a0:25:67:a5:c3:8c:
57:f5:b0:c6:ba:e9:79:66:89:84:b1:b6:59:b5:03:
1e:bf:b6:43:31:ec:fd:e3:da:3d:c2:d7:3f:9c:8f:
dc:a9:ab:ef:17:45:07:f0:98:51:1d:0e:e5:23:2b:
bf:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9B:DB:82:97:DB:B5:48:B2:7D:B5:48:53:9F:F4:8C:65:A7:FD:F9
X509v3 Authority Key Identifier:
keyid:52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:12:40:c7:d2:9f:39:a4:50:eb:9d:33:60:65:e2:61:9d:59:
5e:a0:a6:2d:34:c5:1c:94:42:df:dd:ec:0e:8c:d8:b1:c6:ae:
67:b0:16:29:dc:ab:7f:23:1f:95:5d:7f:38:a3:e4:53:29:35:
e8:e9:28:e6:ea:82:51:5f:3f:39:8c:f2:b1:9c:c4:09:6e:3b:
70:c3:63:dd:27:9d:19:f5:c1:00:9b:ab:58:73:0e:b0:aa:28:
c7:d0:2b:3d:d9:93:2d:66:1c:60:5a:74:8a:35:8a:44:0d:51:
f2:3a:d3:68:72:c3:78:02:a7:27:ea:d6:f5:ab:1e:b8:1b:84:
49:a2:e5:d7:85:d0:b2:75:3c:7b:58:58:30:4c:2a:ab:ce:7f:
26:e0:20:e5:d9:d5:3c:b2:e9:c8:c1:a2:57:d9:2b:7a:03:77:
eb:c4:7d:ce:e0:d4:ed:ea:c8:13:a8:82:22:95:2c:d4:ea:df:
d2:2b:1d:f2:a9:35:6e:33:46:80:59:1b:22:39:cc:5c:27:4a:
2c:d0:99:f8:5a:27:eb:0e:50:9d:66:e8:8a:90:56:80:a9:de:
d0:19:81:bd:85:f4:a6:00:5a:2f:80:e6:fd:35:92:85:75:7f:
b6:5c:e8:b1:e0:a3:a2:06:74:50:10:95:4d:dc:7a:a4:a9:3b:
42:83:03:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYLuAwLLn5dVRe68hyc9ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyMDVmNTg2ZDgyNjNiYjA2ZDY0MDUwZjhmNDg0YzE0ZTgw
M2M0YjIwHhcNMjUwODIzMTAwMjAwWhcNMjUwODI0MTAwMjAwWjAzMTEwLwYDVQQD
Eyg3NTliZGI4Mjk3ZGJiNTQ4YjI3ZGI1NDg1MzlmZjQ4YzY1YTdmZGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrTv0ffNHVOEdKda2nxMWb1jzZBL
rIBytWL3lAyXn4Tcwr7CYzUGgWOOePDXzdPaDSXzJrxiMhBs7JtSHnuTbPoVY+0V
V+Je1pbNo0MosGYj7ElpO7GAZ6EZgc7O9zF9poTls3GzcmTkX5fgcelr6BzMIwy+
xWNpcb9eqAVWz5+69M0B82w3TsWRzGmMs9xcs4HctVVSScyxalHiGmIFlJo42d7Z
goUhD9QO/GUrbOy4KFa3SV8glQIwBYqD24sGvZAeQMmtHOxPG1SgJWelw4xX9bDG
uul5ZomEsbZZtQMev7ZDMez949o9wtc/nI/cqavvF0UH8JhRHQ7lIyu/ZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHWb24KX27VIsn21SFOf9Ixlp/35MB8GA1UdIwQY
MBaAFFIF9YbYJjuwbWQFD49ITBToA8SyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWdYMWh0Z21PN0J0WkFVUGowaE1GT2dEeExJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi85OGVkODYtZmU3ZC00MDExLWFmZDMt
MGYyNTczZWNhMmU0LzEvVWdYMWh0Z21PN0J0WkFVUGowaE1GT2dEeExJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi85OGVkODYtZmU3ZC00MDExLWFmZDMtMGYyNTczZWNhMmU0
LzEvVWdYMWh0Z21PN0J0WkFVUGowaE1GT2dEeExJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPRJAx9Kf
OaRQ650zYGXiYZ1ZXqCmLTTFHJRC393sDozYscauZ7AWKdyrfyMflV1/OKPkUyk1
6Oko5uqCUV8/OYzysZzECW47cMNj3SedGfXBAJurWHMOsKoox9ArPdmTLWYcYFp0
ijWKRA1R8jrTaHLDeAKnJ+rW9aseuBuESaLl14XQsnU8e1hYMEwqq85/JuAg5dnV
PLLpyMGiV9kregN368R9zuDU7erIE6iCIpUs1Orf0isd8qk1bjNGgFkbIjnMXCdK
LNCZ+Fon6w5QnWboipBWgKne0BmBvYX0pgBaL4Dm/TWShXV/tlzoseCjogZ0UBCV
Tdx6pKk7QoMDJQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:23:51 2025 by rpki-client