Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
File: UgX1htgmO7BtZAUPj0hMFOgDxLI.mft (raw, json)
Hash identifier: mXMotmLryT7NqHNbUVsIhCrEEnhdbiCD5MCM/fLhZPs=
Subject key identifier: 31:15:FD:44:0A:88:5D:DE:DA:99:5F:A5:80:C8:A6:90:2F:34:14:BF
Authority key identifier: 52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
Certificate issuer: /CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Certificate serial: 0199FBEBFC16282CC5385A137F2ACCFF4D65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
Manifest number: 0D20
Signing time: Sun 19 Oct 2025 10:02:50 +0000
Manifest this update: Sun 19 Oct 2025 10:02:50 +0000
Manifest next update: Mon 20 Oct 2025 10:02:50 +0000
Files and hashes: 1: UgX1htgmO7BtZAUPj0hMFOgDxLI.crl (hash: /6BX+aLYSXZzRdJ4cOUmPPeQ03eFdWboqaypb6ohp5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:fc:16:28:2c:c5:38:5a:13:7f:2a:cc:ff:4d:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5205f586d8263bb06d64050f8f484c14e803c4b2
Validity
Not Before: Oct 19 10:02:50 2025 GMT
Not After : Oct 20 10:02:50 2025 GMT
Subject: CN=3115fd440a885ddeda995fa580c8a6902f3414bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5d:65:1a:6e:8f:af:de:6b:20:4e:12:b6:89:
f2:1f:d1:1b:e0:79:5a:6f:ee:af:73:18:ea:2f:bb:
ce:f0:0e:5e:9f:30:88:16:7d:8d:4f:b3:07:b7:5a:
99:4f:31:07:40:2a:3a:b2:06:a5:1d:37:19:b5:43:
39:7c:a7:c3:af:48:5c:9a:bd:a5:2e:cc:0e:26:d8:
75:21:f7:66:31:ed:98:85:33:b4:70:2c:bc:5a:3d:
8d:66:00:c4:c6:7a:12:93:b2:c8:ca:1c:e8:70:39:
db:c9:77:06:42:b8:e9:a2:bf:f7:b6:35:36:58:ae:
6c:3b:04:98:a9:8e:67:a1:f1:71:f3:9f:79:d7:20:
70:8d:29:66:de:13:d1:86:d0:ff:d8:a9:47:3d:a1:
dc:7d:f4:e7:8a:4b:a7:a1:11:c1:e5:76:84:33:d3:
df:35:cd:ca:83:17:cb:b3:48:d0:96:fc:0b:10:48:
c4:55:af:70:3b:da:a8:c5:b9:75:77:a5:2c:49:d4:
9a:ce:03:27:dc:ee:4d:a1:24:46:49:ce:5b:57:24:
55:30:09:4f:f0:09:1a:06:56:72:07:cd:2f:af:e6:
93:41:73:03:3c:78:3a:be:3a:87:e5:97:5a:a5:91:
de:c6:25:c4:93:29:54:1d:7f:bb:e4:8a:12:88:cc:
d3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:15:FD:44:0A:88:5D:DE:DA:99:5F:A5:80:C8:A6:90:2F:34:14:BF
X509v3 Authority Key Identifier:
keyid:52:05:F5:86:D8:26:3B:B0:6D:64:05:0F:8F:48:4C:14:E8:03:C4:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgX1htgmO7BtZAUPj0hMFOgDxLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/98ed86-fe7d-4011-afd3-0f2573eca2e4/1/UgX1htgmO7BtZAUPj0hMFOgDxLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:26:ae:2d:4a:fa:70:37:c3:ba:59:17:77:15:e3:9c:44:c8:
51:b6:fb:b6:e4:c3:cc:e1:84:8d:f1:e4:e1:dd:68:e3:1e:71:
5d:bc:5f:39:0f:1f:e3:f7:b2:6f:6b:ab:43:9f:98:ef:08:bf:
35:a6:e2:ec:28:99:55:c3:17:b9:ae:4d:83:0d:67:82:93:d3:
29:b5:52:62:93:3f:c1:1b:ea:2e:a9:25:be:e5:2a:ae:93:ec:
39:4b:f2:5e:dd:0d:48:33:15:f1:df:3a:c3:1c:cd:fc:39:4c:
82:cf:ca:6b:b8:cf:87:a9:6a:e7:c3:a0:99:be:89:67:8b:6a:
3f:65:24:4c:b8:b5:c3:3b:a8:39:c0:a7:5b:f6:c5:a5:38:20:
fd:cf:8c:78:0b:8e:a2:41:50:ef:81:69:36:63:aa:37:38:26:
92:2d:a2:eb:97:06:32:fe:4d:3f:0b:1d:ee:aa:6f:c5:f5:c8:
96:31:ed:29:b8:6e:f5:0d:98:9f:de:23:1f:56:12:f9:68:c2:
c0:f3:45:2a:ec:b4:e9:2d:ff:c7:5b:20:09:88:0c:f7:01:e4:
d3:a6:de:f9:14:ec:ef:8c:a0:b2:b1:60:08:0b:49:9b:c8:64:
11:f4:2c:2a:85:d3:f4:ff:1c:bf:27:9a:30:17:e9:6d:ba:91:
cb:09:b6:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:18:56 2025 by rpki-client