Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
File: UtlINdtX9r4TjoZPWT7mrai4PtA.mft (raw, json)
Hash identifier: IoPe9Dr9ld1mesI44r0JOe0i/rhR91z5qp4HWeVfaRo=
Subject key identifier: 7C:B8:2C:9D:A9:51:F6:12:1E:76:E3:B1:D0:B3:A5:5B:52:04:55:86
Authority key identifier: 52:D9:48:35:DB:57:F6:BE:13:8E:86:4F:59:3E:E6:AD:A8:B8:3E:D0
Certificate issuer: /CN=52d94835db57f6be138e864f593ee6ada8b83ed0
Certificate serial: 0199FBEBFC01A56CC9F6C809C7F36C35F5EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
Manifest number: 0196
Signing time: Sun 19 Oct 2025 10:02:50 +0000
Manifest this update: Sun 19 Oct 2025 10:02:50 +0000
Manifest next update: Mon 20 Oct 2025 10:02:50 +0000
Files and hashes: 1: UtlINdtX9r4TjoZPWT7mrai4PtA.crl (hash: oMuhaJKbi02nHQpWvOOvdBXvy3jFu2WcT5+SxYzqJQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:fc:01:a5:6c:c9:f6:c8:09:c7:f3:6c:35:f5:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52d94835db57f6be138e864f593ee6ada8b83ed0
Validity
Not Before: Oct 19 10:02:50 2025 GMT
Not After : Oct 20 10:02:50 2025 GMT
Subject: CN=7cb82c9da951f6121e76e3b1d0b3a55b52045586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a9:05:a7:db:8c:2c:ba:ab:df:3a:19:ff:7e:
33:fa:de:43:6a:c6:ac:6c:67:a7:c5:61:88:f6:d3:
d4:03:d8:46:d9:64:e4:15:08:10:40:e3:36:9d:37:
6a:06:dd:37:51:c5:9c:c9:c8:7c:88:ea:e8:a0:2f:
69:80:83:11:27:5b:16:74:62:22:a4:fe:3d:06:b9:
bb:49:a2:32:bb:fb:62:0e:8b:bf:7e:0d:7a:74:f1:
50:f4:d2:83:3b:09:ab:d6:f5:d9:fe:15:b3:b1:d5:
6d:8d:0f:6e:5c:d5:1d:b4:f1:3e:e1:d2:34:f7:d1:
97:ca:06:e7:07:c9:92:aa:53:a1:58:50:96:9d:b7:
13:c0:31:c7:fc:d9:cf:e6:ca:2d:56:66:b5:9f:7a:
0b:a7:d4:78:dc:82:44:25:cd:e2:7f:e2:f6:5d:3c:
95:09:95:23:82:41:e1:7a:80:ad:57:cf:4e:cb:13:
69:b4:57:44:da:61:a5:4d:f0:7a:a8:ac:9e:98:1d:
6d:33:41:8e:5c:f6:b9:e4:5e:39:e3:80:12:76:d3:
39:8d:87:8b:4e:e1:bc:57:c3:2f:9d:f8:51:51:0a:
c4:c2:ea:4a:a1:b7:7f:97:df:1f:d2:3e:f6:83:b8:
4d:3d:5e:7e:d0:1d:d6:6c:dc:69:45:6d:b3:28:c1:
54:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B8:2C:9D:A9:51:F6:12:1E:76:E3:B1:D0:B3:A5:5B:52:04:55:86
X509v3 Authority Key Identifier:
keyid:52:D9:48:35:DB:57:F6:BE:13:8E:86:4F:59:3E:E6:AD:A8:B8:3E:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:09:95:33:0e:13:89:f3:9f:57:db:ea:d2:06:1d:f5:e4:c3:
f0:f8:65:c7:74:a1:68:67:fb:c2:0e:25:fc:ff:ed:7c:d2:54:
54:ee:bb:17:c7:27:8f:eb:94:fa:ba:3b:07:03:9b:ab:b9:77:
0d:d8:02:3c:2c:ba:ca:7a:b6:75:5b:ed:90:30:e2:e1:a4:34:
7c:94:b4:1c:5e:30:da:9c:28:a0:9f:07:db:70:0a:4a:a1:4c:
a2:9a:c6:b5:6b:0b:9e:ae:71:2b:11:83:f4:23:66:ed:e1:1e:
d3:8b:78:17:16:ab:ef:ad:1e:b9:81:e0:2d:df:80:a9:bd:db:
a6:59:67:b5:ad:da:c3:01:d5:ac:b4:d0:e2:41:44:05:e9:bc:
2c:71:9f:81:60:25:7c:ff:62:f9:e8:b4:90:be:84:a2:5a:8c:
40:21:18:d9:d6:4e:5a:67:ee:01:e8:13:df:29:23:d4:4f:ed:
72:4c:cd:08:34:86:9d:36:d3:c9:2b:46:79:3f:76:24:b6:68:
91:2d:bc:ff:37:c3:3c:6a:ff:1f:76:d0:0b:5f:a4:7e:25:15:
ce:60:14:23:eb:54:00:a5:9f:31:e7:9f:5f:04:aa:11:f4:06:
2c:ff:2e:22:e3:20:15:56:32:a3:86:42:24:c5:fb:dc:a9:cb:
53:09:4e:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76/wBpWzJ9sgJx/NsNfXvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyZDk0ODM1ZGI1N2Y2YmUxMzhlODY0ZjU5M2VlNmFkYThi
ODNlZDAwHhcNMjUxMDE5MTAwMjUwWhcNMjUxMDIwMTAwMjUwWjAzMTEwLwYDVQQD
Eyg3Y2I4MmM5ZGE5NTFmNjEyMWU3NmUzYjFkMGIzYTU1YjUyMDQ1NTg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKkFp9uMLLqr3zoZ/34z+t5Dasas
bGenxWGI9tPUA9hG2WTkFQgQQOM2nTdqBt03UcWcych8iOrooC9pgIMRJ1sWdGIi
pP49Brm7SaIyu/tiDou/fg16dPFQ9NKDOwmr1vXZ/hWzsdVtjQ9uXNUdtPE+4dI0
99GXygbnB8mSqlOhWFCWnbcTwDHH/NnP5sotVma1n3oLp9R43IJEJc3if+L2XTyV
CZUjgkHheoCtV89OyxNptFdE2mGlTfB6qKyemB1tM0GOXPa55F4544ASdtM5jYeL
TuG8V8MvnfhRUQrEwupKobd/l98f0j72g7hNPV5+0B3WbNxpRW2zKMFUfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHy4LJ2pUfYSHnbjsdCzpVtSBFWGMB8GA1UdIwQY
MBaAFFLZSDXbV/a+E46GT1k+5q2ouD7QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXRsSU5kdFg5cjRUam9aUFdUN21yYWk0UHRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS82ZGUyZGMtZWNkMi00YWY4LWJiMGEt
M2QwOGFhYmQ1ZTliLzEvVXRsSU5kdFg5cjRUam9aUFdUN21yYWk0UHRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS82ZGUyZGMtZWNkMi00YWY4LWJiMGEtM2QwOGFhYmQ1ZTli
LzEvVXRsSU5kdFg5cjRUam9aUFdUN21yYWk0UHRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeAmVMw4T
ifOfV9vq0gYd9eTD8Phlx3ShaGf7wg4l/P/tfNJUVO67F8cnj+uU+ro7BwObq7l3
DdgCPCy6ynq2dVvtkDDi4aQ0fJS0HF4w2pwooJ8H23AKSqFMoprGtWsLnq5xKxGD
9CNm7eEe04t4Fxar760euYHgLd+Aqb3bpllnta3awwHVrLTQ4kFEBem8LHGfgWAl
fP9i+ei0kL6EolqMQCEY2dZOWmfuAegT3ykj1E/tckzNCDSGnTbTyStGeT92JLZo
kS28/zfDPGr/H3bQC1+kfiUVzmAUI+tUAKWfMeefXwSqEfQGLP8uIuMgFVYyo4ZC
JMX73KnLUwlO8A==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:26:12 2025 by rpki-client