Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.mft
File: UFEncj6gz9ByRxOykXNMqjU-IOo.mft (raw, json)
Hash identifier: DqrLy1lfPFcM/fUVu925TBILigv2dUI9yTRHoLBwsM8=
Subject key identifier: 61:5E:92:CD:9D:64:1B:D2:23:F6:9C:65:CB:C3:79:AD:5E:7D:D2:12
Authority key identifier: 50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
Certificate issuer: /CN=505127723ea0cfd0724713b291734caa353e20ea
Certificate serial: 01988C586A83133E490801CA94D2DDB92D0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.mft
Manifest number: 1634
Signing time: Sat 09 Aug 2025 01:01:01 +0000
Manifest this update: Sat 09 Aug 2025 01:01:01 +0000
Manifest next update: Sun 10 Aug 2025 01:01:01 +0000
Files and hashes: 1: 1WNYYNS7RX-CeZ_6JxRjUdD-q2A.roa (hash: wxMlsJGdNKU4KY3gfHml6end/i1xs49sClefHW/FEbI=)
2: 7sgM8jQey0hzU8RbkK0fpr8zuWE.roa (hash: gY/oXRN1rQWRXTj4ibW7nW6LN4SdHlM7BLUYysL1ewo=)
3: UFEncj6gz9ByRxOykXNMqjU-IOo.crl (hash: 8yD5tpYIDPjkNGJgKZDDH2qRfJRqGHJ6O4989Y5EIVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 01:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:58:6a:83:13:3e:49:08:01:ca:94:d2:dd:b9:2d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505127723ea0cfd0724713b291734caa353e20ea
Validity
Not Before: Aug 9 01:01:01 2025 GMT
Not After : Aug 10 01:01:01 2025 GMT
Subject: CN=615e92cd9d641bd223f69c65cbc379ad5e7dd212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:03:67:78:6c:8c:ff:ad:b1:8c:80:60:5a:95:
89:58:1d:36:9f:9d:12:24:0f:48:93:d1:a0:13:bd:
2b:5d:66:5f:c0:10:c9:76:2c:30:b8:bf:c5:de:4c:
c1:c0:c9:d0:42:00:aa:e9:78:8d:a1:f0:b7:d4:71:
df:03:a6:70:fb:04:72:b0:fc:04:d0:68:3c:2c:7e:
f7:f5:fc:88:a8:a5:d9:40:46:e9:52:a2:d7:40:b8:
16:02:1b:22:72:f7:38:42:58:fb:aa:99:d6:f9:e2:
fd:8b:64:8f:e1:aa:1c:4f:da:00:35:b0:d2:12:b4:
89:76:84:d1:b0:db:39:7b:7a:e1:56:21:c4:f1:df:
86:be:69:5b:c1:bf:0f:b2:36:ed:99:e3:76:2c:34:
d5:3a:b5:75:60:72:46:33:0c:c4:bf:71:44:42:02:
21:56:11:66:7b:a9:42:f6:cf:ca:29:cc:dc:20:3f:
7b:57:ae:2c:65:e0:b4:6d:35:68:70:c8:ee:12:3c:
dd:7d:d0:20:bc:b2:28:c9:25:39:a0:8d:d6:f2:8f:
1e:79:e8:3e:58:74:0d:0b:da:8b:b6:27:1a:6b:8f:
e4:63:91:b4:9f:94:5e:f8:ee:3b:77:ef:93:06:47:
fe:8d:3e:d9:db:13:2d:c5:3d:f1:92:54:3d:54:cb:
13:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:5E:92:CD:9D:64:1B:D2:23:F6:9C:65:CB:C3:79:AD:5E:7D:D2:12
X509v3 Authority Key Identifier:
keyid:50:51:27:72:3E:A0:CF:D0:72:47:13:B2:91:73:4C:AA:35:3E:20:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFEncj6gz9ByRxOykXNMqjU-IOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a90423-0b4b-499f-be66-55608b694456/1/UFEncj6gz9ByRxOykXNMqjU-IOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:a8:82:f6:9b:5a:86:91:68:54:fa:99:b8:02:ca:23:0c:fd:
be:c1:4e:5f:0f:20:de:72:2e:d3:55:56:a4:9b:76:73:a0:da:
c8:15:d1:34:be:74:95:c5:c8:49:97:19:c7:4c:c8:6c:f0:10:
cf:af:17:e2:af:4d:e3:71:d4:9c:dd:1a:36:68:cf:87:0b:9c:
ff:1e:f2:76:cf:e0:dc:63:3d:d3:2c:1f:eb:36:c1:da:e7:bb:
af:a9:c3:9f:b6:73:5a:87:72:b0:0f:5a:61:8a:f1:16:49:0c:
61:e1:08:e3:1e:e6:0e:e2:fd:b1:0d:69:3d:97:4a:68:d2:f9:
19:c3:83:49:14:d1:63:26:2c:ad:2b:b9:68:41:e3:7c:9c:9b:
e4:0d:af:96:6f:dc:c0:91:54:df:73:70:8f:9e:04:62:8d:74:
39:38:3d:76:3d:1a:32:10:36:13:8f:c2:7b:06:90:36:48:ad:
7e:0c:d5:00:e3:ed:d7:cd:1c:8b:2a:72:f7:bc:3d:ee:da:dd:
eb:1c:8b:3e:49:42:2f:ee:99:22:0b:a1:ac:d5:5a:b2:31:86:
7e:12:c2:33:a2:09:e1:81:6e:79:be:ed:44:1c:5b:62:a4:a2:
5e:09:6f:86:b7:43:57:94:be:93:81:71:a7:7d:11:cc:28:cb:
e3:5e:16:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:46:39 2025 by rpki-client