Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: xXWMbjJ+Um8oodkTxSM/QRSljx8yzNouhUx7K0EYU7Y=
Subject key identifier: A3:81:CD:FC:1C:55:3B:05:B0:4B:F3:8B:02:F4:E5:22:D5:EF:3B:5E
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 019874506CDB846A507F7F2F66746F25CA96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 03E9
Signing time: Mon 04 Aug 2025 09:01:24 +0000
Manifest this update: Mon 04 Aug 2025 09:01:24 +0000
Manifest next update: Tue 05 Aug 2025 09:01:24 +0000
Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: G08wMCvmeLnA/30BkQUTIjqYLtwN/2OYT49vKKWJ8Rk=)
2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:6c:db:84:6a:50:7f:7f:2f:66:74:6f:25:ca:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Aug 4 09:01:24 2025 GMT
Not After : Aug 5 09:01:24 2025 GMT
Subject: CN=a381cdfc1c553b05b04bf38b02f4e522d5ef3b5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:dd:34:10:54:4c:d6:e0:57:55:25:6b:4e:7c:
f5:78:be:3e:9b:77:6a:70:6f:f8:e6:73:19:09:bd:
87:95:e0:38:a6:ae:68:83:43:97:0a:26:0b:40:27:
16:de:2f:1d:a9:f1:d3:36:80:a2:6f:23:6d:3f:8a:
56:19:11:c9:61:87:6c:69:63:ea:ff:b1:6f:26:9d:
89:c4:7f:e3:81:59:f5:61:b6:25:a0:3b:b1:e3:ac:
5c:d4:24:73:21:f5:d8:ce:09:70:5c:a4:c1:db:69:
fc:0d:39:4f:4e:ee:a1:d9:2f:92:ed:a0:ac:01:69:
ac:fd:b3:d7:b0:f8:4d:2a:0a:ab:7d:f7:ed:3d:02:
c7:2b:6a:c9:d7:52:e1:44:10:33:89:f9:bf:5d:ee:
39:82:6d:ba:d2:19:e5:b7:ce:8a:cc:f8:dd:3c:69:
60:07:47:ce:88:32:70:7a:83:0f:4b:f6:01:d8:e5:
61:97:29:57:83:29:14:a1:bf:7f:b0:c4:f4:5c:a5:
45:51:1c:1d:af:05:82:46:47:e5:f9:33:c6:80:48:
e6:d0:1b:58:c1:b7:2f:1f:4d:67:bd:47:d4:04:19:
a6:57:fb:55:a3:d5:f9:99:bc:44:8e:49:24:ed:4f:
70:63:1b:27:9a:bf:ab:e8:d1:6d:f9:0e:96:1c:05:
64:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:81:CD:FC:1C:55:3B:05:B0:4B:F3:8B:02:F4:E5:22:D5:EF:3B:5E
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:79:78:74:37:5b:65:f2:a7:05:62:cd:eb:ca:e4:59:46:e7:
81:ec:44:09:e8:42:6e:3f:fc:ef:ad:69:15:8e:c8:62:a9:40:
65:2a:f6:66:93:77:83:9b:04:a1:42:07:ec:1f:6e:86:51:53:
db:b9:b9:94:0a:02:a2:7d:7f:7c:7d:ff:81:ae:39:07:8d:7c:
b0:d8:61:de:80:00:0d:8e:44:0d:a1:f3:c0:e1:99:a8:0b:31:
5d:ea:ea:5e:39:ab:88:41:fc:a9:f8:cf:7f:e1:60:0e:cc:f1:
5f:a2:5f:99:57:85:66:26:b2:b3:bc:b9:a8:d1:dc:29:b4:df:
39:fc:5c:08:be:6d:06:48:9f:7f:bb:75:f7:0c:d6:71:41:1a:
a8:42:15:bd:bc:72:3d:a3:36:5d:57:d6:05:ca:e0:20:cd:64:
95:63:be:0e:35:c0:cc:58:aa:db:5a:07:50:de:5b:59:dd:45:
e8:7f:5f:57:aa:b2:fa:46:22:b6:fd:bf:02:80:e3:f9:40:dd:
1e:05:58:0b:99:51:2e:b3:f6:c4:ef:07:1a:1c:a0:9c:d2:d5:
c0:48:85:92:c3:a1:a0:4e:a7:dd:6b:1e:93:2c:90:fe:6e:00:
ac:70:6e:02:35:cb:8b:30:ae:6e:17:89:f8:79:97:98:36:02:
89:d3:00:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:47 2025 by rpki-client