Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: wkqrD77TKou6utIJiWtzwH9wpIFpZcwnRWpwD4zApok=
Subject key identifier: A5:86:5E:55:D9:47:63:15:B5:D1:DE:25:64:A7:04:41:B8:93:39:A1
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 019A4F62A0CF2167BBD7AFF3EFEC53F0F970
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 04DF
Signing time: Tue 04 Nov 2025 15:00:54 +0000
Manifest this update: Tue 04 Nov 2025 15:00:54 +0000
Manifest next update: Wed 05 Nov 2025 15:00:54 +0000
Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: JxLTvZvGIIaNi00k838jKZadbUFmPFa42+9zNkempQQ=)
2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:a0:cf:21:67:bb:d7:af:f3:ef:ec:53:f0:f9:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Nov 4 15:00:54 2025 GMT
Not After : Nov 5 15:00:54 2025 GMT
Subject: CN=a5865e55d9476315b5d1de2564a70441b89339a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d7:2d:ea:71:13:4c:02:76:1d:72:ff:f4:ad:
22:35:b1:5d:5a:5a:6d:ae:e5:a8:db:5a:68:e8:c6:
b4:8b:a4:04:e3:ee:e2:81:41:2e:2f:0b:cc:f1:49:
08:4e:f1:56:f9:34:7b:ee:36:29:04:fc:5b:af:92:
00:42:b7:e6:9d:d0:ea:7c:de:68:00:4c:6d:49:27:
25:36:76:29:ab:c4:48:46:1c:5a:e0:69:a2:0a:d4:
cc:da:84:be:3c:bf:d3:91:4c:a4:36:b8:22:49:03:
08:4b:ad:36:82:94:e4:9a:37:10:4a:29:8a:fa:dc:
bc:77:eb:49:a6:b2:e7:8e:30:e6:96:fd:55:5d:e1:
18:60:86:a2:e0:53:f4:ed:bf:0b:de:ae:5d:ab:c6:
b5:60:ae:d9:ae:0e:ac:74:49:37:d7:f7:4e:5d:41:
e9:22:df:43:13:7f:8f:b7:30:84:b0:52:5b:18:65:
d8:42:e5:fa:2a:6d:d2:30:74:c4:16:97:26:89:47:
aa:28:e2:d7:d8:71:49:24:8b:4d:76:38:a9:7f:85:
0c:e3:66:9c:22:ec:b8:7d:11:c0:bf:81:84:fd:84:
18:1d:a0:86:f4:c7:04:d8:af:4b:f5:b5:60:89:c1:
5c:3c:66:cb:35:9a:57:49:ca:21:89:19:da:a9:ca:
d9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:86:5E:55:D9:47:63:15:B5:D1:DE:25:64:A7:04:41:B8:93:39:A1
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d0:80:a2:44:84:97:69:b4:5c:84:82:13:6e:4c:44:d4:88:
90:bb:57:a8:03:9e:2e:05:c0:23:85:d0:aa:a3:39:76:7c:92:
7f:20:d2:59:0b:87:bc:08:7f:c8:92:07:44:98:b3:bb:8e:54:
f4:0c:5a:7e:3a:aa:6e:f2:fe:05:58:12:33:7e:08:86:a0:ae:
03:f4:a7:eb:04:50:b1:c7:15:04:3a:c9:c3:3f:37:49:f4:1a:
7b:b6:7b:03:2a:f0:26:0f:66:5c:9f:f5:a8:27:68:be:1e:d5:
1f:ea:f2:56:c6:34:7c:8e:ca:0c:db:35:b8:89:45:c3:d0:eb:
68:02:e4:ca:dc:cc:d8:2b:67:0e:91:99:51:4e:c6:19:9a:0c:
c5:e1:30:5a:e9:ad:d7:0b:76:bf:ee:7f:3e:bd:a5:be:5f:b0:
8d:32:04:25:34:86:6e:df:32:c2:2e:8b:bb:1f:56:0b:6a:13:
c5:b4:c8:28:6a:4a:5e:a8:fc:41:56:7d:c7:b0:be:71:cb:0e:
3c:57:2f:02:1d:27:a7:88:6e:2f:5a:6a:54:80:88:d4:77:ec:
48:fd:aa:d3:25:9c:b1:d2:71:c3:e1:e6:1f:65:6c:46:30:6d:
ad:09:95:84:25:af:6f:00:d4:ca:83:1f:d8:de:07:91:ef:f5:
7a:d2:b0:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:58:12 2025 by rpki-client