Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
File: UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft (raw, json)
Hash identifier: frFoJkMdV4EoZBK3PY/o0L4ww0xIya+4KHDqeR8qlpM=
Subject key identifier: 2C:7D:11:E5:12:50:F1:0D:78:A0:4C:11:09:5C:D5:B3:A2:8D:3C:F9
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 01987D8A4D7084189F5566A0A77430C86CF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
Manifest number: 137D
Signing time: Wed 06 Aug 2025 04:01:12 +0000
Manifest this update: Wed 06 Aug 2025 04:01:12 +0000
Manifest next update: Thu 07 Aug 2025 04:01:12 +0000
Files and hashes: 1: MggUNL8VW9yE4LnaTyr5YJxrDwU.roa (hash: GpA5vo0L4EKCpZl/rQZR5bRixQFok1LnqW2Xg8KUiaQ=)
2: UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl (hash: ZG0ZbIzYXldIf+3EOzFGonQq2HvToXTiiNpd28D1kls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8a:4d:70:84:18:9f:55:66:a0:a7:74:30:c8:6c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Aug 6 04:01:12 2025 GMT
Not After : Aug 7 04:01:12 2025 GMT
Subject: CN=2c7d11e51250f10d78a04c11095cd5b3a28d3cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6c:33:64:de:3c:68:4e:30:dc:4c:f6:d6:00:
75:28:ac:3e:e6:f3:ae:c3:0e:f1:7b:1e:c9:29:c0:
5e:ff:fb:99:57:3e:f2:68:d0:7f:e6:85:ed:db:89:
39:9f:68:a7:f2:2f:d5:5d:8a:de:fd:44:8c:52:ce:
f1:e8:87:81:3f:a1:e1:d4:4e:66:8f:d5:16:e6:d9:
e9:3c:46:6a:f2:9d:cd:df:fe:80:33:0d:c9:dd:ec:
34:81:5b:ea:cb:d5:02:c8:dc:ad:0c:fd:39:65:91:
64:9c:c0:75:96:8c:98:57:7d:a1:e1:a7:14:75:79:
a8:10:e8:72:85:b2:8b:19:20:04:0c:8a:54:18:7d:
32:73:8b:cb:67:36:e6:0b:af:29:c3:0d:0c:16:c9:
10:23:0d:ae:26:34:9c:94:ab:76:bf:cf:a3:fe:9c:
90:18:88:a4:55:30:49:3a:da:26:3a:ec:f2:7c:ac:
eb:5f:13:93:c8:c4:6c:5b:28:64:29:9b:9a:34:ce:
e6:69:8f:00:f9:21:f6:36:25:36:ca:9e:8a:3b:6b:
83:00:6d:a7:ba:80:ff:5b:10:8d:9e:47:f9:8d:1e:
92:5b:fa:03:df:5b:95:e7:ef:3c:c5:2f:57:b9:32:
5c:15:c5:bf:06:cf:af:23:b2:45:54:75:2f:f7:c4:
90:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7D:11:E5:12:50:F1:0D:78:A0:4C:11:09:5C:D5:B3:A2:8D:3C:F9
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:8c:75:f3:74:57:dd:77:31:47:92:3e:7b:5f:6c:6b:af:f9:
d7:f1:5a:69:0c:83:13:e3:2e:a6:a4:1c:5b:83:5a:e0:60:96:
b4:18:61:0c:bb:f3:65:b6:3c:64:3b:29:ca:4a:79:db:9f:a6:
e6:84:ac:9c:14:4e:da:f9:b6:7b:2b:9a:54:20:dc:37:ff:bd:
93:27:95:1f:54:53:d1:fb:84:e1:82:d1:68:0e:e5:f7:86:b8:
ee:2d:96:63:5e:ff:2a:d7:9b:a1:6a:76:09:48:5e:76:fb:3b:
4c:8e:12:29:73:91:c0:aa:74:26:dc:ef:02:b3:d0:d5:17:4b:
6b:53:c7:74:8e:88:82:7a:77:8e:c5:fc:e1:50:33:1f:1b:21:
d5:fe:83:6f:a9:a1:29:e3:5b:95:f4:0e:e1:94:5d:88:09:84:
54:c0:23:6e:40:e3:87:73:20:bd:59:0d:8b:8e:44:fa:76:84:
4f:08:e5:20:09:38:58:61:1b:6d:1a:90:1f:c4:75:da:db:c5:
e1:8f:ed:a2:17:f7:4b:c0:93:a0:a6:4a:20:43:1b:4d:80:25:
04:64:6a:17:d2:83:85:a5:fe:a2:dd:28:9b:db:9a:59:df:72:
66:b2:68:88:52:1b:7d:95:3a:ac:0e:f9:53:4c:74:3a:d0:4a:
61:65:87:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:04:41 2025 by rpki-client