Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json)
Hash identifier: eGnMdbuTXEGjDPMQ5VWrKNHavkt3kyAn+LwKdZ6aZ0Q=
Subject key identifier: 70:3C:F8:E7:CA:6F:67:DF:8B:82:0E:56:46:74:F3:A2:F8:E0:62:84
Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Certificate serial: 019873E31D25BAB5F97E108CF7FD2B73913D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
Manifest number: 0C48
Signing time: Mon 04 Aug 2025 07:02:00 +0000
Manifest this update: Mon 04 Aug 2025 07:02:00 +0000
Manifest next update: Tue 05 Aug 2025 07:02:00 +0000
Files and hashes: 1: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: 7i7NwYZuqqjsDYOf2TfpIxSZ44EpDkqCdMAhEXU7kug=)
2: yBgRtAUy9SDMB2oNfVg6DWBcxdo.roa (hash: th+et5jSmKPB56Gge2PfFSgmFKaHL/juuWVdT7KzSfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:1d:25:ba:b5:f9:7e:10:8c:f7:fd:2b:73:91:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Validity
Not Before: Aug 4 07:02:00 2025 GMT
Not After : Aug 5 07:02:00 2025 GMT
Subject: CN=703cf8e7ca6f67df8b820e564674f3a2f8e06284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:38:a8:88:9d:dd:fc:1b:5d:90:96:f0:09:60:
da:13:05:07:22:5c:ff:46:8d:13:5f:ad:b4:17:d4:
d5:7b:25:5d:ee:bd:0c:f6:fe:a7:02:7d:33:a0:79:
6a:d5:c6:03:f1:bd:1f:89:43:dc:bb:a8:cd:64:ca:
0d:7a:6b:ac:42:8c:9f:98:f6:57:80:bd:fb:55:e9:
b6:8e:66:8b:46:7b:12:32:23:37:bf:40:98:79:b8:
4b:34:a8:55:13:2b:8d:d4:de:56:46:f8:a7:54:e8:
ce:b5:6b:fd:28:61:71:ff:03:fc:01:60:0b:eb:2b:
09:e2:dd:76:58:74:d9:33:d9:5d:2d:8b:f7:68:fb:
45:59:93:9d:72:99:d1:80:e9:52:62:53:4e:3f:43:
86:70:7c:fe:cb:1c:e9:69:ff:89:1d:a3:01:ab:9f:
0b:be:bf:ab:e3:36:a1:2c:24:f9:14:bc:e3:07:1e:
63:99:03:26:87:f6:eb:4f:f3:63:7b:d8:66:97:f4:
5f:6d:d2:51:77:52:02:d5:66:97:42:1d:a3:46:eb:
87:50:e8:ea:af:ad:50:4a:d1:9a:d8:07:26:d3:7a:
5c:ef:5c:6f:1b:b9:b0:d4:ae:64:0a:3c:4a:f0:98:
01:a8:5a:b2:90:99:db:5f:be:22:f5:6e:78:bd:2e:
f4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:3C:F8:E7:CA:6F:67:DF:8B:82:0E:56:46:74:F3:A2:F8:E0:62:84
X509v3 Authority Key Identifier:
keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:0b:55:df:4a:a2:8a:60:69:93:fd:67:a9:d9:66:17:b4:81:
04:2e:4d:46:07:67:e9:65:2c:cb:af:72:18:6a:b2:82:67:69:
4e:63:73:9e:7b:dc:64:35:91:2a:64:61:10:d6:b8:9f:fe:cd:
82:6a:c0:ea:30:a1:f4:29:ba:19:3a:42:5a:ec:45:88:69:18:
b0:7c:9f:84:8a:95:ef:df:ee:d8:67:42:76:7a:41:0a:29:d5:
00:e2:1f:29:b4:fa:cd:1e:55:ee:03:4e:12:ae:97:9e:87:12:
49:92:a5:de:32:6e:1b:04:5b:84:2c:5f:ed:18:26:b2:e8:2f:
4d:de:cd:bf:e5:30:28:e2:47:09:06:e8:76:6a:8a:b5:b9:4c:
a0:c3:bc:24:94:27:2c:75:9d:14:0a:ea:3b:1c:b1:42:88:0d:
c3:43:a9:ed:12:02:6c:f6:3b:b4:64:dc:72:da:a2:2d:95:a6:
90:b5:81:c2:61:33:c5:13:c2:ab:98:7b:f3:f0:90:89:d9:9a:
ba:c0:5c:1c:94:be:9c:16:da:f7:ca:b0:f5:07:5f:71:2c:10:
3b:0c:e1:45:0b:27:e2:ce:d5:7d:1a:e3:1b:eb:11:c8:41:f9:
0b:da:4d:c7:c3:cd:59:17:8c:db:9c:46:df:d7:b5:fc:79:93:
8b:7c:80:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4x0lurX5fhCM9/0rc5E9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhMWNlZjZmOWU5ZWRjNDVlM2NkMjhlZjQwMjUxOTc5NTJk
NDYwZTkwHhcNMjUwODA0MDcwMjAwWhcNMjUwODA1MDcwMjAwWjAzMTEwLwYDVQQD
Eyg3MDNjZjhlN2NhNmY2N2RmOGI4MjBlNTY0Njc0ZjNhMmY4ZTA2Mjg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzioiJ3d/BtdkJbwCWDaEwUHIlz/
Ro0TX620F9TVeyVd7r0M9v6nAn0zoHlq1cYD8b0fiUPcu6jNZMoNemusQoyfmPZX
gL37Vem2jmaLRnsSMiM3v0CYebhLNKhVEyuN1N5WRvinVOjOtWv9KGFx/wP8AWAL
6ysJ4t12WHTZM9ldLYv3aPtFWZOdcpnRgOlSYlNOP0OGcHz+yxzpaf+JHaMBq58L
vr+r4zahLCT5FLzjBx5jmQMmh/brT/Nje9hml/RfbdJRd1IC1WaXQh2jRuuHUOjq
r61QStGa2Acm03pc71xvG7mw1K5kCjxK8JgBqFqykJnbX74i9W54vS70CQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHA8+OfKb2ffi4IOVkZ086L44GKEMB8GA1UdIwQY
MBaAFLoc72+entxF480o70AlGXlS1GDpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC8yMWQ2NjMtNjg3NC00ODljLWFiOWUt
ZDljYTAzZTY2ZmZiLzEvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC8yMWQ2NjMtNjg3NC00ODljLWFiOWUtZDljYTAzZTY2ZmZi
LzEvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOwtV30qi
imBpk/1nqdlmF7SBBC5NRgdn6WUsy69yGGqygmdpTmNznnvcZDWRKmRhENa4n/7N
gmrA6jCh9Cm6GTpCWuxFiGkYsHyfhIqV79/u2GdCdnpBCinVAOIfKbT6zR5V7gNO
Eq6XnocSSZKl3jJuGwRbhCxf7RgmsugvTd7Nv+UwKOJHCQbodmqKtblMoMO8JJQn
LHWdFArqOxyxQogNw0Op7RICbPY7tGTcctqiLZWmkLWBwmEzxRPCq5h78/CQidma
usBcHJS+nBba98qw9QdfcSwQOwzhRQsn4s7VfRrjG+sRyEH5C9pNx8PNWReM25xG
39e1/HmTi3yAvw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 10:58:35 2025 by rpki-client