Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
File: uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft (raw, json)
Hash identifier: WlcY9y30fNFqgY7LjFyGh40T/XRPBDRMyHJ41INj8UA=
Subject key identifier: 4B:FF:9B:FB:12:DB:A8:97:A1:E6:06:9A:10:97:4F:F4:CA:18:50:BE
Authority key identifier: B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
Certificate issuer: /CN=b90907cee4fac50f3753622ad21a989ae7741c47
Certificate serial: 019881D48403FCC1416EB3196DCCDC3E54A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
Manifest number: 1320
Signing time: Thu 07 Aug 2025 00:00:44 +0000
Manifest this update: Thu 07 Aug 2025 00:00:44 +0000
Manifest next update: Fri 08 Aug 2025 00:00:44 +0000
Files and hashes: 1: uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl (hash: qI1EuaREEOkS02rv2HgIut7LB0PZRX7ksSmv5A5V/D4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:d4:84:03:fc:c1:41:6e:b3:19:6d:cc:dc:3e:54:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90907cee4fac50f3753622ad21a989ae7741c47
Validity
Not Before: Aug 7 00:00:44 2025 GMT
Not After : Aug 8 00:00:44 2025 GMT
Subject: CN=4bff9bfb12dba897a1e6069a10974ff4ca1850be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:af:6e:75:d6:74:1a:10:17:64:4a:03:f4:43:
fb:43:9e:6e:c9:82:d8:ce:6c:3d:04:b9:a3:7b:7c:
c6:f8:45:a6:ae:be:81:e2:85:f4:6e:c2:ab:cf:ae:
19:61:e6:34:c3:a6:9e:7c:64:99:8d:12:f2:84:5b:
a6:1d:75:a9:99:d4:54:97:a8:a4:ef:fe:37:79:98:
de:a8:79:be:75:0a:15:f9:58:c1:49:05:5d:ac:88:
09:ff:64:1e:53:3a:c0:26:b0:03:25:f3:f9:a7:63:
a7:ee:a0:05:ad:58:31:c9:f5:a7:5e:2b:61:9a:d2:
1a:b8:65:bd:9c:3c:54:d4:5a:3a:d7:61:c9:7e:40:
d7:6f:b1:89:36:0c:42:92:54:02:0a:5c:b6:e4:3b:
ae:d1:09:e4:c6:ee:39:9c:b2:f5:39:5f:d5:dc:91:
f8:ed:ba:0d:40:8d:18:3a:a1:a1:84:bb:e2:7c:b0:
6b:8e:b9:df:69:16:8e:b2:65:b5:12:23:21:1a:9a:
f2:f7:29:53:47:c0:3a:08:ef:9b:1b:1a:5e:51:82:
ac:45:92:0d:6c:c4:ed:ea:15:89:f1:f3:00:55:f6:
70:3f:52:76:76:f3:8a:57:b8:4a:63:a2:10:5e:95:
5e:96:a5:47:f3:52:34:db:c7:7c:d3:45:64:06:73:
4b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:FF:9B:FB:12:DB:A8:97:A1:E6:06:9A:10:97:4F:F4:CA:18:50:BE
X509v3 Authority Key Identifier:
keyid:B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:57:61:0e:21:6d:b6:c2:81:e1:57:98:24:b5:02:a5:a9:37:
c2:48:9c:1b:6f:c9:8b:f4:1c:04:bf:6e:77:a5:7f:7a:54:30:
3b:4b:3f:9d:53:d6:4a:54:3d:57:bc:fe:27:32:96:8a:75:c0:
05:96:c1:09:a0:38:22:9e:3e:d1:72:11:13:c3:74:cc:99:ea:
35:e8:c6:9f:aa:e5:ca:b3:42:82:cc:00:b1:53:4b:70:c7:71:
e2:fb:18:f8:be:08:e0:99:51:6d:fa:af:fa:48:07:02:21:9f:
6d:18:fd:c3:d5:f0:07:b1:4d:44:3f:15:ef:36:e5:5f:ac:b7:
7f:70:0a:41:13:c9:58:eb:cc:8f:f7:3f:66:e1:46:a9:d6:df:
46:15:50:de:ec:28:1a:20:b6:5f:88:65:cb:cc:1d:1f:94:5c:
47:09:61:c7:e2:16:16:02:ed:bb:0e:96:de:94:24:3b:65:07:
7b:36:f6:d9:cc:a3:35:71:28:1f:14:8d:05:78:e1:d3:4e:d9:
07:26:37:77:02:15:c3:a8:82:2f:52:5e:e1:0b:f0:bf:d4:4a:
03:7b:63:ca:09:24:2a:aa:a7:d9:50:45:5f:c4:54:5b:16:e6:
dc:2d:7a:f7:22:7d:9c:8d:a8:a4:b3:af:7f:90:7a:a4:14:6c:
e7:95:39:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiB1IQD/MFBbrMZbczcPlSoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5MDkwN2NlZTRmYWM1MGYzNzUzNjIyYWQyMWE5ODlhZTc3
NDFjNDcwHhcNMjUwODA3MDAwMDQ0WhcNMjUwODA4MDAwMDQ0WjAzMTEwLwYDVQQD
Eyg0YmZmOWJmYjEyZGJhODk3YTFlNjA2OWExMDk3NGZmNGNhMTg1MGJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA369uddZ0GhAXZEoD9EP7Q55uyYLY
zmw9BLmje3zG+EWmrr6B4oX0bsKrz64ZYeY0w6aefGSZjRLyhFumHXWpmdRUl6ik
7/43eZjeqHm+dQoV+VjBSQVdrIgJ/2QeUzrAJrADJfP5p2On7qAFrVgxyfWnXith
mtIauGW9nDxU1Fo612HJfkDXb7GJNgxCklQCCly25Duu0Qnkxu45nLL1OV/V3JH4
7boNQI0YOqGhhLvifLBrjrnfaRaOsmW1EiMhGpry9ylTR8A6CO+bGxpeUYKsRZIN
bMTt6hWJ8fMAVfZwP1J2dvOKV7hKY6IQXpVelqVH81I028d800VkBnNLUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEv/m/sS26iXoeYGmhCXT/TKGFC+MB8GA1UdIwQY
MBaAFLkJB87k+sUPN1NiKtIamJrndBxHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zYzE2ZDItZDI5MC00N2ZiLTkxMWQt
NTk5NmNhZTlkMTE1LzEvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC8zYzE2ZDItZDI5MC00N2ZiLTkxMWQtNTk5NmNhZTlkMTE1
LzEvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ1dhDiFt
tsKB4VeYJLUCpak3wkicG2/Ji/QcBL9ud6V/elQwO0s/nVPWSlQ9V7z+JzKWinXA
BZbBCaA4Ip4+0XIRE8N0zJnqNejGn6rlyrNCgswAsVNLcMdx4vsY+L4I4JlRbfqv
+kgHAiGfbRj9w9XwB7FNRD8V7zblX6y3f3AKQRPJWOvMj/c/ZuFGqdbfRhVQ3uwo
GiC2X4hly8wdH5RcRwlhx+IWFgLtuw6W3pQkO2UHezb22cyjNXEoHxSNBXjh007Z
ByY3dwIVw6iCL1Je4Qvwv9RKA3tjygkkKqqn2VBFX8RUWxbm3C169yJ9nI2opLOv
f5B6pBRs55U5uw==
-----END CERTIFICATE-----
Generated at Thu Aug 7 04:03:52 2025 by rpki-client