Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
File: UztG46ndW36oqL_aL247rRVQkRM.mft (raw, json)
Hash identifier: 2Ra35D+5pA7knTs7RzgarcH6g2WbwIij4GINSaxczlA=
Subject key identifier: E2:04:2B:2E:8D:01:13:42:A3:00:51:A6:85:F8:06:15:05:AC:D5:60
Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Certificate serial: 019777C1901512D06A06BF31721481ADB376
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
Manifest number: 1595
Signing time: Mon 16 Jun 2025 08:01:03 +0000
Manifest this update: Mon 16 Jun 2025 08:01:03 +0000
Manifest next update: Tue 17 Jun 2025 08:01:03 +0000
Files and hashes: 1: 8xMxjtO-k2WYJj5fJmeVkGV5YA4.roa (hash: h2/dulkFhykUkX0igL56x6SI1vv2NsPZ43/9G+3BAxs=)
2: UztG46ndW36oqL_aL247rRVQkRM.crl (hash: w9nBWBPJbqpiO3IMgE9yJF79kaEakPNrZ7Zts7m46LE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:c1:90:15:12:d0:6a:06:bf:31:72:14:81:ad:b3:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Validity
Not Before: Jun 16 08:01:03 2025 GMT
Not After : Jun 17 08:01:03 2025 GMT
Subject: CN=e2042b2e8d011342a30051a685f8061505acd560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4c:38:2e:c1:ca:0e:1b:84:d0:ec:61:5e:23:
80:14:1d:3e:60:92:35:ca:5a:3f:bb:cc:64:37:e7:
11:8f:bb:e2:ef:71:87:c0:08:4e:51:4b:d0:1c:86:
96:ae:8c:7a:a2:0e:fd:f1:ca:27:cd:d5:d6:1c:9c:
8f:11:7e:6a:3d:04:ee:7a:72:69:07:1f:bb:87:a0:
c6:ff:f9:75:a3:58:8c:1e:5f:3f:26:0f:8e:dd:c7:
92:e4:43:51:e6:9f:89:bb:cc:ec:e6:e3:88:6e:05:
53:fe:51:10:6b:cd:14:fb:4e:a4:fd:b2:f2:8c:fe:
d0:5a:af:21:dc:93:9c:d3:75:f3:52:50:2e:33:c4:
68:78:d5:02:92:c5:4a:60:ca:b2:1c:a4:3b:6f:b0:
06:23:47:45:4a:9f:5a:1d:40:de:57:be:98:14:7c:
a6:98:14:64:e9:f9:fc:84:48:0e:7c:a8:7f:31:c0:
8f:40:5b:b9:e6:65:53:24:54:77:b0:75:3a:21:5b:
a7:1d:db:2c:9c:4d:85:5c:79:ab:82:5c:5a:24:61:
30:82:2c:e6:d9:e8:87:74:f6:f3:eb:fd:61:75:3e:
93:42:3d:d7:c2:d8:2b:6d:84:0f:47:01:3e:94:e0:
40:7a:83:42:a9:f0:53:d0:93:8c:aa:f2:87:95:01:
ac:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:04:2B:2E:8D:01:13:42:A3:00:51:A6:85:F8:06:15:05:AC:D5:60
X509v3 Authority Key Identifier:
keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:2e:fa:0c:c9:09:cd:66:24:88:35:08:bc:a6:e0:17:89:e7:
1a:30:c4:4f:77:4d:b9:34:88:88:ea:f4:60:ad:38:6e:52:1e:
41:d4:ac:1a:eb:d9:bc:21:12:a6:ac:97:cb:f5:91:bd:85:79:
a8:48:27:f8:ef:e9:30:e1:fc:92:93:00:1a:bb:08:51:e2:37:
f8:3f:36:21:ff:4c:24:9f:c6:2a:12:c3:61:eb:eb:20:11:1a:
c7:b3:92:44:35:74:4e:d2:ae:25:f0:5c:3d:91:d2:8f:07:b0:
54:20:8e:7a:72:c0:fb:a4:dc:5a:90:65:e4:e6:f1:ee:75:7b:
33:89:98:14:27:81:0f:6f:65:b8:c8:f2:58:8d:ff:02:f2:1f:
04:d7:dc:8e:3e:85:f6:43:f2:0d:1f:6d:7d:d9:59:cc:61:8a:
fd:1d:bd:59:6c:44:7e:02:f2:df:64:a5:92:62:ef:e4:29:5a:
f1:a3:2c:7a:4a:76:d0:34:91:dc:b3:75:76:0e:db:d7:3e:04:
00:56:ac:8b:6a:6a:c7:aa:9d:c9:d5:00:2d:59:33:f2:51:34:
f9:b7:39:73:8a:20:31:01:ff:b2:a3:1e:4f:a4:1a:51:a4:93:
4c:fa:a3:00:99:b5:e6:5e:62:36:bd:39:d9:80:36:b8:59:33:
38:68:03:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd3wZAVEtBqBr8xchSBrbN2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzM2I0NmUzYTlkZDViN2VhOGE4YmZkYTJmNmUzYmFkMTU1
MDkxMTMwHhcNMjUwNjE2MDgwMTAzWhcNMjUwNjE3MDgwMTAzWjAzMTEwLwYDVQQD
EyhlMjA0MmIyZThkMDExMzQyYTMwMDUxYTY4NWY4MDYxNTA1YWNkNTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm0w4LsHKDhuE0OxhXiOAFB0+YJI1
ylo/u8xkN+cRj7vi73GHwAhOUUvQHIaWrox6og798conzdXWHJyPEX5qPQTuenJp
Bx+7h6DG//l1o1iMHl8/Jg+O3ceS5ENR5p+Ju8zs5uOIbgVT/lEQa80U+06k/bLy
jP7QWq8h3JOc03XzUlAuM8RoeNUCksVKYMqyHKQ7b7AGI0dFSp9aHUDeV76YFHym
mBRk6fn8hEgOfKh/McCPQFu55mVTJFR3sHU6IVunHdssnE2FXHmrglxaJGEwgizm
2eiHdPbz6/1hdT6TQj3XwtgrbYQPRwE+lOBAeoNCqfBT0JOMqvKHlQGsSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIEKy6NARNCowBRpoX4BhUFrNVgMB8GA1UdIwQY
MBaAFFM7RuOp3Vt+qKi/2i9uO60VUJETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9mNTBlMmQtZTQwMC00NGYxLTg4MzIt
ZTI2OTYwYmYzNGU1LzEvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS9mNTBlMmQtZTQwMC00NGYxLTg4MzItZTI2OTYwYmYzNGU1
LzEvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABi76DMkJ
zWYkiDUIvKbgF4nnGjDET3dNuTSIiOr0YK04blIeQdSsGuvZvCESpqyXy/WRvYV5
qEgn+O/pMOH8kpMAGrsIUeI3+D82If9MJJ/GKhLDYevrIBEax7OSRDV0TtKuJfBc
PZHSjwewVCCOenLA+6TcWpBl5Obx7nV7M4mYFCeBD29luMjyWI3/AvIfBNfcjj6F
9kPyDR9tfdlZzGGK/R29WWxEfgLy32SlkmLv5Cla8aMsekp20DSR3LN1dg7b1z4E
AFasi2pqx6qdydUALVkz8lE0+bc5c4ogMQH/sqMeT6QaUaSTTPqjAJm15l5iNr05
2YA2uFkzOGgDHg==
-----END CERTIFICATE-----
Generated at Mon Jun 16 13:30:35 2025 by rpki-client