Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
File: UztG46ndW36oqL_aL247rRVQkRM.mft (raw, json)
Hash identifier: RPp/HQqK2/4cnINtIaMWrmgnlJ78mOEcNbfmDoKjGdE=
Subject key identifier: C1:F7:CF:7D:06:02:15:2D:04:23:12:C5:3D:EF:42:F2:DC:9E:44:E0
Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Certificate serial: 019A4FD076F6E28D32FC9A29114162B4F9E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 17:00:53 +0000
Manifest this update: Tue 04 Nov 2025 17:00:53 +0000
Manifest next update: Wed 05 Nov 2025 17:00:53 +0000
Files and hashes: 1: 8xMxjtO-k2WYJj5fJmeVkGV5YA4.roa (hash: h2/dulkFhykUkX0igL56x6SI1vv2NsPZ43/9G+3BAxs=)
2: UztG46ndW36oqL_aL247rRVQkRM.crl (hash: 5eGzOAilEZIUhBe4lNsCGTRRZqyjkN9I/zX424LexUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:76:f6:e2:8d:32:fc:9a:29:11:41:62:b4:f9:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Validity
Not Before: Nov 4 17:00:53 2025 GMT
Not After : Nov 5 17:00:53 2025 GMT
Subject: CN=c1f7cf7d0602152d042312c53def42f2dc9e44e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:34:c1:90:0f:00:c9:ef:cb:4a:15:b2:86:96:
02:04:d1:c3:35:9b:4a:dc:52:55:0a:9d:2c:5d:d1:
a4:c1:83:44:d1:2f:97:d6:97:d5:e9:34:16:c8:6e:
7b:c1:46:ba:5c:22:36:2a:81:a3:fb:18:8b:a5:64:
e5:cf:08:bf:f6:f7:12:ac:36:43:f3:da:c2:43:c7:
21:48:47:1a:f5:ec:32:9f:36:b9:f5:e8:b1:19:49:
62:31:80:61:e8:35:dc:46:91:fd:98:ad:44:8a:15:
f6:91:40:27:71:64:d1:e4:71:92:4c:8b:4e:12:a4:
2e:ad:e9:71:1b:b8:bf:79:bf:c3:90:27:7a:6b:2e:
a4:58:0e:59:49:f8:b8:df:ca:11:68:0f:fa:3c:08:
f7:b9:55:fb:d9:2f:9e:aa:98:6c:04:ca:b1:8e:54:
f5:ed:d5:50:20:2b:9f:ec:60:43:e1:66:07:e5:c7:
69:bd:e2:57:96:e7:1c:90:b0:7d:af:fc:50:9b:e7:
02:e0:5b:dc:10:41:ac:83:1d:22:9a:56:1e:ef:b7:
b7:b9:cd:10:e6:0f:c2:42:f1:24:98:28:06:9c:82:
b2:e5:40:08:b2:7c:be:f7:14:b3:eb:35:67:06:61:
03:ce:c6:f5:33:57:77:99:b9:44:2e:50:d2:5b:67:
63:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F7:CF:7D:06:02:15:2D:04:23:12:C5:3D:EF:42:F2:DC:9E:44:E0
X509v3 Authority Key Identifier:
keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:e4:cc:84:e5:b3:d2:fa:fa:5b:b9:93:ac:ab:6c:9c:6d:6a:
38:7b:da:75:c6:1d:1e:8f:05:8c:7d:ef:cd:1e:4a:21:63:e0:
d5:e7:13:6a:04:49:e6:3e:1b:d6:84:b9:55:1b:68:46:0e:db:
46:88:f5:0e:54:79:85:0e:a0:f8:9e:40:ba:15:ba:b7:b4:67:
93:47:44:71:ca:47:f2:ca:0e:b0:35:da:41:c8:57:7b:e7:f7:
37:63:5e:73:f0:70:9a:b1:0e:f7:52:2b:a0:1f:02:16:45:91:
f1:a2:61:15:7c:e6:f1:b7:cc:7c:39:a8:0d:1c:5b:f8:60:5c:
6d:35:e0:01:0b:8f:ae:1a:f3:91:6d:36:36:85:25:54:ac:98:
b6:30:bb:25:2f:67:68:8a:35:92:27:a6:de:f4:86:a0:da:63:
d2:b4:5a:08:74:4e:1c:be:58:a9:fc:79:d4:36:e4:a7:68:e5:
72:61:48:77:d3:77:28:6a:41:22:ef:62:2f:20:f7:72:34:08:
07:73:15:47:70:91:cf:e6:d4:4a:57:11:c3:6c:2b:d5:dd:2d:
14:44:09:ed:78:3f:12:84:39:e4:5b:00:ec:37:05:6c:aa:f0:
29:5b:66:34:6e:b8:8a:48:a3:ca:ca:35:2e:e2:b8:3a:bd:a7:
cc:35:87:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:29:27 2025 by rpki-client