Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
File: UztG46ndW36oqL_aL247rRVQkRM.mft (raw, json)
Hash identifier: KeavpRdtZNm0WE9tKa5tH2msRJZsdaymlKloR9Xo1oc=
Subject key identifier: A8:99:90:BA:0A:7D:A9:3C:E2:1D:56:94:2E:E9:4E:BA:A9:91:AE:62
Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Certificate serial: 01988FC732CEA6AC279157465D7C3E3F5031
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
Manifest number: 1626
Signing time: Sat 09 Aug 2025 17:00:53 +0000
Manifest this update: Sat 09 Aug 2025 17:00:53 +0000
Manifest next update: Sun 10 Aug 2025 17:00:53 +0000
Files and hashes: 1: 8xMxjtO-k2WYJj5fJmeVkGV5YA4.roa (hash: h2/dulkFhykUkX0igL56x6SI1vv2NsPZ43/9G+3BAxs=)
2: UztG46ndW36oqL_aL247rRVQkRM.crl (hash: eQm2U1dLunWZ/qjJE/LEEoiOIDx9mwkmfeW7BWQE9Vc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:c7:32:ce:a6:ac:27:91:57:46:5d:7c:3e:3f:50:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113
Validity
Not Before: Aug 9 17:00:53 2025 GMT
Not After : Aug 10 17:00:53 2025 GMT
Subject: CN=a89990ba0a7da93ce21d56942ee94ebaa991ae62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:75:72:4d:dc:89:8d:d0:40:1a:e3:96:c0:6c:
92:a9:fb:54:e2:c2:9c:8a:54:3a:4a:17:a9:91:54:
5f:ce:89:57:38:f3:c4:41:f1:b7:5f:1f:30:20:d3:
c0:d5:5a:57:ac:e5:36:a9:43:be:e2:21:56:11:94:
3b:a0:b6:4d:1e:9d:f4:8f:55:a5:b0:ff:bf:9e:92:
5f:db:8b:cc:fc:c5:f5:4f:a3:6a:06:eb:61:7d:ee:
40:0d:73:54:36:8f:a2:18:39:1c:54:83:ab:6d:8d:
62:01:96:46:64:67:17:17:0b:32:6e:26:54:76:a7:
44:d5:9c:cd:72:4a:47:23:b2:15:75:5b:ef:7a:5b:
58:12:15:f8:18:6a:fe:9c:1d:b5:e4:91:73:64:34:
3d:c3:34:a5:e9:60:54:ae:3b:57:0e:0f:45:ce:3b:
59:bb:cd:80:f7:9c:d0:ef:e2:ef:4d:bf:19:42:a0:
0f:84:25:90:54:10:8c:bf:87:fd:8a:af:28:ef:30:
c1:03:e2:1d:3b:a7:6b:b9:d0:a0:82:2f:3e:b3:3e:
67:ac:2f:e5:f7:09:a3:66:91:e4:d5:79:5c:4c:ad:
77:0c:58:91:eb:31:80:50:f2:4c:66:39:94:91:c7:
42:5e:06:51:ed:62:cd:22:0f:57:df:55:c9:e0:9a:
5e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:99:90:BA:0A:7D:A9:3C:E2:1D:56:94:2E:E9:4E:BA:A9:91:AE:62
X509v3 Authority Key Identifier:
keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:b0:9f:9a:8a:5f:f8:7e:69:ab:ec:bb:c4:b9:29:64:36:d3:
34:1d:5c:78:fd:24:77:fe:53:06:87:42:95:5c:63:a7:ed:35:
e7:8c:29:92:bc:65:31:c9:5f:19:9a:03:a2:3d:59:71:6c:55:
71:1e:12:05:12:df:b3:fd:4a:5d:35:e2:80:63:2c:cc:5a:0f:
d4:e7:26:00:e5:63:dc:d8:71:c3:03:41:07:06:32:1e:dd:8f:
a2:88:7f:9c:83:dd:90:11:99:ee:dc:b7:81:ab:77:99:1b:ff:
f6:f3:52:0a:af:f2:2a:1b:50:b3:56:6b:a0:4e:15:ad:69:50:
d0:ec:5f:5b:5d:df:c0:d5:9f:34:56:e0:43:e4:15:d5:e8:c5:
3f:ed:b1:ec:3f:ab:3d:6d:23:54:a0:fe:9d:da:24:14:73:22:
14:3a:d3:4c:5a:5e:45:77:c6:d2:3e:db:93:c4:f2:21:79:03:
12:ad:13:2a:b7:22:ca:f2:70:67:07:2e:81:ea:ec:4f:c5:00:
85:f5:70:c8:f5:95:48:af:4c:9b:70:cf:28:1d:cc:e9:34:16:
4c:43:7e:5b:32:db:f0:6e:e4:67:c6:01:e3:17:49:e0:5c:5b:
19:2b:61:2f:49:34:9a:0b:21:55:54:06:4e:fa:65:33:08:dc:
30:cb:97:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 22:43:03 2025 by rpki-client