Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
File: uqI_dArVZMVpO3cJHHGzwDE2pYA.mft (raw, json)
Hash identifier: aCk7iqBtvilMKzcZk9SrGaa+9oJXVQS5wUvA0ZiNGXE=
Subject key identifier: 71:D0:1B:AF:7E:8B:20:08:6E:99:2A:95:0B:70:36:5F:11:AC:93:ED
Authority key identifier: BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
Certificate issuer: /CN=baa23f740ad564c5693b77091c71b3c03136a580
Certificate serial: 0198511FB393AB161BF9C2C629BDE7ABEE31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
Manifest number: 0A7D
Signing time: Mon 28 Jul 2025 13:01:28 +0000
Manifest this update: Mon 28 Jul 2025 13:01:28 +0000
Manifest next update: Tue 29 Jul 2025 13:01:28 +0000
Files and hashes: 1: gQl4YCr829YOGRu3QQEM_8QNnRo.roa (hash: 468s9eqjwKzKxWWYEkQfsVXrMKlrp7YiLVsT2AanKV4=)
2: uqI_dArVZMVpO3cJHHGzwDE2pYA.crl (hash: 7Co073Kwjfuy0+NwZw9QkUBHtu2y/8WbdSIQtJerx5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 13:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:51:1f:b3:93:ab:16:1b:f9:c2:c6:29:bd:e7:ab:ee:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa23f740ad564c5693b77091c71b3c03136a580
Validity
Not Before: Jul 28 13:01:28 2025 GMT
Not After : Jul 29 13:01:28 2025 GMT
Subject: CN=71d01baf7e8b20086e992a950b70365f11ac93ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e3:52:77:3c:fe:41:d3:fa:ff:f8:34:e2:d1:
62:82:68:3b:55:cb:ca:30:a7:8c:89:63:4e:4a:b8:
79:26:05:57:ab:a6:80:ae:ad:f7:6e:5b:3a:d3:c3:
de:f5:10:c4:61:56:a1:48:b2:3e:17:84:10:0a:35:
66:4a:59:15:30:eb:de:47:1a:db:71:7d:77:bd:3b:
0a:c3:98:13:35:76:96:c3:5b:b4:b2:12:da:18:e8:
24:8e:71:30:42:d7:fd:ac:3e:8f:13:e0:2b:2c:6a:
6c:55:40:39:6f:dd:78:30:b5:c2:ab:a0:42:5a:0e:
91:e7:9e:6c:bf:99:74:ae:8e:eb:68:7f:60:d2:c9:
bd:45:d3:7f:96:2b:f8:84:d6:fa:59:4f:f8:48:22:
ee:27:5f:ea:6f:40:11:04:16:ce:22:37:0e:b1:bd:
11:53:a1:cc:82:c2:d7:0b:61:c4:54:54:e1:0f:87:
7f:04:9c:0c:18:a5:44:59:5f:36:cc:1d:2d:4d:75:
02:30:f8:93:35:fa:ea:57:35:9c:18:17:a1:38:55:
91:1b:be:a6:54:39:e5:f4:fd:1e:ae:df:11:54:67:
c3:ef:82:f9:5b:d7:81:d7:04:40:76:77:64:1f:60:
a2:a3:a7:7b:8a:83:2d:90:61:56:c1:57:89:13:89:
a7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D0:1B:AF:7E:8B:20:08:6E:99:2A:95:0B:70:36:5F:11:AC:93:ED
X509v3 Authority Key Identifier:
keyid:BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:4c:b3:f0:4b:44:b9:3b:fc:19:7c:65:3d:03:83:02:93:d8:
1d:ad:06:aa:ed:a4:28:b1:68:8b:66:5c:d5:a6:6f:51:f0:8c:
fd:b0:5d:cf:b4:87:da:ca:72:77:b7:e0:43:86:5c:e4:5f:56:
91:80:71:ae:45:de:2c:c5:f2:4e:c2:82:e0:16:fa:06:d1:18:
4c:06:44:f1:9b:3d:cf:df:20:4a:78:30:89:36:22:2b:33:45:
09:88:53:06:8b:63:f7:de:2c:c0:e6:59:20:0e:c5:5c:30:81:
40:4c:2c:77:b6:d2:ce:16:d0:38:8d:ae:7e:09:a2:c5:d8:ab:
1c:70:ad:e1:72:ee:c5:73:1f:34:2c:25:14:d3:54:7a:cd:89:
86:19:f9:2f:6e:3d:a9:5a:40:33:b7:0a:6a:f1:f6:4a:51:b3:
db:f0:a5:19:59:e3:61:4b:92:25:3e:b8:e6:a5:da:71:31:e7:
38:5d:c4:d7:cd:b1:e8:37:a2:b3:bb:2e:0e:f0:af:e5:39:26:
71:e1:4b:02:b0:89:86:2f:ad:c9:a2:56:a7:1b:bc:26:59:dc:
95:ec:c3:45:2b:e7:4d:3f:57:0c:aa:4e:0c:b1:07:4f:ac:a4:
de:44:17:9d:2d:7b:d5:ad:e5:58:5d:8b:0a:5b:d8:66:2d:30:
4a:15:1f:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhRH7OTqxYb+cLGKb3nq+4xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhYTIzZjc0MGFkNTY0YzU2OTNiNzcwOTFjNzFiM2MwMzEz
NmE1ODAwHhcNMjUwNzI4MTMwMTI4WhcNMjUwNzI5MTMwMTI4WjAzMTEwLwYDVQQD
Eyg3MWQwMWJhZjdlOGIyMDA4NmU5OTJhOTUwYjcwMzY1ZjExYWM5M2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjeNSdzz+QdP6//g04tFigmg7VcvK
MKeMiWNOSrh5JgVXq6aArq33bls608Pe9RDEYVahSLI+F4QQCjVmSlkVMOveRxrb
cX13vTsKw5gTNXaWw1u0shLaGOgkjnEwQtf9rD6PE+ArLGpsVUA5b914MLXCq6BC
Wg6R555sv5l0ro7raH9g0sm9RdN/liv4hNb6WU/4SCLuJ1/qb0ARBBbOIjcOsb0R
U6HMgsLXC2HEVFThD4d/BJwMGKVEWV82zB0tTXUCMPiTNfrqVzWcGBehOFWRG76m
VDnl9P0ert8RVGfD74L5W9eB1wRAdndkH2Cio6d7ioMtkGFWwVeJE4mnXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHHQG69+iyAIbpkqlQtwNl8RrJPtMB8GA1UdIwQY
MBaAFLqiP3QK1WTFaTt3CRxxs8AxNqWAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXFJX2RBclZaTVZwTzNjSkhIR3p3REUycFlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi84YzA5YjMtZjZkOC00YzlhLTk2NGMt
ODUyN2M5YjNlNzVmLzEvdXFJX2RBclZaTVZwTzNjSkhIR3p3REUycFlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi84YzA5YjMtZjZkOC00YzlhLTk2NGMtODUyN2M5YjNlNzVm
LzEvdXFJX2RBclZaTVZwTzNjSkhIR3p3REUycFlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvUyz8EtE
uTv8GXxlPQODApPYHa0Gqu2kKLFoi2Zc1aZvUfCM/bBdz7SH2spyd7fgQ4Zc5F9W
kYBxrkXeLMXyTsKC4Bb6BtEYTAZE8Zs9z98gSngwiTYiKzNFCYhTBotj994swOZZ
IA7FXDCBQEwsd7bSzhbQOI2ufgmixdirHHCt4XLuxXMfNCwlFNNUes2Jhhn5L249
qVpAM7cKavH2SlGz2/ClGVnjYUuSJT645qXacTHnOF3E182x6Deis7suDvCv5Tkm
ceFLArCJhi+tyaJWpxu8JlnclezDRSvnTT9XDKpODLEHT6yk3kQXnS171a3lWF2L
ClvYZi0wShUflg==
-----END CERTIFICATE-----
Generated at Mon Jul 28 17:33:25 2025 by rpki-client