Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
File: UOpay0R7LOuTKgPykAgtx2-OQOM.mft (raw, json)
Hash identifier: sEg/krWRqs56btG7mEtWXGZeGYeVWCFSUTK0T26bVQo=
Subject key identifier: D5:17:B8:47:0D:8A:E3:B6:C7:3D:92:87:10:09:DE:D6:7D:8F:01:56
Authority key identifier: 50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
Certificate issuer: /CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Certificate serial: 019939B8BE676931370D96439B5EE6BD9C2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
Manifest number: 167D
Signing time: Thu 11 Sep 2025 17:00:32 +0000
Manifest this update: Thu 11 Sep 2025 17:00:32 +0000
Manifest next update: Fri 12 Sep 2025 17:00:32 +0000
Files and hashes: 1: UOpay0R7LOuTKgPykAgtx2-OQOM.crl (hash: 6BJEcsMZPkR+LW0EpV4br1/ZE3Qjby+C0uPAq9wo0aQ=)
2: UPs4nn0eBay_fIEXwzFrziOGHlg.roa (hash: n1rQX2er8ehY5mv/Oe6cZ3YcfGOcUxMxZAxeUBrIysk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 14:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:39:b8:be:67:69:31:37:0d:96:43:9b:5e:e6:bd:9c:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Validity
Not Before: Sep 11 17:00:32 2025 GMT
Not After : Sep 12 17:00:32 2025 GMT
Subject: CN=d517b8470d8ae3b6c73d92871009ded67d8f0156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:21:01:0c:91:a5:4a:3d:1d:d2:31:e0:f3:0e:
c8:e1:8e:54:4d:9b:cb:5e:0b:a4:c2:d6:64:77:89:
2f:3b:c1:10:89:35:d5:71:03:b3:41:c2:f5:38:96:
6d:1d:95:ca:51:e8:ef:2c:ff:cb:de:85:f9:78:30:
77:72:f4:e5:cf:e3:a6:44:d6:c8:e1:97:49:de:34:
19:c7:d7:c9:1f:d2:76:f0:e3:aa:1a:7f:fd:03:46:
a6:b0:2c:b7:1e:e4:0c:ac:b2:ad:a7:1c:8e:f1:5f:
cb:22:e9:39:c7:66:6e:a9:27:b1:cf:5d:c4:af:11:
87:f3:d3:bf:56:4d:c5:16:40:7e:ff:22:93:8b:56:
c6:cd:dc:99:3f:65:c5:1b:87:cb:c4:35:11:76:1e:
0b:67:77:29:54:fc:6e:bd:a7:d2:d5:ea:de:a7:ae:
1e:92:51:dc:5d:37:a0:b4:6f:b7:c9:10:85:e9:96:
2e:d1:30:f0:5b:af:a3:e6:88:4f:88:ab:f1:2d:46:
8d:15:2b:6b:1f:3e:b7:cd:de:ad:7a:ae:de:3a:6c:
7b:47:bf:48:58:2c:9d:b6:3d:0f:3b:4e:85:f2:4b:
94:e1:a3:b4:59:5f:67:71:0b:b9:eb:a4:6f:93:18:
81:53:6f:ca:dd:04:7a:66:46:d5:8d:ef:52:24:b5:
d8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:17:B8:47:0D:8A:E3:B6:C7:3D:92:87:10:09:DE:D6:7D:8F:01:56
X509v3 Authority Key Identifier:
keyid:50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:a1:25:cd:f3:a0:64:c4:0d:5f:d3:4c:5b:7e:dc:1e:29:d0:
4c:84:1d:e2:44:e6:b8:0a:bd:6e:4d:fa:d0:7a:ac:e3:9b:ff:
91:4d:1b:56:aa:28:ea:23:2c:93:9a:47:b6:82:09:4b:d3:8f:
e6:4f:54:e9:54:99:08:88:23:6c:19:eb:5e:55:98:e3:b2:ce:
6e:52:e4:15:20:40:13:94:fe:4c:f1:9e:c6:b7:b2:ad:09:ce:
3d:63:13:77:50:1c:14:db:9b:c4:92:95:f2:e4:9d:9e:14:c2:
fc:aa:f4:53:5c:5e:12:f4:58:9a:1f:77:db:0a:3c:92:f1:3a:
60:79:e7:99:8e:b4:46:ec:e5:56:63:54:64:d8:0a:a1:7d:91:
fa:3b:39:c6:a7:1a:0c:8b:e6:8c:92:11:f2:b8:c3:15:80:a2:
c1:1d:fa:28:d5:c3:d6:36:64:be:da:00:23:19:f6:15:3c:2f:
53:3c:7b:a3:90:1d:5f:dc:fc:7a:91:08:3b:5a:a5:9a:91:35:
cf:01:fa:f9:06:84:8f:f0:f3:4e:c5:f1:f4:1c:73:ad:dc:a5:
e2:c5:a7:07:a5:55:5a:fe:52:c6:3f:37:15:59:78:52:48:b7:
a6:af:34:09:1e:4a:d4:2a:88:bf:0b:dc:b8:a9:9b:1d:80:18:
f1:93:9e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 18:53:24 2025 by rpki-client