Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json)
Hash identifier: 6r/ibt/FvuMwkdCH8JmRQOGIom8tEiAyZaAhW/x7wkw=
Subject key identifier: 1E:51:8F:57:92:37:1A:E6:51:2A:B3:42:D9:DA:18:66:87:14:D8:E4
Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c
Certificate serial: 019A0222DF89077F68373D7293E8606E1C69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
Manifest number: 04B7
Signing time: Mon 20 Oct 2025 15:00:31 +0000
Manifest this update: Mon 20 Oct 2025 15:00:31 +0000
Manifest next update: Tue 21 Oct 2025 15:00:31 +0000
Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: 8lKoZWhsXuArDt9ivsSNNPdzExXZiSYm58/t8fKTlQ8=)
2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:22:df:89:07:7f:68:37:3d:72:93:e8:60:6e:1c:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c
Validity
Not Before: Oct 20 15:00:31 2025 GMT
Not After : Oct 21 15:00:31 2025 GMT
Subject: CN=1e518f5792371ae6512ab342d9da18668714d8e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f3:76:36:05:31:fc:d0:11:82:f1:29:ca:05:
a7:66:d6:8f:68:93:5f:02:d6:f2:5d:36:14:d9:39:
93:78:84:57:20:41:03:f9:42:0d:a9:20:ed:36:65:
81:f5:a8:e0:ef:6a:fe:88:69:3f:80:63:a2:f2:18:
0d:b2:0f:fe:bd:3a:61:65:dc:51:c2:6a:8b:15:98:
cb:6e:9b:b5:7c:91:00:8e:4a:f2:e7:03:a2:68:49:
ac:9f:49:34:fa:5a:f9:a4:96:07:47:1f:7f:df:e1:
35:79:6a:80:08:15:3f:fe:66:76:33:2e:25:85:32:
b5:ef:6a:ca:31:af:af:20:e3:40:b4:b0:9d:ea:9b:
1f:d6:b3:37:76:00:2b:7a:e6:c8:a3:06:6d:86:0a:
a1:74:5b:80:55:ed:fe:75:d7:e2:c5:a9:2d:9e:17:
46:61:7c:a1:c3:c1:3d:52:1a:0b:ac:e4:f7:0d:ab:
44:7b:c0:d3:47:77:e7:0a:f0:ac:40:d1:be:a0:78:
26:95:8a:4e:de:fe:e1:74:c5:d9:55:6b:b1:90:ed:
23:27:d0:a0:53:de:19:4e:68:24:32:1e:24:c8:69:
05:02:fc:9f:48:21:3b:bf:44:4c:48:a4:09:2c:37:
25:61:a4:e1:d2:44:e3:9d:6f:79:85:9e:83:81:87:
da:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:51:8F:57:92:37:1A:E6:51:2A:B3:42:D9:DA:18:66:87:14:D8:E4
X509v3 Authority Key Identifier:
keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:ba:8e:86:6c:a9:89:50:9d:57:8e:f9:ad:a7:f3:85:50:37:
58:6b:ba:e4:3f:a1:58:e6:1e:ae:39:45:69:5c:67:19:d5:7f:
f8:ef:c6:c8:ab:96:8b:5d:3b:ca:fa:c0:4b:ee:34:0c:b2:aa:
f8:70:89:2e:83:ce:04:0e:03:7b:d5:82:7e:02:ef:66:4d:3c:
b1:da:8e:96:1b:cc:69:4c:e1:ef:7f:14:d1:8f:ff:97:a8:24:
33:8b:50:bc:31:df:91:36:43:f3:4f:01:cc:8b:37:03:11:b1:
ad:a7:aa:e8:99:84:2d:f0:11:de:7f:43:db:9c:a0:3d:b7:ff:
c4:6d:f5:16:5a:ec:9f:af:e2:e2:a2:5e:53:bc:ae:e4:98:08:
8d:30:bc:9d:0e:0e:e1:26:36:e5:c2:e8:9b:19:78:d4:ec:9b:
cd:3c:19:98:80:df:b3:59:27:96:16:34:56:a5:dd:31:64:f9:
d6:22:7b:8a:e3:fc:8b:7c:b7:d1:67:1d:2d:1e:9e:4d:ca:49:
b9:f6:fb:bc:fa:ff:98:83:84:4f:78:a6:90:58:84:e9:f2:dd:
c7:1b:33:86:ba:e8:81:d4:03:15:9e:8c:ad:cd:b8:d1:f5:be:
8e:8a:13:85:bc:81:64:e7:de:cb:ae:4b:58:a2:69:c9:a6:a9:
78:4e:45:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:55:41 2025 by rpki-client