Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
File: UTIqxJAgylfHTzsUi8BBAsq63IM.mft (raw, json)
Hash identifier: YGJpyA7EKvd9Hdwf6zExcheOF6Wne5+oTMkT+OUj5QI=
Subject key identifier: E6:0B:7F:60:82:5C:19:BF:77:39:E4:74:4A:10:B9:45:2E:FE:8C:8B
Authority key identifier: 51:32:2A:C4:90:20:CA:57:C7:4F:3B:14:8B:C0:41:02:CA:BA:DC:83
Certificate issuer: /CN=51322ac49020ca57c74f3b148bc04102cabadc83
Certificate serial: 019A7112EACE571BD55B6EF9B815053FECEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
Manifest number: 11FA
Signing time: Tue 11 Nov 2025 04:00:56 +0000
Manifest this update: Tue 11 Nov 2025 04:00:56 +0000
Manifest next update: Wed 12 Nov 2025 04:00:56 +0000
Files and hashes: 1: UTIqxJAgylfHTzsUi8BBAsq63IM.crl (hash: A3+XPtIfzHkbPYyUblvsjNIbghLb22A9GlVd+QBa9ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:ea:ce:57:1b:d5:5b:6e:f9:b8:15:05:3f:ec:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51322ac49020ca57c74f3b148bc04102cabadc83
Validity
Not Before: Nov 11 04:00:56 2025 GMT
Not After : Nov 12 04:00:56 2025 GMT
Subject: CN=e60b7f60825c19bf7739e4744a10b9452efe8c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f2:9b:a3:02:5c:64:b4:53:b3:83:28:98:ac:
a5:13:66:fa:05:64:5a:97:66:c7:b1:09:ae:ef:49:
b4:d7:36:38:dd:d7:43:57:c4:cd:13:86:fb:6f:e3:
b7:70:d3:7d:d0:08:44:55:bc:8d:88:1b:cc:58:f3:
25:de:5f:16:63:1e:85:0e:6d:06:32:cc:bd:d4:dd:
83:ab:f0:32:dd:16:94:3c:d1:75:fb:37:d2:b2:ee:
cb:53:f4:ee:ad:72:d9:ab:eb:f0:b7:00:5f:84:64:
8b:8f:41:6f:b5:56:03:3e:5a:9d:a6:74:5c:ec:5a:
53:42:63:07:3e:ef:32:01:af:a4:09:20:f5:b1:65:
1a:54:69:26:87:d9:ef:8f:08:91:d1:e1:c1:cf:82:
83:69:eb:1b:0d:4b:76:4f:72:28:04:16:c8:82:e3:
39:f9:dc:2b:68:34:63:e3:a2:48:a8:2f:65:55:d3:
d9:19:57:ed:04:87:44:c9:06:bc:e7:5c:d0:95:20:
25:e0:f4:5e:7a:17:8e:5d:88:6d:3c:36:e7:1c:f5:
ba:fe:40:1b:fb:45:3b:5a:0b:d4:a3:ed:88:30:10:
be:df:63:08:76:c5:31:b6:de:1c:37:dd:1c:b6:dd:
52:57:41:5d:30:a1:1c:c0:2b:c2:99:f0:c4:19:28:
ef:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:0B:7F:60:82:5C:19:BF:77:39:E4:74:4A:10:B9:45:2E:FE:8C:8B
X509v3 Authority Key Identifier:
keyid:51:32:2A:C4:90:20:CA:57:C7:4F:3B:14:8B:C0:41:02:CA:BA:DC:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTIqxJAgylfHTzsUi8BBAsq63IM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f58cf3-6909-458a-a51a-5914f9d3378b/1/UTIqxJAgylfHTzsUi8BBAsq63IM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:80:9e:7f:33:6e:33:75:c9:f8:fe:99:94:51:78:0b:21:23:
cb:f2:ab:ac:c0:52:f7:ce:8b:c6:e9:33:cf:e2:77:6a:a8:b6:
f5:01:3e:80:21:9a:81:61:fc:e2:e2:6c:9f:6b:67:69:1f:aa:
7d:2b:a7:b1:3d:9b:c8:74:66:64:79:5b:e2:43:34:95:7f:3a:
4c:6d:ae:b3:64:89:9a:e3:ef:48:86:fa:91:59:53:4c:47:6b:
25:a9:39:71:4e:a4:79:e4:65:b1:9a:bb:8c:ce:76:e7:09:90:
67:ef:cf:44:f1:64:65:89:36:09:7f:02:c3:c2:a8:f4:39:7f:
1b:72:97:b2:71:25:9c:98:59:36:f3:1b:1c:5f:6b:1a:52:fb:
95:e2:69:c4:3a:f4:3f:a1:8a:38:4a:d4:a0:31:9e:aa:33:aa:
29:4a:00:e3:a9:07:d7:73:8a:fe:36:6b:43:05:c0:a2:27:57:
56:ae:4b:21:98:c8:17:a9:b6:57:3d:1a:4d:93:b4:f1:c2:0c:
38:45:3d:1b:ed:27:ff:e3:74:b6:d9:6e:9f:7c:ad:a8:ba:c2:
42:b9:5e:e1:ec:a5:71:54:83:30:9b:11:5a:c6:58:99:f2:46:
bb:e9:3c:b9:ea:3d:22:00:d7:79:3c:35:7c:8d:87:34:c2:cb:
60:49:0b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:53:28 2025 by rpki-client