Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
File: UzYQcXlxVgncpCK8B6CYRoxSlFI.mft (raw, json)
Hash identifier: 9GFiResKTooMQ9NZIrx/ZoIZUEfDyrV5qjQp6d5pMEo=
Subject key identifier: 1F:4E:F1:5B:68:F6:B7:99:15:F4:36:2C:65:2F:D3:17:67:30:F8:47
Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452
Certificate serial: 01991D65ECB4CD1EA60AA46B33DE27B60A95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
Manifest number: 167E
Signing time: Sat 06 Sep 2025 05:00:42 +0000
Manifest this update: Sat 06 Sep 2025 05:00:42 +0000
Manifest next update: Sun 07 Sep 2025 05:00:42 +0000
Files and hashes: 1: RUQaxYKvLWtplW7yHI6TR3XEkQE.roa (hash: XDQ+7CQl5GASmirk7HcC4w80DGZtYXJDshkFg3byREs=)
2: UzYQcXlxVgncpCK8B6CYRoxSlFI.crl (hash: HlXXqOcKNkijR+ZwJHuKkMH9vPHVONaizoYjEzvqq98=)
3: zFplkI-jekZ1WexKJkNCvR3gKDE.roa (hash: 1q8DoRCpAh+3qke5582Epuo/79FVU0mcOLaI7R/pGvc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1d:65:ec:b4:cd:1e:a6:0a:a4:6b:33:de:27:b6:0a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5336107179715609dca422bc07a098468c529452
Validity
Not Before: Sep 6 05:00:42 2025 GMT
Not After : Sep 7 05:00:42 2025 GMT
Subject: CN=1f4ef15b68f6b79915f4362c652fd3176730f847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2a:8c:d7:5e:20:0d:a3:86:07:dd:75:b1:f0:
94:70:8d:a1:63:03:b6:dc:05:dd:70:1a:47:64:5f:
3b:fe:0f:b9:8f:30:99:11:39:60:8e:f3:8b:a7:14:
9f:08:3c:7e:7b:cb:d2:f0:f2:c9:83:e4:3f:f2:8c:
d2:3b:fa:7d:d4:4e:71:49:96:b6:40:6e:36:ce:7e:
d4:a8:59:21:ef:76:e9:81:cd:1f:63:16:50:c8:85:
21:58:a7:6b:a6:16:ad:22:37:8c:4b:cd:54:7c:a8:
f0:85:0e:b7:ee:a3:97:be:84:ff:e7:4b:19:88:77:
63:93:80:bd:53:45:68:60:f2:4a:ca:4d:7a:d3:fa:
ab:37:0e:dc:28:92:5e:d1:e2:53:7a:3d:6e:41:9b:
81:50:8f:56:e8:6d:3d:d7:4d:bc:8f:86:ce:4c:c3:
e8:16:16:fd:fd:26:30:0a:7a:aa:cb:b7:e5:29:0d:
7c:61:c6:79:e9:dd:19:16:a5:b9:ba:e1:ea:7c:97:
32:87:d2:33:a0:16:ef:a9:97:0c:c8:cc:30:07:d5:
0c:9a:b7:2e:c0:7b:4e:8c:be:8d:a3:82:b8:f0:48:
b5:62:67:7f:07:f4:74:f1:a4:64:c4:ac:2f:ca:6f:
75:c1:17:f4:50:9a:47:33:05:e7:8a:44:9b:9a:f3:
57:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:4E:F1:5B:68:F6:B7:99:15:F4:36:2C:65:2F:D3:17:67:30:F8:47
X509v3 Authority Key Identifier:
keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:3c:27:ff:d7:39:19:e0:55:c3:70:8c:31:ed:51:91:9d:70:
f7:ae:27:ec:91:58:72:32:6a:c5:41:6c:ca:46:67:57:57:56:
98:ec:35:22:ba:4f:a8:c3:4f:c5:81:89:89:ec:37:94:56:48:
0b:95:d0:e9:f8:40:80:ca:03:a1:32:1b:c2:13:c1:6b:bd:f4:
e6:f2:0d:8a:8a:73:c7:f3:c0:36:13:17:a8:3e:58:36:27:b0:
1e:47:b4:75:48:ff:e7:71:1c:2b:a0:4b:f4:cd:ee:00:96:78:
36:9f:69:f1:55:db:e3:28:60:49:a4:75:6f:77:8f:c9:bf:38:
7b:19:3a:1e:37:2c:03:33:89:19:1e:d4:f8:e5:ed:7a:1f:a6:
73:6d:02:fc:24:ad:de:8b:32:34:11:84:40:a5:4a:a0:14:47:
23:60:a6:0e:39:2f:0a:6f:59:fb:78:1f:00:f5:8c:00:f8:cd:
11:1e:a2:1f:db:36:9f:6c:49:a9:74:bb:4b:11:d7:55:b9:86:
24:8b:40:05:92:a6:32:1c:9c:1f:21:65:39:a2:a3:f7:4e:03:
ff:a9:67:97:81:a3:03:b0:c3:92:85:dd:9f:7c:f7:40:d6:61:
fe:c9:97:3a:ea:82:41:6b:37:88:7b:95:ff:ff:b0:bc:55:ae:
75:78:b6:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 15:06:22 2025 by rpki-client