Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json)
Hash identifier: gSemRwbWoXjKcFuBVkAa1QoX8WsE71hWO57M0P8Qw0U=
Subject key identifier: EF:86:89:7A:EB:C6:90:DF:0A:AE:92:A7:48:46:98:7C:C3:14:53:3D
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 019963FE70610220F021A908D8FB659D4CCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
Manifest number: 1592
Signing time: Fri 19 Sep 2025 22:00:43 +0000
Manifest this update: Fri 19 Sep 2025 22:00:43 +0000
Manifest next update: Sat 20 Sep 2025 22:00:43 +0000
Files and hashes: 1: B5jBrigaJO3-AA-t_YN4JZyKlOc.roa (hash: rGNTEj/GGFLwPvW+NfWJ0mtsiCJfkPNhKXWRWEo8b5k=)
2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: 1z9a9aRADzRyl2SFx8cnFU00KUfs2H17DKyQVYfALX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 22:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:63:fe:70:61:02:20:f0:21:a9:08:d8:fb:65:9d:4c:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: Sep 19 22:00:43 2025 GMT
Not After : Sep 20 22:00:43 2025 GMT
Subject: CN=ef86897aebc690df0aae92a74846987cc314533d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:5f:c0:c2:e3:af:f9:36:57:80:4c:4a:04:be:
e4:62:c9:0e:28:5a:7c:d2:95:43:ba:67:47:88:84:
54:1f:68:ea:eb:54:05:6d:e1:11:98:9d:a6:25:0b:
d9:8f:c5:87:fa:25:3a:78:1d:04:79:58:ba:f4:b3:
6d:c6:fd:6e:6c:1c:57:11:42:fd:24:a5:a2:08:2e:
7c:b2:52:4f:59:ef:05:42:d2:62:43:8b:9d:4d:48:
10:b3:af:5e:49:5d:36:aa:12:2f:09:96:f5:18:1c:
4e:89:71:35:6a:71:6f:5f:ba:35:cf:14:04:17:a5:
9f:76:d0:77:9a:40:2d:e8:ee:7b:1c:55:f4:48:90:
86:5c:cb:1b:e4:4e:8f:95:3e:b4:79:5c:f9:5b:e3:
00:46:57:f7:dc:4d:83:58:20:71:c8:c1:2c:be:7a:
e1:fc:69:d3:c0:7b:de:6a:a4:cf:99:c3:12:30:23:
0b:7e:06:0b:97:cd:d4:e0:e2:2b:be:cb:f9:17:50:
79:1b:da:06:de:c8:f9:b8:6c:2b:8e:05:bf:76:e6:
c0:70:8f:c6:7f:44:c0:26:06:35:b6:0b:f7:35:45:
44:3f:5f:6c:cf:3b:09:2f:f8:9c:a1:c9:ab:f5:31:
65:b7:62:b3:f3:35:46:c6:29:cd:67:33:fa:6e:b5:
b8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:86:89:7A:EB:C6:90:DF:0A:AE:92:A7:48:46:98:7C:C3:14:53:3D
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:27:42:0a:92:3d:2a:8c:61:91:40:97:7a:a9:f6:49:53:c2:
6b:b9:8c:94:a9:16:b5:d5:66:f2:68:c0:9a:23:d0:79:67:06:
2f:e7:af:5d:b8:6a:49:b1:87:0c:ef:0c:b6:f1:00:9b:60:fe:
72:f6:af:8a:de:e1:27:76:03:44:61:a1:17:c1:93:ce:85:b4:
ca:42:e0:95:7c:8f:ee:12:68:2f:33:b6:bc:95:b6:a7:33:4d:
07:db:be:44:eb:d1:55:89:e7:54:39:b3:fa:e6:27:c9:a0:99:
6d:19:0d:14:24:3b:c7:ea:25:d5:83:45:68:30:53:55:00:52:
43:18:67:15:a0:a4:2a:a2:80:4e:80:36:23:bc:2d:a5:81:20:
e5:6a:19:75:4a:ad:29:91:9f:46:4a:16:4e:e4:28:17:30:47:
b1:96:d7:8b:be:38:d6:3c:98:92:ac:ae:fc:12:99:4b:b1:e3:
21:81:49:94:e2:08:d1:08:bd:1e:7c:24:14:50:a5:89:16:a5:
89:0b:c1:f7:5c:c5:67:77:73:b6:97:b9:e8:ed:36:c7:8a:f2:
ab:c4:11:b6:3d:dc:1e:7c:27:2a:3a:62:16:65:ab:ec:f4:ae:
f1:c5:8e:ca:19:e5:e1:8c:31:c0:f0:a4:65:ce:7a:0d:3d:29:
2d:2d:94:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 20 07:35:29 2025 by rpki-client