Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
File: UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft (raw, json)
Hash identifier: +UUcEX5/qqFvAD9HDe/h5UA1oUvuJhbOzNZ5w00jBvo=
Subject key identifier: FF:C6:7E:DE:79:75:84:25:14:37:1E:D9:4A:A8:DA:08:56:12:13:C7
Authority key identifier: 52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
Certificate issuer: /CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Certificate serial: 0199161C92091DEE4E2D2C40A2EA73FA360D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
Manifest number: 13CC
Signing time: Thu 04 Sep 2025 19:03:15 +0000
Manifest this update: Thu 04 Sep 2025 19:03:15 +0000
Manifest next update: Fri 05 Sep 2025 19:03:15 +0000
Files and hashes: 1: MggUNL8VW9yE4LnaTyr5YJxrDwU.roa (hash: GpA5vo0L4EKCpZl/rQZR5bRixQFok1LnqW2Xg8KUiaQ=)
2: UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl (hash: 8FxlnVAJnBNGY5QKeL118PMUUIGQIpbxXv6xERR+OyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:03:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:1c:92:09:1d:ee:4e:2d:2c:40:a2:ea:73:fa:36:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5232d44d9e08c873db35c02151ca44ae54b4b8af
Validity
Not Before: Sep 4 19:03:15 2025 GMT
Not After : Sep 5 19:03:15 2025 GMT
Subject: CN=ffc67ede7975842514371ed94aa8da08561213c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:78:3e:36:76:ba:ba:a4:61:6e:04:b2:c4:78:
03:df:ca:a6:75:c8:63:ab:43:00:d5:b6:52:74:c0:
8a:71:a7:cc:2b:6a:15:57:2b:91:c7:ff:e2:b1:7a:
c6:86:0c:ea:58:c7:a7:c0:81:f9:4d:1a:92:bb:0f:
d7:0a:56:02:91:dd:11:34:3e:d1:c1:68:bf:8f:99:
b1:4f:09:a4:2d:f2:72:fe:7a:50:ee:a7:c5:5d:14:
04:a9:d0:29:00:13:9f:c1:20:24:29:1f:bf:69:08:
82:47:3f:25:10:be:37:c4:01:9f:9f:95:d5:e8:cb:
5f:cd:ad:8a:2b:e1:1b:50:9b:c9:9d:a8:8e:d2:d9:
fd:ca:95:8a:95:16:f4:33:eb:81:8b:9d:f4:b6:9a:
2a:0c:9d:8d:15:4f:91:d2:1e:98:67:bb:13:da:97:
ef:d2:5a:1b:99:5f:64:dd:92:01:cd:64:22:78:7c:
d8:74:c6:93:7e:59:a0:c8:f6:36:55:eb:b0:6d:34:
45:65:6d:60:bb:b3:59:3a:93:02:76:29:f4:68:33:
f8:3f:5a:aa:94:8c:28:81:39:84:23:9e:af:5e:b6:
a3:75:e9:2d:93:e8:06:24:eb:b8:f0:e4:c7:38:f0:
91:c5:4e:d2:2f:ce:9c:20:50:e9:9d:e4:22:96:ff:
03:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:C6:7E:DE:79:75:84:25:14:37:1E:D9:4A:A8:DA:08:56:12:13:C7
X509v3 Authority Key Identifier:
keyid:52:32:D4:4D:9E:08:C8:73:DB:35:C0:21:51:CA:44:AE:54:B4:B8:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjLUTZ4IyHPbNcAhUcpErlS0uK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8b400d-1e8e-40da-b1d6-a6541ceb1e43/1/UjLUTZ4IyHPbNcAhUcpErlS0uK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:54:ac:b8:fe:b7:9b:be:61:f7:48:9e:a2:c1:89:b1:1c:b9:
fc:8a:13:c9:b7:30:a3:5a:ae:5b:c7:c4:d9:9e:11:0a:dc:b4:
a4:e3:3f:ca:c4:55:53:00:7a:19:99:d9:38:ac:84:6c:30:53:
83:b8:7e:f9:38:b5:34:0a:40:2f:46:da:ce:cf:d7:f5:7a:b4:
53:5f:03:a6:af:52:37:1d:ce:2f:a2:67:6f:52:9b:a7:1c:73:
07:cc:16:c2:3e:09:12:7a:a6:03:26:29:03:df:d7:ba:a6:5f:
6e:f5:52:a6:14:ac:d8:9a:61:77:1c:16:ea:4a:99:d0:02:ee:
e2:56:59:08:77:d1:a7:bc:8b:1b:f4:ae:9e:14:72:4b:e6:2e:
5d:6b:97:b1:c5:b0:0f:0d:8a:9a:b0:13:11:85:e6:ed:75:0b:
db:84:c1:df:41:d6:e8:ab:6a:01:d0:20:0c:fd:a5:9d:c1:b4:
6d:ca:72:e4:33:57:b2:b1:69:f7:69:28:9b:9f:03:12:90:f9:
dd:99:ac:b1:c7:0d:68:4e:7d:44:f6:03:20:a2:6f:63:77:05:
36:35:65:1a:8b:a8:61:94:85:fc:74:1d:ff:cb:d5:d6:89:b7:
97:05:b5:49:9f:2f:e6:f4:d9:cb:cf:3e:6b:cb:70:a3:c7:fd:
e9:35:30:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:23 2025 by rpki-client