Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
File: UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft (raw, json)
Hash identifier: YuBCRzsTht0yiz0vXDP1Ad/DlYGz9I0dOnMbcLpXYQM=
Subject key identifier: 37:E0:83:46:61:62:FD:86:85:9A:64:04:FC:83:5C:2C:25:0D:6D:2E
Authority key identifier: 53:38:02:E6:29:65:D4:58:4E:59:8D:59:B7:6A:92:8B:E5:AF:D9:71
Certificate issuer: /CN=533802e62965d4584e598d59b76a928be5afd971
Certificate serial: 019A228991971E18C1454C79F24A55730E17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
Manifest number: 0298
Signing time: Sun 26 Oct 2025 22:00:32 +0000
Manifest this update: Sun 26 Oct 2025 22:00:32 +0000
Manifest next update: Mon 27 Oct 2025 22:00:32 +0000
Files and hashes: 1: AmqiC38rtSv0iE1wKrjS0J46Q88.roa (hash: UHlyMJ5+FWbMAOr2Ngcc+hElY0msx9uI+m00I3guqOI=)
2: L7mO7KFz85O9TLGHw1rnhJTk7S8.roa (hash: UMdz5rJ/zgMVHrBC+qmC+WQlQSXRf1HcpO0Un+UUydo=)
3: N50ILjI6vNp7A6N9HygvstrwChc.roa (hash: Dirg6q8LPU3d4GS5cdQfmRbClfRmgGiHcbmkwEYmVik=)
4: UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl (hash: gTkoo48gQpBUFX9qUuPFwqtys4D9gEuO1MhX3xRRYdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:89:91:97:1e:18:c1:45:4c:79:f2:4a:55:73:0e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533802e62965d4584e598d59b76a928be5afd971
Validity
Not Before: Oct 26 22:00:32 2025 GMT
Not After : Oct 27 22:00:32 2025 GMT
Subject: CN=37e083466162fd86859a6404fc835c2c250d6d2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:de:e4:9c:19:c0:de:22:88:c2:bc:56:6d:3a:
56:dc:f5:65:3e:dc:c0:e6:2e:d3:3a:79:c4:67:db:
e8:f5:65:00:14:55:49:66:5e:43:81:1c:81:4c:8b:
c5:71:70:17:a7:00:55:57:cc:53:1f:0b:77:38:5b:
62:33:98:07:e7:d4:40:38:14:1c:02:fe:2f:28:8d:
79:c6:15:ad:74:1f:91:b3:3d:c9:11:c7:6f:a5:5d:
8c:26:ca:a0:b0:a2:2b:73:d0:a4:5d:bc:b1:f2:ed:
e5:b6:b5:15:d9:01:a4:f4:e2:b5:79:de:6a:14:ea:
28:6e:03:3d:76:f5:7b:e2:a5:42:1d:28:ae:90:b9:
d0:af:d6:b3:e1:69:e0:fc:f3:71:03:b7:e7:bd:3e:
2f:43:11:68:9f:26:91:71:e6:d0:d5:35:3d:38:12:
0d:d8:dc:53:b6:93:b1:7f:ef:35:83:c5:6f:8b:6a:
72:dc:b5:20:f6:00:57:a1:cc:2f:3b:17:9c:63:1b:
3c:4c:ee:6a:be:a0:77:f3:2a:5a:ab:97:aa:b4:e6:
66:54:df:de:6a:b9:9c:17:6e:ad:ea:91:b0:63:25:
94:83:8e:a0:ba:e8:5f:8a:b2:19:6a:c4:2e:61:34:
be:6c:c4:3f:5b:9e:3e:4e:9b:9a:49:c5:b7:ad:cd:
f4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E0:83:46:61:62:FD:86:85:9A:64:04:FC:83:5C:2C:25:0D:6D:2E
X509v3 Authority Key Identifier:
keyid:53:38:02:E6:29:65:D4:58:4E:59:8D:59:B7:6A:92:8B:E5:AF:D9:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:6a:14:bd:19:17:f7:dc:7a:08:fb:e4:e8:72:4c:6a:96:f1:
d5:5a:e2:82:b9:86:dd:1a:b8:2d:49:5d:81:ac:d2:dc:88:f9:
e0:51:80:99:35:f8:d5:34:a0:2c:8a:2a:14:07:76:5b:31:43:
c9:4d:5a:c6:72:43:31:b0:90:58:60:47:20:d7:04:89:9e:d0:
56:b6:2f:7f:c7:5d:b5:c0:d8:f8:d6:86:ed:66:40:fa:2d:4c:
f9:47:64:24:ec:1b:a9:68:53:bb:9d:71:41:6a:68:39:b9:a3:
23:70:07:49:4d:16:de:32:29:fe:13:b2:f5:de:0f:cb:df:74:
16:35:bd:f9:be:b2:86:f6:4e:73:e8:1f:71:61:25:c6:3b:34:
5b:b2:16:b6:d6:5b:25:fd:35:ee:b5:15:39:10:5c:33:41:6b:
ce:83:51:16:af:f3:6e:33:a4:22:fb:55:0f:62:e4:e0:ec:47:
7f:49:b5:1b:45:86:32:0b:78:81:51:85:4a:86:1f:cc:ff:5b:
6c:a3:50:fe:83:5c:b2:c9:c7:0d:8c:5f:a9:fb:d6:25:8c:41:
db:a3:90:61:73:6f:94:8b:dc:b7:7f:fe:a9:b4:7d:97:6f:ab:
e3:26:99:e2:84:1d:63:c6:03:6d:49:c8:fe:b6:73:0e:19:4e:
af:9d:a8:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:27:54 2025 by rpki-client