Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
File: UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft (raw, json)
Hash identifier: zLTT2XSwmWxo9BeVrcPKucIBNbJbkSeH1BPSB3egRGk=
Subject key identifier: B4:2E:F3:98:49:16:EF:0D:10:80:E4:99:C1:79:56:B8:02:DA:8C:41
Authority key identifier: 53:38:02:E6:29:65:D4:58:4E:59:8D:59:B7:6A:92:8B:E5:AF:D9:71
Certificate issuer: /CN=533802e62965d4584e598d59b76a928be5afd971
Certificate serial: 01974855700247F69B08D82F96DD7D65734A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
Manifest number: 011E
Signing time: Sat 07 Jun 2025 03:00:48 +0000
Manifest this update: Sat 07 Jun 2025 03:00:48 +0000
Manifest next update: Sun 08 Jun 2025 03:00:48 +0000
Files and hashes: 1: AmqiC38rtSv0iE1wKrjS0J46Q88.roa (hash: UHlyMJ5+FWbMAOr2Ngcc+hElY0msx9uI+m00I3guqOI=)
2: L7mO7KFz85O9TLGHw1rnhJTk7S8.roa (hash: UMdz5rJ/zgMVHrBC+qmC+WQlQSXRf1HcpO0Un+UUydo=)
3: N50ILjI6vNp7A6N9HygvstrwChc.roa (hash: Dirg6q8LPU3d4GS5cdQfmRbClfRmgGiHcbmkwEYmVik=)
4: UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl (hash: CR/7AtSkV61a4IJEPJtH6FQ1FwSNku+fLIo/Gv+/Jo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:70:02:47:f6:9b:08:d8:2f:96:dd:7d:65:73:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533802e62965d4584e598d59b76a928be5afd971
Validity
Not Before: Jun 7 03:00:48 2025 GMT
Not After : Jun 8 03:00:48 2025 GMT
Subject: CN=b42ef3984916ef0d1080e499c17956b802da8c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:be:a9:c2:c1:73:5f:05:fd:dd:da:39:78:d0:
f7:65:b8:fb:c8:d0:cb:43:ab:43:ba:f5:69:20:bb:
a3:2b:99:97:03:fa:78:54:c8:9e:2b:6c:77:26:91:
01:3c:31:31:40:29:9f:25:f0:ab:7a:b3:83:c0:7a:
9d:a6:8e:82:df:05:2e:e6:a7:63:be:8d:3a:ef:f0:
98:02:55:58:8e:8e:5d:51:63:ff:4d:78:77:27:93:
c9:4a:0d:ea:4a:f8:c0:3a:43:99:93:ae:d9:57:c4:
6a:e4:03:c8:87:47:07:81:0d:c7:14:0c:6d:e3:e7:
a9:ae:e9:ee:29:7d:21:e1:89:05:4d:bf:5e:93:68:
17:d4:43:77:5a:5a:f8:b4:40:4e:ae:2e:11:bc:f7:
a4:4a:42:3a:38:1e:e9:4f:ae:38:ff:19:9c:f3:e2:
99:e2:dd:c8:11:df:05:1f:32:9a:0c:42:12:89:9e:
99:92:b8:37:40:8b:2d:3d:33:0d:3d:77:44:82:01:
c4:38:17:dc:ae:15:db:bd:50:7c:66:7a:09:47:34:
4b:6f:53:2e:d2:71:73:3e:73:68:b2:b2:d3:26:91:
c2:cb:e4:72:b0:19:a7:3d:25:91:49:0a:60:d7:9b:
98:37:32:cf:f4:39:23:52:9f:1f:2f:95:6b:53:e2:
87:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:2E:F3:98:49:16:EF:0D:10:80:E4:99:C1:79:56:B8:02:DA:8C:41
X509v3 Authority Key Identifier:
keyid:53:38:02:E6:29:65:D4:58:4E:59:8D:59:B7:6A:92:8B:E5:AF:D9:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:da:36:8e:10:ac:9a:67:f6:92:2f:00:44:76:a4:e1:a1:fa:
b9:0c:7b:ae:e4:f5:a8:ec:92:10:67:6d:cc:67:c7:22:a6:f9:
4a:ef:32:47:ad:99:26:a7:84:48:78:ca:4a:89:e8:c4:87:55:
dd:9e:f6:34:eb:90:2f:61:e4:ed:f3:f1:a8:0f:ef:e9:70:f6:
94:22:1a:30:bc:3a:7e:23:3d:4e:8f:eb:f1:44:ae:2d:cc:7e:
12:8d:85:83:db:c2:47:e0:fc:73:4c:dd:26:4c:6f:5f:46:a7:
a4:25:c2:5b:29:18:ed:72:4a:d1:3f:bf:5a:02:2f:16:b7:be:
88:61:9d:b0:e2:b4:e6:fa:06:79:cb:aa:ed:5a:79:43:72:9a:
80:2e:7d:8c:bb:c6:f6:34:c6:ae:bb:13:f7:29:86:75:0c:52:
49:5a:fb:e6:33:a5:74:7e:eb:b3:79:d1:e8:35:7f:c8:cf:7a:
51:f8:7f:03:e7:87:0b:71:32:87:8c:e9:f4:b4:ba:8b:09:73:
1d:d3:a8:44:72:e9:fb:2c:3f:2d:cb:08:77:6b:34:85:32:e6:
62:7e:f5:c0:35:e6:b9:12:bc:1d:5a:64:df:a4:eb:f2:b7:0d:
88:f8:b9:da:24:31:e7:c0:9c:4f:9a:8a:56:95:4d:f1:6f:ef:
70:ff:0a:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIVXACR/abCNgvlt19ZXNKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzMzgwMmU2Mjk2NWQ0NTg0ZTU5OGQ1OWI3NmE5MjhiZTVh
ZmQ5NzEwHhcNMjUwNjA3MDMwMDQ4WhcNMjUwNjA4MDMwMDQ4WjAzMTEwLwYDVQQD
EyhiNDJlZjM5ODQ5MTZlZjBkMTA4MGU0OTljMTc5NTZiODAyZGE4YzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyb6pwsFzXwX93do5eND3Zbj7yNDL
Q6tDuvVpILujK5mXA/p4VMieK2x3JpEBPDExQCmfJfCrerODwHqdpo6C3wUu5qdj
vo067/CYAlVYjo5dUWP/TXh3J5PJSg3qSvjAOkOZk67ZV8Rq5APIh0cHgQ3HFAxt
4+eprunuKX0h4YkFTb9ek2gX1EN3Wlr4tEBOri4RvPekSkI6OB7pT644/xmc8+KZ
4t3IEd8FHzKaDEISiZ6Zkrg3QIstPTMNPXdEggHEOBfcrhXbvVB8ZnoJRzRLb1Mu
0nFzPnNosrLTJpHCy+RysBmnPSWRSQpg15uYNzLP9DkjUp8fL5VrU+KHtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLQu85hJFu8NEIDkmcF5VrgC2oxBMB8GA1UdIwQY
MBaAFFM4AuYpZdRYTlmNWbdqkovlr9lxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXpnQzVpbGwxRmhPV1kxWnQycVNpLVd2MlhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8wMWE3M2EtOGRhMC00OGI5LWFhZWQt
YTIzYzEzMWMwZDM4LzEvVXpnQzVpbGwxRmhPV1kxWnQycVNpLVd2MlhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi8wMWE3M2EtOGRhMC00OGI5LWFhZWQtYTIzYzEzMWMwZDM4
LzEvVXpnQzVpbGwxRmhPV1kxWnQycVNpLVd2MlhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjdo2jhCs
mmf2ki8ARHak4aH6uQx7ruT1qOySEGdtzGfHIqb5Su8yR62ZJqeESHjKSonoxIdV
3Z72NOuQL2Hk7fPxqA/v6XD2lCIaMLw6fiM9To/r8USuLcx+Eo2Fg9vCR+D8c0zd
JkxvX0anpCXCWykY7XJK0T+/WgIvFre+iGGdsOK05voGecuq7Vp5Q3KagC59jLvG
9jTGrrsT9ymGdQxSSVr75jOldH7rs3nR6DV/yM96Ufh/A+eHC3Eyh4zp9LS6iwlz
HdOoRHLp+yw/LcsId2s0hTLmYn71wDXmuRK8HVpk36Tr8rcNiPi52iQx58CcT5qK
VpVN8W/vcP8KkQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:51:57 2025 by rpki-client