Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
File: UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft (raw, json)
Hash identifier: dx4y8CXvYESK/CPcyBFq8bPORdJpRTUfYPXMQWr8Rw0=
Subject key identifier: D2:03:A1:D2:1B:2D:7A:EF:95:9C:76:35:85:91:E8:D3:BC:A5:DE:47
Authority key identifier: 53:38:02:E6:29:65:D4:58:4E:59:8D:59:B7:6A:92:8B:E5:AF:D9:71
Certificate issuer: /CN=533802e62965d4584e598d59b76a928be5afd971
Certificate serial: 019936F078FF8767E6D7DC6FEBAB99930C50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
Manifest number: 021E
Signing time: Thu 11 Sep 2025 04:02:33 +0000
Manifest this update: Thu 11 Sep 2025 04:02:33 +0000
Manifest next update: Fri 12 Sep 2025 04:02:33 +0000
Files and hashes: 1: AmqiC38rtSv0iE1wKrjS0J46Q88.roa (hash: UHlyMJ5+FWbMAOr2Ngcc+hElY0msx9uI+m00I3guqOI=)
2: L7mO7KFz85O9TLGHw1rnhJTk7S8.roa (hash: UMdz5rJ/zgMVHrBC+qmC+WQlQSXRf1HcpO0Un+UUydo=)
3: N50ILjI6vNp7A6N9HygvstrwChc.roa (hash: Dirg6q8LPU3d4GS5cdQfmRbClfRmgGiHcbmkwEYmVik=)
4: UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl (hash: 6tBgW1B8FtRmKhRRLxYD2zOcZ22pfoTRTe4+wNvR5ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 04:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:f0:78:ff:87:67:e6:d7:dc:6f:eb:ab:99:93:0c:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533802e62965d4584e598d59b76a928be5afd971
Validity
Not Before: Sep 11 04:02:33 2025 GMT
Not After : Sep 12 04:02:33 2025 GMT
Subject: CN=d203a1d21b2d7aef959c76358591e8d3bca5de47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d7:20:3f:6c:49:72:40:1d:d7:d2:cd:80:d3:
62:ad:c0:35:99:b0:6f:4d:36:cd:fc:da:c8:f4:4e:
7d:5c:00:0c:1f:71:4f:83:3c:bf:d1:53:2c:60:1b:
67:3a:9b:92:6c:3b:5c:85:04:8b:db:83:2f:cf:1b:
e2:d3:40:f4:fa:90:a0:a7:81:d5:22:1a:5d:e4:0f:
02:b0:de:0b:fb:c1:44:23:26:55:6c:22:5c:4e:02:
3d:34:15:f0:8e:1b:4d:28:e9:e1:4d:6d:06:1c:b9:
e9:10:9b:6f:28:4f:d9:6e:d3:ce:4a:3c:29:be:4f:
35:c6:f0:90:ef:18:35:21:a4:18:19:0f:b4:76:6e:
7d:cd:80:5b:5e:59:6b:69:49:9d:6e:be:77:54:cb:
78:e6:8d:e8:0a:4b:53:81:82:5f:28:59:7e:60:e3:
09:ff:f0:54:60:cd:48:52:0d:45:d8:a8:da:82:5d:
ea:cc:26:d0:4a:80:9a:3d:55:21:1c:70:53:c3:ac:
7a:e7:ed:7f:e3:b1:3e:1d:45:4e:ca:45:88:52:3f:
31:b8:16:b6:31:eb:2e:10:bb:f3:dd:0b:e0:02:15:
1d:85:98:89:ff:8b:dc:bc:cd:76:86:0d:6a:b6:69:
2f:7b:1c:03:a2:27:8b:4c:f6:ee:6a:7d:0a:7b:37:
50:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:03:A1:D2:1B:2D:7A:EF:95:9C:76:35:85:91:E8:D3:BC:A5:DE:47
X509v3 Authority Key Identifier:
keyid:53:38:02:E6:29:65:D4:58:4E:59:8D:59:B7:6A:92:8B:E5:AF:D9:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/01a73a-8da0-48b9-aaed-a23c131c0d38/1/UzgC5ill1FhOWY1Zt2qSi-Wv2XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:ae:d7:a6:ac:4e:8e:64:96:f3:60:97:de:b0:57:8b:4c:d3:
c3:d2:bd:e6:7e:d8:6e:b7:11:11:47:ea:17:e2:20:d2:48:a2:
41:82:8f:f8:b2:fa:69:0c:43:0a:3c:b7:64:7d:e5:b0:49:68:
2e:94:61:11:55:72:bc:b7:4b:55:c2:5c:16:d7:46:0f:90:35:
46:a7:b7:8e:89:fc:1a:5c:d9:37:b6:11:e3:2f:07:34:c1:32:
43:41:0d:12:b8:38:0f:25:22:7f:d2:34:ba:cb:e9:63:b1:b1:
14:ab:d1:d1:16:5c:bd:09:94:f1:71:56:9b:5c:49:15:3d:91:
ee:32:4d:61:ba:95:c7:3b:3c:64:9d:e0:70:89:25:24:a7:b6:
53:cd:36:dd:56:96:63:44:37:c9:78:65:2d:25:15:86:ec:83:
95:d0:a4:5f:3a:1f:be:73:39:e9:fb:13:e5:6b:6f:bd:ee:51:
f2:50:68:34:f6:36:4d:b7:2f:da:42:50:6a:07:bc:ca:16:df:
05:bc:61:48:09:82:4a:f2:e3:81:12:f9:d3:80:67:9c:e7:1b:
17:d6:f0:04:89:c8:dc:fa:42:fb:34:24:44:1a:e3:5a:f2:b5:
c0:b3:70:be:7e:49:41:87:2f:d4:de:0f:3a:7a:35:4d:4d:02:
14:4b:ad:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 10:06:52 2025 by rpki-client