Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
File: uFnbfywuOzq9i_QV8M4f_zNDKew.mft (raw, json)
Hash identifier: WuqbfD1ZzPYRS+4Gefiv3Fl3s/LIWI1FAnX4Jw0+EpI=
Subject key identifier: AC:38:63:3F:36:BD:B5:45:30:8A:5A:96:71:6E:19:8A:EC:76:2E:C0
Authority key identifier: B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
Certificate issuer: /CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Certificate serial: 019A4D3D3A6C306066E1253E7C5EFD8A6D3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
Manifest number: 0E67
Signing time: Tue 04 Nov 2025 05:00:49 +0000
Manifest this update: Tue 04 Nov 2025 05:00:49 +0000
Manifest next update: Wed 05 Nov 2025 05:00:49 +0000
Files and hashes: 1: KrWaj3PmGUr__R-XWPo-LvjSSzE.roa (hash: D32/8FWqAF1z0NVQywtDopSVNiH+dneRDeaovNlaE+U=)
2: uFnbfywuOzq9i_QV8M4f_zNDKew.crl (hash: tCKDLXTmZu2ReNbh6WG+98zJijt3WR8FRgOQ5laCiYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3d:3a:6c:30:60:66:e1:25:3e:7c:5e:fd:8a:6d:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec
Validity
Not Before: Nov 4 05:00:49 2025 GMT
Not After : Nov 5 05:00:49 2025 GMT
Subject: CN=ac38633f36bdb545308a5a96716e198aec762ec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5c:77:3c:1f:22:5f:f7:ef:0e:61:58:76:d4:
59:64:e6:db:62:a5:f5:0a:03:50:8f:96:e5:52:02:
57:10:92:61:9c:56:71:2e:9b:47:49:0f:9d:03:15:
ca:30:50:fb:c8:62:fa:82:88:29:10:9b:b0:d1:59:
a0:51:e1:51:42:5b:c7:99:61:72:2a:1c:7c:d3:0d:
41:6e:fe:73:f6:54:8f:48:6a:c8:bf:e4:60:ce:84:
39:f4:50:4c:c3:7a:26:ab:88:9b:6f:9f:d7:18:5c:
3e:83:54:aa:21:f7:84:71:63:e4:66:d2:22:f6:79:
7d:ce:76:1d:fc:cb:76:c3:c6:ff:18:7d:22:44:51:
9e:f6:1f:d3:94:e5:64:ab:a0:b4:8c:09:46:99:f9:
ce:17:6f:c6:60:0d:6d:36:5b:42:9e:50:1b:8e:fc:
c4:33:16:63:56:3c:fd:2a:ad:72:70:56:36:d3:89:
f7:cf:77:5e:5a:75:8c:2f:ad:07:ae:42:ec:1a:97:
63:73:59:ae:25:e5:75:01:32:3c:30:5e:dc:07:7c:
d8:e5:cf:19:b2:d7:c4:87:29:b7:47:fa:4b:58:4d:
1c:62:5c:60:4e:b1:71:1a:d3:f7:46:7c:bb:c1:69:
1b:d0:81:7d:bb:c7:71:8d:96:1d:00:c6:f5:94:83:
74:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:38:63:3F:36:BD:B5:45:30:8A:5A:96:71:6E:19:8A:EC:76:2E:C0
X509v3 Authority Key Identifier:
keyid:B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:22:5a:7a:b5:92:4c:fe:77:7d:66:77:0e:5a:f9:f7:ef:6b:
78:99:e7:a4:bd:9f:4f:6b:5a:b2:6c:5a:be:e2:12:1d:81:00:
14:b5:8d:d8:47:21:3c:5d:ae:c4:99:3a:86:d2:ed:18:85:cf:
f0:8a:2f:41:47:0b:ce:39:0d:79:e1:0d:dc:01:c1:08:6e:ce:
00:45:d2:2c:bb:16:cd:cf:93:13:54:19:d0:ef:17:bc:4f:66:
13:ef:69:77:6b:78:9d:ea:07:b2:63:6c:22:34:1d:8b:30:79:
d6:68:f1:ff:20:4b:ca:d9:3c:08:e2:ed:7a:d1:1b:0d:e6:aa:
ea:30:e8:88:20:0a:14:e1:4c:2e:46:33:ef:16:f6:1c:1a:ec:
db:1f:61:6e:c5:55:3f:a2:08:7c:e8:2f:d9:41:f5:a0:ea:e6:
d1:c4:cc:88:e3:79:7e:03:5e:87:f1:9c:2e:2b:58:bf:88:59:
74:11:ef:8b:54:c6:64:ac:23:65:7b:de:df:c5:dd:20:54:34:
5c:af:b3:4e:11:f6:2a:e3:9c:af:5f:f7:26:18:cc:03:4c:31:
a8:e5:90:fb:e2:04:92:c6:de:24:a4:18:86:d9:dc:d5:ea:a1:
45:a0:4f:67:4f:ce:6b:9a:55:75:b1:09:74:ad:d2:d9:b6:be:
3d:fd:e1:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:45:52 2025 by rpki-client