Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
File: UHeXmaO44PDx48dJjAWjP4X7u80.mft (raw, json)
Hash identifier: NHIiwaFdZeCYE/JaFofoEmvOxVuHlHCb+DnSsgrfe+Y=
Subject key identifier: 2B:1E:01:5E:27:44:1C:D0:38:FC:B3:D5:8E:2C:62:ED:C0:65:EF:5B
Authority key identifier: 50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
Certificate issuer: /CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Certificate serial: 019A4DE1E9F39D4A76E4BF0C1FB87286CB82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
Manifest number: 15D3
Signing time: Tue 04 Nov 2025 08:00:42 +0000
Manifest this update: Tue 04 Nov 2025 08:00:42 +0000
Manifest next update: Wed 05 Nov 2025 08:00:42 +0000
Files and hashes: 1: Sy9MkTO2BPRvKPMpsGDN-2TnmTk.roa (hash: Zvh1o0q4voreyVSKOLfHlxnIapN8G7OyPz3tE/wp4Tg=)
2: UHeXmaO44PDx48dJjAWjP4X7u80.crl (hash: nX2E6Z4tOnx4GUvxWFnyztbwH2wRoXyZMqujRgUa1Is=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:e9:f3:9d:4a:76:e4:bf:0c:1f:b8:72:86:cb:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd
Validity
Not Before: Nov 4 08:00:42 2025 GMT
Not After : Nov 5 08:00:42 2025 GMT
Subject: CN=2b1e015e27441cd038fcb3d58e2c62edc065ef5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:35:0f:8b:89:f6:52:a3:b1:82:0a:62:4b:be:
5b:03:19:9d:d5:ed:ff:2c:43:f2:fd:04:bb:4f:19:
a2:f4:c8:10:da:65:c8:12:35:8e:b4:7d:34:89:0a:
09:b4:60:c9:23:e1:33:1d:57:4b:20:77:a9:b6:85:
35:f5:9e:62:95:62:a4:2e:dd:60:aa:0b:2c:71:7e:
93:53:54:c2:79:9e:b0:ec:08:eb:53:2b:d4:24:67:
4e:f3:4e:2c:9e:2e:0d:32:94:8a:ef:7d:c7:9f:ca:
24:30:55:41:af:ef:77:13:c5:43:33:56:ac:74:df:
ff:94:1d:42:ae:93:dd:64:6c:64:62:9e:34:36:dc:
34:4d:83:e0:60:a9:4d:c4:0b:4f:63:71:bf:51:ae:
e8:a0:d2:22:52:2a:8f:4c:8a:62:1e:02:df:60:99:
45:0a:14:d7:31:c7:30:74:a1:09:38:ba:89:bf:04:
b0:d3:b2:d5:90:8a:ac:c7:e1:a2:11:fb:c5:94:dd:
0f:a2:68:a3:f2:9e:45:2a:92:9f:81:98:ae:72:0d:
7c:3d:42:ad:06:e1:e1:71:b3:2b:31:57:e0:a0:04:
09:03:70:55:ae:86:cb:4e:e7:9f:56:a6:97:8d:48:
31:42:44:dc:20:d8:18:bc:e0:72:50:94:a8:08:21:
d9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1E:01:5E:27:44:1C:D0:38:FC:B3:D5:8E:2C:62:ED:C0:65:EF:5B
X509v3 Authority Key Identifier:
keyid:50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:6d:57:ce:a0:a1:bd:0c:d5:3e:37:80:23:be:41:59:fe:50:
56:0b:3a:6c:1a:ed:85:a8:ef:78:a4:de:07:0c:84:be:47:b4:
dc:fb:bd:11:08:bd:97:ab:64:2b:6f:3d:2e:21:b7:cf:d7:fc:
32:85:10:55:8f:7e:35:85:9a:6a:a4:83:f6:92:e0:85:b9:2e:
58:17:c6:13:f6:97:66:5c:08:03:b9:7c:f9:80:11:27:aa:46:
9e:a2:fa:5d:17:01:4a:5b:d4:aa:48:b6:99:61:3c:61:cd:ba:
1f:d8:f6:07:d1:1d:02:de:31:94:b2:ea:d3:b9:ff:d0:b2:d4:
12:0e:75:17:9e:6c:cb:b4:d3:00:d8:a9:9b:70:a7:7d:59:d5:
81:f5:42:e5:d4:77:e6:2f:00:1b:6f:12:6b:c1:1c:45:9d:8b:
9b:b1:2c:19:91:9c:bb:af:cd:91:20:ef:d6:99:83:ae:55:48:
02:c3:69:ac:e2:5f:45:3d:50:ef:6c:81:f4:f4:0a:a7:70:27:
79:e5:b7:9a:68:b3:b3:2e:97:1e:26:c8:c6:13:9a:07:e6:14:
90:74:db:96:26:12:58:59:b9:da:bc:33:b2:4f:d8:a9:1d:ec:
27:ff:a0:76:9f:76:15:29:2e:3b:fb:31:23:29:2c:26:2b:56:
2f:2b:b9:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:18 2025 by rpki-client