Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
File: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft (raw, json)
Hash identifier: NX1Wc9c43tUz2nZw//PXwT9HphQpY8SXFEvjgHujM/U=
Subject key identifier: B1:A7:32:2F:89:9F:DB:60:73:55:A9:2D:04:A2:6A:D0:83:E9:7B:D6
Authority key identifier: D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19
Certificate issuer: /CN=d949caba3d4315607f4a6d627ece1ecea8cbc319
Certificate serial: 019A526358661C7155858026BBA924588B33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
Manifest number: 0C4C
Signing time: Wed 05 Nov 2025 05:00:33 +0000
Manifest this update: Wed 05 Nov 2025 05:00:33 +0000
Manifest next update: Thu 06 Nov 2025 05:00:33 +0000
Files and hashes: 1: 2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl (hash: 1sZww/g9rz43f7ZK9TAZJ3KX1QR9jGU3qdXI+2n3N1c=)
2: 9QEKfiqhzH-bmQh5b6rMdNbStYc.roa (hash: MpYTZwjsTnNyFZWB4RSLKA3k60L/jvvVARMaXOoFY4M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:63:58:66:1c:71:55:85:80:26:bb:a9:24:58:8b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d949caba3d4315607f4a6d627ece1ecea8cbc319
Validity
Not Before: Nov 5 05:00:33 2025 GMT
Not After : Nov 6 05:00:33 2025 GMT
Subject: CN=b1a7322f899fdb607355a92d04a26ad083e97bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:09:af:9e:9a:c9:1f:34:19:54:16:5c:eb:b2:
fb:8d:17:62:94:32:72:90:ed:92:87:db:c7:67:47:
49:bc:5e:ef:34:36:1e:30:7b:7b:e0:94:d0:48:09:
c3:67:91:ac:33:26:da:c1:3e:08:0b:f4:04:65:f6:
9c:82:ed:6a:21:7d:0b:fd:63:74:a7:67:25:ac:90:
78:30:c5:a2:68:5a:7d:21:0e:16:1a:d8:fb:1a:f5:
31:a4:4e:17:5e:94:c9:fc:1f:56:c2:0f:a0:9c:5e:
82:1d:e2:20:58:58:06:43:7a:54:1d:42:61:57:5e:
ad:1a:c9:57:ef:e5:75:ab:5a:28:1d:7f:d9:d9:6c:
91:63:6e:3f:e2:c2:0e:7f:9b:bc:98:96:df:4a:8d:
77:1f:bc:39:1e:1c:42:42:0e:62:8c:bf:4a:e6:d9:
6f:76:9b:50:7e:8c:0e:11:65:7c:af:15:05:61:65:
84:a6:7a:0a:e3:c3:ef:ab:aa:d7:8f:42:33:4e:33:
02:de:27:a0:06:77:7b:a6:0c:fb:b1:15:18:d8:d9:
f7:2c:2a:65:a0:d6:64:35:b9:fe:f3:1b:60:d3:cb:
67:d3:f1:35:93:e5:4f:ee:01:c9:16:a5:1c:49:e4:
ff:b9:d3:a8:d6:ad:30:53:c2:71:18:62:18:60:24:
8b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A7:32:2F:89:9F:DB:60:73:55:A9:2D:04:A2:6A:D0:83:E9:7B:D6
X509v3 Authority Key Identifier:
keyid:D9:49:CA:BA:3D:43:15:60:7F:4A:6D:62:7E:CE:1E:CE:A8:CB:C3:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fe6904-eb56-4493-929c-1a9df38f5901/1/2UnKuj1DFWB_Sm1ifs4ezqjLwxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:3f:4e:ca:0f:16:ce:8d:3c:b5:c6:d1:b9:43:e7:7c:df:1f:
69:5a:89:89:78:b6:1f:0b:50:bc:5b:23:70:f1:16:0e:3d:e9:
8f:b4:0a:fb:ec:ef:d5:83:b3:6f:dd:a7:51:34:01:75:f9:1c:
9d:78:a1:bb:d0:27:04:19:a1:d4:26:c8:3a:a2:64:fe:73:dc:
22:82:9d:c3:6f:be:58:5a:a2:c5:4e:98:4c:76:9f:ff:eb:66:
c7:ac:8e:ad:a2:34:cf:06:ae:1e:df:84:f9:be:85:9c:68:cc:
40:47:f4:c8:bb:34:98:59:e8:d9:5a:55:65:32:83:78:93:51:
c9:ef:20:5d:1c:f4:4c:05:93:4c:95:81:0f:92:44:04:e9:84:
5b:91:fd:44:16:71:0c:4a:56:7d:f0:44:af:90:00:32:cf:ae:
9a:7e:59:5b:b6:69:14:0a:1c:1b:9d:da:91:db:d3:b7:9f:a2:
bd:34:92:f1:c3:d0:e3:27:79:23:ae:69:49:d4:6c:26:6b:ed:
ff:b5:36:7b:65:af:e7:8d:94:e2:74:80:39:67:43:0f:45:9c:
16:24:cd:75:02:11:af:4b:2e:da:50:2e:d7:5b:a4:ee:ba:8c:
55:31:2b:4f:70:b4:39:eb:6a:f5:6e:1c:6e:f7:01:e0:c7:03:
53:41:f7:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:44:28 2025 by rpki-client