Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
File: uMaM2mX2aWLMuWg_FVDRTlYQego.mft (raw, json)
Hash identifier: XVH11n7goW3wc3aZ8jk5jUHAEamklD0iH6LDNAMW05U=
Subject key identifier: 71:BF:3A:67:8A:DE:93:3F:CF:25:6F:C9:3B:AB:EE:49:B9:4E:0D:3E
Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Certificate serial: 019A51F5B5EA1712772F4B0F79314B2D580B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
Manifest number: 081D
Signing time: Wed 05 Nov 2025 03:00:48 +0000
Manifest this update: Wed 05 Nov 2025 03:00:48 +0000
Manifest next update: Thu 06 Nov 2025 03:00:48 +0000
Files and hashes: 1: sIDOXg67yEuo_7naS_BfCVLmcEk.roa (hash: d8agrpVd7dmHrJl/IhvjPgn5Td9Dpm4TU3p5w1Cxjt0=)
2: uMaM2mX2aWLMuWg_FVDRTlYQego.crl (hash: 2w6Dy6O/ZFIZgABmqOEKzQpEdWpd9gu6Urw1ZBLeT5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:f5:b5:ea:17:12:77:2f:4b:0f:79:31:4b:2d:58:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a
Validity
Not Before: Nov 5 03:00:48 2025 GMT
Not After : Nov 6 03:00:48 2025 GMT
Subject: CN=71bf3a678ade933fcf256fc93babee49b94e0d3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:cd:4b:2c:c0:7f:f2:7a:3a:9f:34:6b:ce:
01:b9:e4:0f:a2:e3:24:f0:f9:2b:70:0f:6f:ed:1f:
4e:45:4c:66:01:be:3d:5c:0f:1f:6a:c6:53:28:ec:
eb:75:cd:66:69:b0:a2:03:71:ca:12:84:e0:2a:d9:
36:50:76:c7:b4:14:c5:c1:83:20:85:b6:f5:2a:06:
f6:aa:35:2c:ae:98:81:86:2b:ac:48:97:7b:e5:9e:
fb:e0:17:29:94:70:45:de:78:9d:ab:f8:e6:9e:f1:
48:42:e8:0b:75:3d:22:e0:f3:80:81:d6:45:90:51:
15:ab:d7:69:1f:06:70:0d:57:b5:36:a2:88:56:49:
63:1b:87:bb:d7:95:20:a5:11:d1:65:85:f0:a2:83:
6d:dc:f4:d7:af:0a:e1:6d:41:5e:6d:45:a1:20:de:
9b:a0:18:c6:9b:f9:da:b2:c1:ad:d2:a0:05:59:0a:
f9:e6:c8:45:f8:12:5e:b9:2b:1a:72:45:07:1b:e2:
91:08:89:d9:7d:75:b6:a2:c6:ee:8c:de:8b:71:23:
42:54:9f:f9:60:e8:cc:ae:d6:e1:6e:0d:97:73:ce:
db:4e:13:11:3b:76:6e:c5:dc:a1:33:70:fc:92:d3:
d5:1b:34:c1:fe:58:93:1f:12:f8:1b:bf:59:f4:b7:
51:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:BF:3A:67:8A:DE:93:3F:CF:25:6F:C9:3B:AB:EE:49:B9:4E:0D:3E
X509v3 Authority Key Identifier:
keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:20:87:d8:4f:48:43:8e:70:1a:dc:b9:d2:19:bf:2d:f7:09:
84:85:dc:fb:9a:49:82:70:4f:4f:26:ae:1a:4b:14:0a:1d:4a:
60:b2:02:e4:95:4f:ab:41:3a:75:4b:8e:8e:8a:7a:b4:bb:59:
2d:48:58:ad:8f:45:15:b1:fa:9a:58:8c:e6:a5:8b:6b:13:2a:
fa:66:2c:78:40:1f:6c:d8:a0:49:64:e8:19:47:6e:43:88:06:
a1:f6:2e:7a:6f:b6:65:a8:ae:a2:7a:f6:46:59:c8:9a:08:3c:
b7:23:df:a2:09:00:54:3c:82:4e:c1:b5:5e:0f:42:1f:1c:28:
a4:80:93:f5:7a:29:fb:65:f6:63:b9:ad:ea:42:5c:8c:46:b0:
ad:fa:09:23:a1:12:bf:28:08:58:43:8e:f5:01:b6:cc:19:36:
00:a8:38:c5:64:1a:ff:84:fa:24:9e:37:9c:d2:3a:5b:91:4d:
f3:d8:c0:a6:a6:2b:f0:72:60:54:fd:f6:ca:49:ce:e4:ba:35:
76:5a:b0:4f:b3:47:1c:55:46:1e:83:8c:57:61:72:2d:84:93:
20:06:73:1f:c6:69:61:45:8a:1f:cc:05:eb:b6:ff:f9:11:f2:
d3:02:6f:86:88:f0:73:3d:a7:2f:c4:b4:00:b2:3e:de:11:2f:
25:91:7f:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:54:21 2025 by rpki-client