Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
File: uFsMinWJOk-OHvDZpNQUeNizMng.mft (raw, json)
Hash identifier: Sr3QaphVVzqUMNQ9dcdfqvRxAN3MX5Fcj/AJ/SF0hCU=
Subject key identifier: 46:22:6D:40:75:28:B6:98:2B:16:55:5D:5A:08:8E:C7:B6:B4:DC:EE
Authority key identifier: B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
Certificate issuer: /CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Certificate serial: 019A4D3CC62E4C162EF1E11FB954EEC2E355
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
Manifest number: 1662
Signing time: Tue 04 Nov 2025 05:00:19 +0000
Manifest this update: Tue 04 Nov 2025 05:00:19 +0000
Manifest next update: Wed 05 Nov 2025 05:00:19 +0000
Files and hashes: 1: FAbnnF69oHTmqk-_EL74zctuaA4.roa (hash: fltdyHSTKiTHvNl3z1Whswl3hhYadpjXzd/kAG+oHEc=)
2: aJV7GbLDrd2CQzyoG7J6OnTP5DY.roa (hash: RYvSIhl4EMxqFZiyrQ0zAL7ZWanzg67h6dO8KAffWY0=)
3: uFsMinWJOk-OHvDZpNQUeNizMng.crl (hash: y+8Rgw0iw1RsCYMMNcKbaqLMdIsUrkPmXu4PAe/YSTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3c:c6:2e:4c:16:2e:f1:e1:1f:b9:54:ee:c2:e3:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278
Validity
Not Before: Nov 4 05:00:19 2025 GMT
Not After : Nov 5 05:00:19 2025 GMT
Subject: CN=46226d407528b6982b16555d5a088ec7b6b4dcee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b3:b0:f7:dc:8b:24:e8:ab:5c:57:4d:35:19:
03:22:f4:e3:1a:13:0d:98:45:b6:90:3c:24:66:b7:
ff:76:74:39:77:20:51:35:1a:8c:7f:fe:33:5a:ca:
74:18:2c:25:c5:86:3c:61:30:c9:9f:ef:1f:a3:cc:
8a:76:76:93:f5:0c:10:d7:36:fc:03:6b:04:32:c6:
f7:bd:4c:87:a7:58:6f:cb:cc:fd:f6:d4:be:3b:22:
1f:52:83:67:75:55:50:b3:7f:b6:ac:5e:65:a2:ba:
05:64:ba:e6:23:1a:a9:dd:24:00:4e:7a:44:d5:c1:
0c:24:af:00:64:e4:3e:34:c8:81:32:93:7c:2d:06:
c2:19:ad:0f:98:b3:fa:50:37:c8:9d:94:69:a0:56:
af:ce:70:07:2a:79:65:aa:a1:63:e9:35:e7:84:01:
a9:2e:d2:c2:c9:63:d2:d1:35:a8:91:14:19:4a:9a:
2c:63:cb:1b:98:9d:0e:22:e6:a0:6c:d8:ab:d0:cc:
f5:09:71:51:31:d8:c6:fb:c6:0c:0a:8a:88:e9:92:
7c:5c:de:6d:ae:70:8f:a3:0e:23:a8:cc:0d:47:5f:
2a:ed:ee:ef:ca:a8:75:1a:fc:b6:0e:3f:17:82:37:
c3:12:bc:07:04:60:78:e8:03:8d:e5:6f:11:a2:75:
6f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:22:6D:40:75:28:B6:98:2B:16:55:5D:5A:08:8E:C7:B6:B4:DC:EE
X509v3 Authority Key Identifier:
keyid:B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:27:fd:be:9a:48:f6:8c:ea:6d:dd:97:1f:c9:e7:ab:fe:7e:
07:82:b9:71:78:84:07:6d:ab:51:bd:37:80:8e:b6:aa:03:4c:
cd:bd:19:cd:64:62:bb:64:0a:2a:2b:b0:17:07:7e:a1:ce:22:
aa:6a:52:a4:49:fd:22:d8:eb:87:92:88:0f:9d:f9:bd:8a:bf:
5a:cb:2b:61:63:2a:2c:70:e5:54:6e:c6:03:ef:07:b4:04:a3:
53:02:92:46:0d:7d:59:d2:36:f7:9f:d8:f2:5d:03:a2:ef:75:
42:ed:df:76:96:3f:e1:57:c1:f0:06:60:a9:dc:27:96:6c:03:
03:1d:1e:ea:88:15:07:f4:e9:55:c7:08:d8:a1:06:c1:50:3f:
82:7e:38:f4:fe:73:c0:4a:fc:a1:0f:4a:2e:31:89:ad:a3:55:
f1:a9:9a:05:0d:24:79:13:eb:12:07:6c:cb:4e:e5:3f:13:29:
2c:b5:3a:89:df:20:52:f1:6c:df:8f:ec:b5:49:ce:de:2b:8d:
31:01:fd:4f:d6:6b:e5:af:12:8b:01:a3:96:6f:ce:18:f3:91:
5c:5f:67:3b:f9:77:1d:c8:a5:55:07:2f:b4:ee:a7:8c:7e:39:
bc:3b:74:03:bc:cc:b1:b9:97:b3:43:12:e7:cc:8e:25:e4:fe:
15:2d:a2:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:21:23 2025 by rpki-client