Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft
File: UDCmlphoVt51uCLWrpX-ATE4IK8.mft (raw, json)
Hash identifier: doz6069HCFmh8oOITJLgLyVuAZbwLeL2aUsXK08oRJs=
Subject key identifier: 42:E9:3E:9C:D9:BD:8C:EA:4E:27:37:5A:BD:35:67:89:80:9E:C6:CA
Authority key identifier: 50:30:A6:96:98:68:56:DE:75:B8:22:D6:AE:95:FE:01:31:38:20:AF
Certificate issuer: /CN=5030a696986856de75b822d6ae95fe01313820af
Certificate serial: 019A4E4FC1A046F0F08B90A112968B0A25ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft
Manifest number: 1105
Signing time: Tue 04 Nov 2025 10:00:41 +0000
Manifest this update: Tue 04 Nov 2025 10:00:41 +0000
Manifest next update: Wed 05 Nov 2025 10:00:41 +0000
Files and hashes: 1: UDCmlphoVt51uCLWrpX-ATE4IK8.crl (hash: 1aasBM3O3TW9yB9AQjUmAGA24vyj0GxamonkhEHJLcs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:c1:a0:46:f0:f0:8b:90:a1:12:96:8b:0a:25:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5030a696986856de75b822d6ae95fe01313820af
Validity
Not Before: Nov 4 10:00:41 2025 GMT
Not After : Nov 5 10:00:41 2025 GMT
Subject: CN=42e93e9cd9bd8cea4e27375abd356789809ec6ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:75:97:62:75:df:57:24:da:84:e8:ac:2d:b4:
fd:ba:dd:d2:0a:ae:4c:78:f2:b7:eb:1f:a9:72:2f:
cb:07:6a:6f:78:71:c0:54:ed:1a:ce:4a:c9:6c:a4:
bc:43:ad:40:f2:0e:7e:14:43:37:fe:31:97:f8:66:
4c:ea:2e:3a:05:59:96:72:f1:68:cb:68:7e:7b:bc:
9f:f9:07:78:9f:ea:0a:e3:80:f1:fa:06:b4:02:c8:
64:97:19:46:69:f8:3d:e7:e0:be:b9:63:c7:cb:78:
c3:4e:12:78:b8:cc:dd:d7:6e:d4:e3:f1:3a:aa:bf:
80:34:8e:29:d1:1d:c7:e9:03:c8:9a:66:45:14:9c:
f1:1a:c3:d6:6e:20:a3:06:0b:0d:40:68:e1:ac:f6:
51:35:eb:71:8a:15:b1:a7:19:7e:9a:e2:f3:3b:5d:
cd:fe:5c:fd:78:48:33:b8:74:d7:fd:93:df:22:af:
42:bb:fe:ee:0e:11:b8:3f:d8:28:c5:7c:d1:9e:58:
48:cf:9d:b5:69:51:be:03:d8:4b:a8:dc:f2:05:6b:
c5:61:f9:86:1b:47:60:bd:5a:40:21:b4:7e:32:c7:
27:0d:32:06:c3:32:c6:81:10:4b:b9:3f:3b:8b:c6:
ef:ee:fe:55:c5:c3:01:3d:f2:36:87:15:34:b1:a2:
22:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E9:3E:9C:D9:BD:8C:EA:4E:27:37:5A:BD:35:67:89:80:9E:C6:CA
X509v3 Authority Key Identifier:
keyid:50:30:A6:96:98:68:56:DE:75:B8:22:D6:AE:95:FE:01:31:38:20:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:2a:93:35:46:aa:79:d7:d3:53:6a:d3:47:52:44:6b:b2:b4:
d8:da:7e:e7:2a:30:c7:3a:c3:b4:5c:30:86:ba:7a:d8:de:ad:
f4:aa:60:64:0b:e9:24:b7:8e:0e:6f:92:1d:cd:c9:e9:38:bd:
7a:20:0d:8c:7b:f7:07:92:0c:b6:8a:30:3a:4c:4b:d6:93:33:
07:8f:64:28:92:39:23:26:c8:a5:de:93:21:5c:87:3b:16:20:
d8:f0:c8:c2:93:a6:42:0e:5d:c3:41:85:ad:8c:67:b1:aa:86:
16:db:3e:2a:17:75:6e:69:fb:e2:21:22:ae:0e:4c:5c:0d:bc:
1d:b3:f1:23:be:cf:af:b0:80:05:47:8c:83:ea:be:d9:90:b1:
69:3c:e5:6c:97:a0:68:1d:82:4f:94:14:bf:38:b8:dc:f7:d1:
84:e7:d0:5e:c6:aa:ec:31:30:30:79:f7:8b:79:97:9a:42:9d:
8c:96:41:a8:7e:07:54:bf:0a:6e:8d:50:3a:11:44:c3:c7:5e:
86:2c:92:7c:31:19:58:b7:67:47:41:7f:42:5b:bd:3c:a8:72:
b7:c4:5a:5b:15:78:08:87:b5:a9:31:e0:0a:07:df:1a:b9:6a:
6e:11:4f:35:39:ca:d1:85:4d:90:22:c1:af:9b:a4:d3:eb:3f:
c9:5b:34:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:27 2025 by rpki-client