Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
File: uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft (raw, json)
Hash identifier: B5z3OX491r9Vlvx2AndJZjc4fsKGXjDm3mAM1cSJeVc=
Subject key identifier: F6:84:B1:19:13:70:08:20:CD:02:70:07:F8:99:48:F8:4F:A0:7C:7D
Authority key identifier: B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
Certificate issuer: /CN=b90907cee4fac50f3753622ad21a989ae7741c47
Certificate serial: 019A515078835BF8AF79F735DE13D751AE93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
Manifest number: 1410
Signing time: Wed 05 Nov 2025 00:00:19 +0000
Manifest this update: Wed 05 Nov 2025 00:00:19 +0000
Manifest next update: Thu 06 Nov 2025 00:00:19 +0000
Files and hashes: 1: uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl (hash: IgePHQyNT6M050PYWRB3aGc8+8zYa6uv9AKVxcruTLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:78:83:5b:f8:af:79:f7:35:de:13:d7:51:ae:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90907cee4fac50f3753622ad21a989ae7741c47
Validity
Not Before: Nov 5 00:00:19 2025 GMT
Not After : Nov 6 00:00:19 2025 GMT
Subject: CN=f684b11913700820cd027007f89948f84fa07c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4a:5b:dc:a8:90:8e:b6:cc:98:73:92:0b:85:
a8:58:11:e8:39:fd:56:24:17:c5:70:4b:55:8d:cf:
8e:7e:dd:b3:2e:ff:b0:73:2c:2e:46:f4:bd:c8:dc:
94:59:ea:2c:9c:75:97:6f:3a:ca:7d:ac:0d:ac:da:
d8:92:e7:08:cb:9c:8e:a8:9d:85:90:d7:7e:0f:3c:
bd:61:e7:0e:34:50:82:51:fe:03:6a:62:6a:7e:f1:
46:c4:68:14:af:31:59:01:6c:29:fa:41:f1:82:9b:
d6:8a:3d:c6:f3:95:57:2b:31:2b:d3:ee:28:c4:4e:
00:34:c5:09:d1:29:54:94:af:ff:f0:aa:c7:97:61:
78:aa:68:67:0e:e5:fa:5d:71:c8:7c:f9:96:b8:74:
9c:9a:ec:ba:7a:fa:87:d9:4a:25:ab:22:a8:fa:85:
28:01:08:b9:69:ce:53:a3:6f:d8:6f:3c:1a:79:9b:
b7:be:58:04:2a:17:96:1a:33:30:97:22:c2:ca:f7:
ba:83:4a:7f:1b:c5:8a:00:c9:6b:d5:d4:88:a0:c6:
7c:c0:5e:e0:2f:84:0c:6f:37:77:9b:28:f4:53:84:
f6:f1:a9:6e:0c:dc:89:3d:b1:44:7a:95:24:0f:19:
b8:7c:91:f6:9b:6e:a0:6f:7f:29:70:68:f8:f2:06:
0f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:84:B1:19:13:70:08:20:CD:02:70:07:F8:99:48:F8:4F:A0:7C:7D
X509v3 Authority Key Identifier:
keyid:B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:74:88:18:79:28:c9:57:9e:27:35:37:70:cb:23:07:41:b0:
df:83:52:80:49:9d:3f:45:6a:ce:ab:0d:f9:58:d3:0e:26:af:
cd:85:d2:35:9c:45:a2:ca:79:92:29:95:fd:b6:1a:7e:74:c3:
b6:40:19:a2:e8:fa:8c:12:d1:cd:d9:c8:75:b3:23:aa:9b:26:
13:fb:5d:67:8e:f9:f9:c1:b7:55:a4:15:2c:fe:40:8d:94:d7:
9f:8b:78:77:52:c9:9c:fc:d5:bd:0b:e6:e4:5b:2e:65:36:9e:
7e:b1:6e:ee:d7:01:6a:b3:93:b1:c3:c7:d4:53:63:16:6a:20:
0e:82:3f:13:03:5c:d9:90:cd:a3:34:e2:4a:0c:0e:42:57:8d:
4b:27:cb:f8:3d:ed:bf:4f:a5:58:36:69:c1:6e:fc:2d:0c:a8:
e9:c1:73:1a:d6:12:92:0c:a8:78:62:f2:eb:3e:f9:80:3c:bf:
7e:42:40:02:e9:3a:4a:bb:9d:b9:9c:98:62:8a:a7:71:d7:aa:
05:c8:ee:6f:78:01:8d:42:81:b9:0a:26:21:e3:0d:1c:93:c3:
42:3e:ae:42:81:fb:6b:25:18:1e:a2:93:91:99:03:83:e4:ef:
00:c8:d5:61:6e:7d:f8:83:b0:ff:85:8a:80:60:8e:e4:cb:70:
3c:ec:ea:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:48:18 2025 by rpki-client