Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
File: uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json)
Hash identifier: P5m0TmGjdtMmUA8o8gx2tUMph2D6KpDKrGCXuAEPqVQ=
Subject key identifier: 15:58:CE:DA:E8:D9:55:A2:B4:7D:B4:FD:CC:BC:E2:CD:CA:73:09:5A
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial: 019A5119C2658A44C35F2D17BD55857AA95B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
Manifest number: 0B8E
Signing time: Tue 04 Nov 2025 23:00:33 +0000
Manifest this update: Tue 04 Nov 2025 23:00:33 +0000
Manifest next update: Wed 05 Nov 2025 23:00:33 +0000
Files and hashes: 1: TGrXflCdfRfW3fIuk1M0sun1vvs.roa (hash: alNQcjpWXoWXc70x5wuOV0VaoVsG9NOJ3xbbbXJM7RE=)
2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: G+W8xj9fQfuQOQUlCcg4vEDGMIeAhTmkmG8laWte8Lk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:c2:65:8a:44:c3:5f:2d:17:bd:55:85:7a:a9:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Validity
Not Before: Nov 4 23:00:33 2025 GMT
Not After : Nov 5 23:00:33 2025 GMT
Subject: CN=1558cedae8d955a2b47db4fdccbce2cdca73095a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:5a:d8:7f:e6:e3:10:34:fe:c3:14:6c:31:5b:
8a:8f:8d:67:7b:ba:7f:7b:25:a0:0e:f2:98:3d:96:
71:d2:ce:58:d9:f7:17:4e:b6:13:9b:d9:ae:40:bd:
b4:87:77:43:44:66:7b:82:c0:a4:89:33:a7:d5:17:
10:96:91:fa:df:56:e8:77:76:c0:84:ac:f6:8f:4c:
c0:1b:00:77:ab:cb:b8:24:2c:d8:b2:0d:a4:72:81:
c6:da:5b:80:52:e5:6f:96:1b:c1:7e:dc:88:0a:4a:
27:1e:91:a2:69:1d:71:e1:ad:b3:d4:a7:27:84:4e:
63:b9:a8:91:2a:c1:29:6e:cd:e0:29:3b:3b:b4:1d:
b5:c1:0a:9f:b5:7b:10:21:4d:55:de:15:49:1d:82:
1d:22:2e:31:f7:1f:1b:5d:9d:87:6f:0b:02:c0:a1:
3e:6e:04:e0:87:95:12:f1:30:34:f2:33:1f:88:01:
77:7f:9e:a8:6e:fc:36:e0:c5:c3:74:1b:1b:dd:1f:
a4:8c:7b:0d:a2:67:db:07:50:4f:d5:d2:26:f0:a1:
44:09:25:d1:6b:e9:ba:2e:be:54:a6:1a:f6:0c:44:
f7:f1:d3:91:3b:dc:f3:95:e6:37:54:70:37:1c:e8:
93:b6:e0:d0:ce:a7:36:15:ee:be:81:cd:ad:c2:c1:
db:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:58:CE:DA:E8:D9:55:A2:B4:7D:B4:FD:CC:BC:E2:CD:CA:73:09:5A
X509v3 Authority Key Identifier:
keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:cc:1d:fa:a7:c0:1c:8a:b3:9f:e5:22:a3:20:35:6d:4e:ab:
f9:76:92:3c:df:04:37:68:2f:0b:98:cd:89:e5:d2:ea:d2:e3:
28:6d:90:af:b8:7d:67:3d:44:e1:67:5e:25:21:b2:32:cb:4b:
73:b7:c0:09:e0:25:f0:6a:e5:be:44:24:de:49:7c:c9:d7:83:
11:1c:6b:dd:59:de:40:29:d5:01:a9:92:96:24:1a:03:74:d8:
3f:73:25:ff:ce:20:c6:a9:5c:01:59:3d:11:90:a9:eb:50:a6:
d5:db:0b:a7:e6:ab:08:bf:c0:95:cf:75:d8:9b:09:85:c8:52:
42:1e:2c:c5:a9:4e:5d:cd:b0:10:07:4f:13:4e:b0:73:64:4a:
34:3d:f6:9e:73:f4:4e:d8:6c:bf:cd:b1:f4:1f:c3:3f:67:b1:
6f:4f:e4:32:4a:5f:b7:99:2b:3d:53:cc:44:ed:9e:0c:e9:c0:
fb:0e:a3:32:32:1f:8c:b4:d7:9c:5e:31:97:74:92:7c:f6:fa:
a4:03:2d:dc:33:5a:07:cd:6a:89:7b:5f:86:5b:4f:51:7a:c0:
da:66:d7:f2:f0:8c:2a:86:1f:42:64:25:45:1c:54:e4:f2:06:
53:af:f3:e2:60:13:61:42:90:9d:e4:db:bf:20:a0:0b:b0:14:
11:9a:dd:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:55:37 2025 by rpki-client