Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
File: uH9ej-619ec7CXtmZX7tjbl0pA4.mft (raw, json)
Hash identifier: VLuRLHJt0q0nIkK0pwbSOyldxrHZrQimRL2PzPK+4BQ=
Subject key identifier: 30:EF:F2:BC:D7:7D:42:C5:D8:C6:D1:75:66:C3:10:72:E4:BF:20:1B
Authority key identifier: B8:7F:5E:8F:EE:B5:F5:E7:3B:09:7B:66:65:7E:ED:8D:B9:74:A4:0E
Certificate issuer: /CN=b87f5e8feeb5f5e73b097b66657eed8db974a40e
Certificate serial: 019A4EF55E7C4279908794825201033CD6A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
Manifest number: 0EEA
Signing time: Tue 04 Nov 2025 13:01:34 +0000
Manifest this update: Tue 04 Nov 2025 13:01:34 +0000
Manifest next update: Wed 05 Nov 2025 13:01:34 +0000
Files and hashes: 1: uH9ej-619ec7CXtmZX7tjbl0pA4.crl (hash: RYqyEMajdfE9cPsTeATMUtSM2xZmrvKbwKDoI7eypR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:5e:7c:42:79:90:87:94:82:52:01:03:3c:d6:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87f5e8feeb5f5e73b097b66657eed8db974a40e
Validity
Not Before: Nov 4 13:01:34 2025 GMT
Not After : Nov 5 13:01:34 2025 GMT
Subject: CN=30eff2bcd77d42c5d8c6d17566c31072e4bf201b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:79:21:62:6a:25:9b:07:58:a4:4b:f7:0b:4f:
d9:0d:ff:3a:ae:6d:6b:6e:19:5c:2c:e7:99:ce:61:
e5:9f:a4:e8:44:7a:68:de:7e:3c:ee:f7:1a:3d:e8:
c6:ab:2f:b6:21:e9:6c:35:40:3d:82:00:04:0a:25:
68:84:5e:d8:b7:8f:d2:df:1f:be:b6:94:9f:a8:9c:
f9:4f:e5:6c:63:2e:58:35:a9:05:19:a2:9c:c7:91:
4b:3f:df:4c:4d:06:66:cb:f0:8f:bd:17:97:59:ca:
bb:b1:22:0e:fd:54:bc:06:e4:b4:db:14:bc:b8:0e:
87:ec:22:02:32:d6:90:83:cd:93:07:3a:04:6c:97:
e9:a3:68:b2:3e:ee:e7:9f:e8:c4:46:e5:66:b8:1f:
01:f4:57:1b:eb:12:cd:d8:34:cc:ae:e6:f9:22:27:
d2:9b:97:fb:41:16:df:4d:d2:bf:6d:6e:69:9a:a2:
0f:7a:d0:97:3e:8b:0b:36:e1:f7:72:85:7c:7a:19:
80:a4:9c:17:39:81:9d:55:92:67:ce:94:92:20:c3:
47:2e:e2:d2:e0:58:96:84:69:8a:05:38:2e:5f:54:
52:18:39:cb:67:52:b4:07:7f:21:90:fb:26:5b:cc:
23:10:de:74:4d:18:93:14:0b:15:8e:77:06:e2:44:
f3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EF:F2:BC:D7:7D:42:C5:D8:C6:D1:75:66:C3:10:72:E4:BF:20:1B
X509v3 Authority Key Identifier:
keyid:B8:7F:5E:8F:EE:B5:F5:E7:3B:09:7B:66:65:7E:ED:8D:B9:74:A4:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uH9ej-619ec7CXtmZX7tjbl0pA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ffc00d-3316-4286-8932-cc60a5fdeeb2/1/uH9ej-619ec7CXtmZX7tjbl0pA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:8a:9f:4d:19:53:64:85:10:45:79:c2:d1:23:00:b5:80:6f:
db:57:0b:6d:20:ad:f1:68:b6:ec:67:c7:17:91:38:d8:fc:8d:
a2:db:7a:9b:97:18:cf:1e:df:31:dc:a0:4e:be:83:ea:12:9a:
52:1b:22:2f:3e:2f:1a:25:a0:68:91:6e:50:42:57:87:83:fc:
c8:fa:e6:37:32:0d:14:f2:c2:58:82:ae:fa:eb:ea:68:a1:52:
14:c6:58:4f:03:e1:4a:9e:6c:93:53:33:59:e7:f1:59:b4:0a:
0a:d4:b7:ab:26:26:53:0a:5d:85:71:0d:98:be:a9:81:70:dc:
08:6e:e9:2d:70:d0:06:a2:37:c3:5d:40:6b:41:c0:68:ef:ec:
0f:44:19:b6:aa:0c:a7:e1:80:56:b0:f1:ea:72:32:fb:cb:a0:
db:de:2e:fb:d3:37:0e:a8:c4:c6:01:85:f2:f2:a0:f1:fc:bc:
21:be:54:45:dc:78:7f:7b:98:4b:14:78:7d:5b:ba:a7:d4:d3:
2d:1b:87:40:6e:0e:7f:82:16:02:45:d3:64:be:32:ba:ae:16:
06:8d:c0:ea:03:8e:d7:a4:9f:d3:88:bc:3a:35:38:72:26:9d:
c3:99:63:9a:d3:f8:a7:26:04:b2:de:1c:6e:8c:99:7f:5d:c0:
f0:0a:ec:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:15:21 2025 by rpki-client