Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.mft
File: uiZ7jiFT-_yZA4R7RQKivvRLVuY.mft (raw, json)
Hash identifier: ghHJr2jBr3nSMlWRo79Pycw62mXXyAXiSVuSyCLTq24=
Subject key identifier: A0:13:08:FF:90:4D:09:BB:B5:6D:9B:A2:20:9D:D2:83:ED:FD:96:79
Authority key identifier: BA:26:7B:8E:21:53:FB:FC:99:03:84:7B:45:02:A2:BE:F4:4B:56:E6
Certificate issuer: /CN=ba267b8e2153fbfc9903847b4502a2bef44b56e6
Certificate serial: 019A71EE821B37A7B7B4B3601947F0D94E37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uiZ7jiFT-_yZA4R7RQKivvRLVuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.mft
Manifest number: B7
Signing time: Tue 11 Nov 2025 08:00:47 +0000
Manifest this update: Tue 11 Nov 2025 08:00:47 +0000
Manifest next update: Wed 12 Nov 2025 08:00:47 +0000
Files and hashes: 1: UssRM0mPdyIItDZpJc0-R-nRMQk.roa (hash: +PLBHSP6JBeTIBc6ShqrJkAhfrEQDf8RilFXNDdoLBc=)
2: uiZ7jiFT-_yZA4R7RQKivvRLVuY.crl (hash: chqrVzOlehZP4XzicxUxuXGMR3r4vtDfGfYtapA+pws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.mft
rsync://rpki.ripe.net/repository/DEFAULT/uiZ7jiFT-_yZA4R7RQKivvRLVuY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:82:1b:37:a7:b7:b4:b3:60:19:47:f0:d9:4e:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba267b8e2153fbfc9903847b4502a2bef44b56e6
Validity
Not Before: Nov 11 08:00:47 2025 GMT
Not After : Nov 12 08:00:47 2025 GMT
Subject: CN=a01308ff904d09bbb56d9ba2209dd283edfd9679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:af:41:d2:c1:bf:2f:8d:8c:3f:88:d3:31:94:
a2:b3:c7:24:ff:01:d2:bb:bb:ff:4f:88:a7:ad:30:
d5:66:37:fc:b2:24:f2:e3:89:06:f1:73:3b:c5:7d:
c7:7f:12:51:33:f7:7b:60:6b:6a:1a:b2:26:0d:6f:
d8:25:03:69:f8:87:0a:7e:f2:b0:55:f5:01:ec:95:
f4:fb:ac:b9:db:5c:ab:f8:2f:3e:b1:3b:10:13:e7:
94:0c:69:24:66:d6:d2:a0:68:00:8e:f3:ec:22:1d:
fa:20:4b:8c:05:c3:3c:4b:e3:1f:0d:61:1c:7f:6f:
31:82:22:15:2c:8b:c2:8e:89:23:bc:35:62:8e:ac:
e5:c0:e5:d7:e6:9b:f3:a0:5d:69:b4:d0:19:34:06:
16:4c:8b:82:a0:39:d3:8d:79:2c:99:5c:14:82:b5:
f0:7f:88:e9:7c:e3:64:99:3e:2f:87:f7:ea:08:e7:
d2:09:cd:26:ef:ed:8c:2c:1a:17:e6:a7:9a:01:58:
5d:5c:fb:af:5c:08:f9:13:f4:c4:ea:fc:bb:d8:63:
8d:64:0c:ac:fa:1f:54:59:b7:9e:be:8e:4b:b4:9f:
50:4e:ea:00:35:c1:aa:a4:f3:9a:3d:a1:87:31:ec:
cc:a1:a2:d7:db:8e:c7:e1:5c:85:4e:b8:d2:40:ad:
92:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:13:08:FF:90:4D:09:BB:B5:6D:9B:A2:20:9D:D2:83:ED:FD:96:79
X509v3 Authority Key Identifier:
keyid:BA:26:7B:8E:21:53:FB:FC:99:03:84:7B:45:02:A2:BE:F4:4B:56:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uiZ7jiFT-_yZA4R7RQKivvRLVuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/985da5-788c-47a0-ab8e-8854b019db9a/1/uiZ7jiFT-_yZA4R7RQKivvRLVuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:61:38:d5:44:38:95:75:69:e4:5f:99:ef:b0:c5:8d:21:2e:
2d:89:59:6f:ce:fe:80:58:04:1c:dc:4a:eb:63:1a:64:54:66:
c8:7e:c9:a0:b1:ef:ad:4c:66:e6:44:4e:99:19:06:52:9f:a1:
fc:0c:25:48:a3:31:7f:c4:b1:dd:eb:90:9f:84:da:7e:42:d4:
1b:c5:5f:d2:a9:09:3c:f7:b3:8a:d8:40:b7:94:93:88:40:54:
26:41:b1:ba:ba:76:7c:92:5d:f9:61:f3:2f:ca:3d:8f:3c:06:
50:26:fa:51:48:e2:ab:ef:8d:ce:57:72:45:28:8f:06:96:05:
bf:69:44:b9:b0:c8:33:15:1d:11:25:39:a6:ca:5c:44:bf:4f:
3d:0a:a8:6c:26:f0:7d:e6:ac:c3:6e:3d:f1:52:20:32:20:75:
ed:61:50:51:13:1a:cd:fc:a2:d9:6e:13:30:90:72:95:68:63:
a2:21:12:bd:5f:b8:aa:80:37:fb:d5:26:63:fe:1f:82:92:b0:
15:eb:3a:37:49:d3:f7:7f:ca:4b:24:bf:48:64:07:c5:a2:df:
9d:fc:6a:18:6a:f9:9f:73:0a:b4:95:c5:6b:80:4b:59:6d:51:
27:b9:86:17:0e:8c:2e:45:19:cd:7d:14:c3:7e:1b:da:d1:3a:
d8:bd:bb:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:50:38 2025 by rpki-client