Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
File: uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft (raw, json)
Hash identifier: +EL41AWyZ2PGh57fhgnvEOh8JeHEttRjCEWRJiZi62c=
Subject key identifier: 00:E7:B3:47:D1:EC:39:6F:A4:B7:E3:B6:65:B6:07:C9:16:4B:42:AC
Authority key identifier: B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
Certificate issuer: /CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Certificate serial: 019A71B88D66B4118F095C7EB9689A6A54B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
Manifest number: 0FDA
Signing time: Tue 11 Nov 2025 07:01:51 +0000
Manifest this update: Tue 11 Nov 2025 07:01:51 +0000
Manifest next update: Wed 12 Nov 2025 07:01:51 +0000
Files and hashes: 1: P77Q3SiMGocGRB6eMcUK3MHjTkI.roa (hash: s4PL8KdADdPsj9L9e3HHEkTIVlBNiN0s/bQOnwu+zOw=)
2: uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl (hash: RGFFYVwV/GZ66tIlDbpG9VqxBTY1wGkzoU7OSn9NnRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:8d:66:b4:11:8f:09:5c:7e:b9:68:9a:6a:54:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d3ecb8f711e0b92b505b8a0f7a5ee042291395
Validity
Not Before: Nov 11 07:01:51 2025 GMT
Not After : Nov 12 07:01:51 2025 GMT
Subject: CN=00e7b347d1ec396fa4b7e3b665b607c9164b42ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:40:d5:38:11:58:f7:82:9d:75:ce:24:3f:a6:
7a:91:85:45:b1:23:5c:42:dc:a6:07:b4:63:b0:8b:
a8:68:b2:77:0d:a5:ae:2e:fc:bb:67:4b:85:2e:a9:
3e:67:6e:b0:9c:5f:7a:5f:53:ba:9a:89:5d:eb:7d:
a0:04:bc:6f:a9:91:91:1b:b5:c7:a7:af:7e:0e:d3:
2f:bc:90:0e:ea:a4:74:a1:0b:c7:b3:ea:b2:18:10:
8f:d1:d0:b6:8e:6c:91:aa:26:21:9f:e8:b5:4c:34:
2c:5c:55:63:de:18:bf:e1:4f:7b:a7:c8:b5:f5:24:
b6:d2:f4:6e:a2:5a:da:cd:0f:47:b8:2d:71:7d:8a:
35:51:94:1f:52:8e:db:dc:b1:99:cd:fb:07:8d:75:
0f:f2:83:99:ea:18:1d:1b:2b:86:72:87:6e:a1:a8:
23:ad:4f:e8:4a:1c:97:26:06:ca:d5:f0:f2:cb:29:
77:17:91:12:e0:ef:ed:bb:34:b7:c6:76:e0:14:e2:
7b:71:87:76:6d:45:a6:d1:d7:ad:b6:3a:86:cd:f3:
dd:25:7e:fe:07:76:6c:e2:48:af:9e:90:f4:d3:2a:
0c:e1:8b:a9:c0:47:b7:79:45:c4:2d:24:4f:45:3b:
ca:14:88:06:a3:d1:c3:b4:47:43:88:3d:26:0a:1d:
34:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E7:B3:47:D1:EC:39:6F:A4:B7:E3:B6:65:B6:07:C9:16:4B:42:AC
X509v3 Authority Key Identifier:
keyid:B8:D3:EC:B8:F7:11:E0:B9:2B:50:5B:8A:0F:7A:5E:E0:42:29:13:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNPsuPcR4LkrUFuKD3pe4EIpE5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/368a8d-eff2-49c2-a963-a1861e53544d/1/uNPsuPcR4LkrUFuKD3pe4EIpE5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:81:b4:46:8c:19:ba:29:3c:50:df:aa:a5:5f:36:ab:b9:72:
7c:3c:b3:15:40:27:a2:a0:bf:ff:1f:e9:da:a7:24:f4:11:c6:
a4:69:7b:72:f3:00:36:9a:91:c7:3e:39:b7:ed:d3:e6:b9:41:
3f:a7:82:4f:cc:e5:43:a7:4e:00:ec:1c:3e:fa:f7:e3:d7:04:
32:5c:01:80:d9:12:2a:21:0f:45:75:6f:04:4b:66:9a:6e:08:
4c:8e:77:c3:78:33:4f:68:a6:df:fe:38:72:e0:e7:55:47:ac:
f1:a3:1a:43:d0:2a:f0:e9:e3:e1:0b:3a:95:9d:77:3a:23:19:
e8:48:50:40:4c:1e:3e:64:d7:0a:7d:9e:55:83:7e:ad:40:ab:
1d:07:aa:bb:32:ee:6a:9b:6f:7b:c4:3f:3b:6c:8d:31:17:ed:
77:19:20:16:0a:fd:cb:c4:a9:15:e7:06:f3:f9:1b:49:a9:d8:
24:04:be:b2:eb:61:af:3f:53:bc:1a:0e:14:d5:84:86:04:1f:
f5:46:a0:ee:8a:cd:50:b2:17:2e:d1:ce:b9:f5:22:e3:67:f0:
d7:cb:f8:60:72:45:9c:ec:c2:c6:80:dc:f4:cd:93:d7:c7:ed:
cb:8e:54:fa:7c:16:a1:2b:48:43:f9:30:54:7c:17:b8:e6:e2:
75:55:bf:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:19 2025 by rpki-client