Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json)
Hash identifier: slLHiqEaOaTl0tuNWVCcGrQuB7u1tX/M5onSSfu+Rcs=
Subject key identifier: ED:93:AD:82:BB:25:C0:52:16:2A:90:3D:1B:75:75:E7:4D:60:95:EA
Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Certificate serial: 019A71B7D34E4EAEB31C88434CF2E91EDB4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
Manifest number: 0AC2
Signing time: Tue 11 Nov 2025 07:01:03 +0000
Manifest this update: Tue 11 Nov 2025 07:01:03 +0000
Manifest next update: Wed 12 Nov 2025 07:01:03 +0000
Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: 2Gl9fpFr9ieQe3OkdCD3ZGXtWD0AcFnLQ8MPI9LKjH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:d3:4e:4e:ae:b3:1c:88:43:4c:f2:e9:1e:db:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f
Validity
Not Before: Nov 11 07:01:03 2025 GMT
Not After : Nov 12 07:01:03 2025 GMT
Subject: CN=ed93ad82bb25c052162a903d1b7575e74d6095ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1c:8a:fe:ba:a3:26:e5:9c:36:a1:23:7e:56:
34:dd:a2:da:d7:1b:b0:c4:1a:f2:e6:45:54:e5:fd:
f5:7c:37:10:64:d9:1e:71:5e:69:3b:a8:3f:a8:8a:
70:f3:6a:8e:d2:d5:b3:3d:c6:29:c9:37:65:84:3b:
08:c4:2f:78:52:c7:0c:e5:2a:58:8e:f7:96:8c:61:
f2:b8:30:d7:63:dc:7e:2b:ef:c4:60:8b:4d:46:0f:
33:e9:e2:c6:07:ff:8a:11:b8:38:10:51:28:9c:84:
de:5f:9c:a4:11:96:ef:fb:4e:36:13:66:38:4c:f6:
84:ca:ea:ef:07:19:dc:c5:ae:40:20:65:e2:0d:ba:
bd:bd:bf:7c:3d:38:10:c5:1b:00:00:21:76:86:72:
e2:be:67:83:96:30:de:56:65:a4:90:db:80:88:42:
9d:62:3b:41:42:da:9f:67:68:0b:e3:f0:2c:8c:68:
51:b2:4d:50:c3:7c:a7:5c:2d:9f:b4:99:85:c8:5d:
a2:94:c8:b0:c3:d2:1a:d0:25:88:ba:c2:3c:14:ca:
89:7f:6c:1e:5c:27:9d:a8:99:4b:ee:88:a0:fa:fa:
70:0c:86:e6:1a:aa:d0:6f:e7:43:e7:b8:cb:49:59:
b7:f2:ac:35:d7:2f:cf:ec:ad:fb:dc:b3:db:23:5f:
a1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:93:AD:82:BB:25:C0:52:16:2A:90:3D:1B:75:75:E7:4D:60:95:EA
X509v3 Authority Key Identifier:
keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:af:3d:4e:c7:4d:44:ac:8c:01:5f:d6:a8:b0:ff:83:a0:59:
6c:e3:70:11:5b:3b:bf:e9:5d:d7:74:c0:2a:04:b0:ff:93:04:
b2:9f:8a:eb:c7:2d:74:4c:c0:09:73:05:90:47:26:41:8f:43:
91:e0:99:94:77:b7:13:ee:a3:1a:fb:60:c7:84:1f:dd:9c:b2:
32:fc:13:c1:75:ff:fc:27:c7:03:74:c1:e0:a2:c1:06:1d:24:
27:29:93:33:77:4f:b8:f6:bc:aa:60:af:67:e1:25:7f:8f:9d:
ec:c7:cc:cf:a8:f2:3a:03:11:d5:40:14:f5:8c:3d:88:fc:7e:
41:8c:72:97:34:74:1f:87:06:46:01:89:83:a1:76:2b:f7:39:
a1:9f:df:50:fc:9c:98:74:59:3b:03:de:30:82:be:e2:79:aa:
15:af:d5:e6:76:83:a2:5a:04:14:14:37:f4:fb:96:7a:f9:5a:
4e:85:5c:fa:bf:de:35:d3:a5:0e:16:b1:14:c2:ee:41:ff:3c:
12:66:38:37:9d:0f:8a:4e:c2:1a:72:bf:b2:a7:a3:f1:60:f3:
58:98:66:d4:b4:a5:5a:fa:49:c5:6e:5a:10:ec:67:ee:f4:ea:
3c:32:04:60:5e:78:9c:d4:a9:65:ee:6b:a4:37:3b:f6:54:a5:
b8:f8:a3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:00 2025 by rpki-client