Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
File: unnFAIApfLnMDMk07jifUMPnPUo.mft (raw, json)
Hash identifier: pOApuU323HkT4sZSxZ4eZChVbqKE9MH4vFfX/tjQYZU=
Subject key identifier: 0B:59:22:BE:55:D6:19:3A:4D:67:F3:EB:2B:5F:D0:A3:C4:EA:6A:65
Authority key identifier: BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
Certificate issuer: /CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Certificate serial: 019A71B7FB9341183B4C87810D0F964AB88E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
Manifest number: 05ED
Signing time: Tue 11 Nov 2025 07:01:14 +0000
Manifest this update: Tue 11 Nov 2025 07:01:14 +0000
Manifest next update: Wed 12 Nov 2025 07:01:14 +0000
Files and hashes: 1: CpPRk_TNW4CH4jbImpFoaI2OcL4.roa (hash: eYYsy6V5aRdmdwv40uWtw/bgoED55t23eDlp8kMf818=)
2: unnFAIApfLnMDMk07jifUMPnPUo.crl (hash: LkjmobcI9nRwWXhVfvozLzNTLjnDo6dYWyppB2pVnj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:fb:93:41:18:3b:4c:87:81:0d:0f:96:4a:b8:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a
Validity
Not Before: Nov 11 07:01:14 2025 GMT
Not After : Nov 12 07:01:14 2025 GMT
Subject: CN=0b5922be55d6193a4d67f3eb2b5fd0a3c4ea6a65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:84:9a:96:37:b6:b8:6d:3a:e6:cc:26:82:09:
40:39:b2:9a:5e:b4:a9:e2:69:6e:90:d4:de:c4:a0:
63:4b:46:d2:a6:c6:0e:74:89:29:d5:8b:f8:5b:00:
dc:03:66:52:07:5f:eb:69:80:7c:a8:70:5d:c5:bd:
57:fd:1e:b7:7b:d4:a6:7f:6a:35:7d:d6:51:0f:73:
e4:e2:c2:d7:e4:e2:47:c0:57:7a:84:24:2d:6c:72:
25:db:11:b2:2b:04:34:50:1a:b1:0e:f4:f3:ca:bf:
8a:e0:a4:a0:8e:ed:c3:80:35:c6:e7:5c:51:65:9c:
75:c9:af:34:af:9b:5b:6b:f9:e5:5b:03:df:b1:f8:
4b:ed:b3:33:31:50:1e:b7:1f:fb:33:c4:48:72:b4:
38:2b:04:8f:de:c7:6f:2c:45:81:ff:e7:69:c1:e0:
8c:a7:5d:8b:82:0a:9b:48:26:77:09:c3:e3:5f:a1:
a6:21:8b:7b:94:c8:2d:89:fe:df:63:41:37:7b:ee:
07:82:20:58:f8:5c:69:07:e5:1f:44:ff:36:a5:95:
b1:6a:4d:cc:d8:e5:e8:f7:3c:6c:f5:4e:89:f0:5c:
c5:09:32:1b:2c:cb:50:31:79:dc:56:7c:7f:63:be:
45:9a:7d:d5:5e:bb:e1:2c:77:cc:b5:4c:1a:ac:b1:
d5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:59:22:BE:55:D6:19:3A:4D:67:F3:EB:2B:5F:D0:A3:C4:EA:6A:65
X509v3 Authority Key Identifier:
keyid:BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:f4:68:02:bc:73:21:3c:05:6c:84:bc:54:c0:5e:4c:cc:d9:
13:95:d8:54:f4:32:f9:8b:8d:c2:dc:07:e2:4f:93:7b:39:75:
99:3e:7f:62:43:e5:a4:55:c8:83:68:fd:33:c8:11:c9:cf:38:
1c:c5:8c:a2:97:3b:2a:4b:5a:63:98:f4:cb:4c:94:8d:7b:8d:
35:5f:50:84:f9:1b:95:99:11:24:0b:31:3c:86:7d:20:d6:d6:
b0:76:57:4c:ec:14:3a:34:0e:26:32:88:1c:30:bc:6c:f1:e1:
eb:d7:b7:a9:12:3e:15:3c:54:6b:82:71:51:e3:d0:d4:dd:57:
59:02:90:f1:62:16:e1:f1:09:12:2f:16:86:1d:bd:f3:dc:00:
48:2a:e7:58:d1:a8:13:c6:e4:8b:79:d0:b5:45:a8:32:e1:39:
1d:a0:83:e9:39:35:d8:30:a5:40:e1:f7:31:ce:10:e1:3c:84:
b6:8d:90:a5:87:6a:f0:73:1d:01:fd:91:dd:21:f7:a6:8b:0b:
a2:f1:2c:d9:70:bf:15:25:ee:6c:97:a3:b4:ba:04:46:8c:aa:
47:91:43:06:e4:fe:39:46:d1:03:89:56:54:62:50:c3:15:cf:
44:8f:b1:b2:59:eb:ea:a9:72:92:3d:bb:6a:87:14:fd:0d:40:
d9:fb:fa:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:06:00 2025 by rpki-client