Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.mft
File: uFK2pNRayK4a7VTG9ayO1v88Hdc.mft (raw, json)
Hash identifier: 2jcruk84cHgdM8P2OCcKGCD6r+ZESUYbYoold9g/RtM=
Subject key identifier: 3C:C5:3E:09:75:F5:67:99:55:35:33:A8:8F:E4:A4:CD:82:92:24:F9
Authority key identifier: B8:52:B6:A4:D4:5A:C8:AE:1A:ED:54:C6:F5:AC:8E:D6:FF:3C:1D:D7
Certificate issuer: /CN=b852b6a4d45ac8ae1aed54c6f5ac8ed6ff3c1dd7
Certificate serial: 019A71B7E6E3296EEB42B9B61222E1F31D2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFK2pNRayK4a7VTG9ayO1v88Hdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.mft
Manifest number: 0CB3
Signing time: Tue 11 Nov 2025 07:01:08 +0000
Manifest this update: Tue 11 Nov 2025 07:01:08 +0000
Manifest next update: Wed 12 Nov 2025 07:01:08 +0000
Files and hashes: 1: uFK2pNRayK4a7VTG9ayO1v88Hdc.crl (hash: iVGeTS+r3tIIozFBTqPObWBfqWzdK5X6RUqC3ScjqXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uFK2pNRayK4a7VTG9ayO1v88Hdc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:e6:e3:29:6e:eb:42:b9:b6:12:22:e1:f3:1d:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b852b6a4d45ac8ae1aed54c6f5ac8ed6ff3c1dd7
Validity
Not Before: Nov 11 07:01:08 2025 GMT
Not After : Nov 12 07:01:08 2025 GMT
Subject: CN=3cc53e0975f56799553533a88fe4a4cd829224f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:09:45:5d:e5:5a:69:6a:42:74:11:cd:19:40:
05:5f:9e:1d:c3:cf:81:9a:d1:be:3f:22:3c:c3:9c:
b4:dc:63:ba:07:bc:b4:d5:e7:9d:2e:eb:d6:43:b5:
9a:a0:d4:3f:56:53:4d:5f:31:ec:ef:59:46:cf:b4:
88:18:fc:46:01:a8:b8:dd:f5:ea:08:5e:09:7d:cb:
cb:3b:97:77:0a:a1:a3:eb:5d:21:e6:bd:52:d4:2a:
74:ed:67:64:8e:82:ae:65:54:83:66:b7:25:34:33:
a4:81:b4:52:94:c7:f4:66:8a:5a:04:82:fe:b9:5d:
1b:b0:a6:ad:0c:95:09:74:de:a8:97:04:90:80:11:
00:76:62:d3:92:c2:8a:16:4b:c1:93:b8:bb:a6:f5:
9f:e5:98:24:89:f7:3b:1e:9a:8c:33:bd:f0:91:c8:
09:ed:9e:ff:f9:53:4d:22:5c:7b:18:40:35:d7:b9:
04:2f:31:2b:51:55:56:40:c7:09:fc:3a:4b:12:e7:
7e:b3:81:3f:b7:e0:75:dd:12:1c:b9:9b:ad:4b:00:
1f:df:6d:38:3f:38:a5:a3:9c:8a:c2:a9:cc:3a:11:
1d:ec:bd:9d:9f:cf:a0:9e:f4:6d:fc:70:5d:29:f3:
24:8b:c1:e1:4d:ef:2e:bb:89:1f:f5:8d:f4:97:c9:
7b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C5:3E:09:75:F5:67:99:55:35:33:A8:8F:E4:A4:CD:82:92:24:F9
X509v3 Authority Key Identifier:
keyid:B8:52:B6:A4:D4:5A:C8:AE:1A:ED:54:C6:F5:AC:8E:D6:FF:3C:1D:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFK2pNRayK4a7VTG9ayO1v88Hdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/ee479f-dd4e-492f-b6a6-3c46cd580789/1/uFK2pNRayK4a7VTG9ayO1v88Hdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:b1:bb:6a:e8:2b:dd:2e:00:78:f4:c7:14:ed:7d:fb:71:a5:
f7:dd:d1:a8:62:1f:ca:a4:37:57:73:24:fb:78:b9:da:6a:e4:
31:82:e0:b0:62:e2:95:75:b5:71:fd:b0:37:e4:e0:b9:78:db:
27:8b:c1:ce:8a:7e:0a:71:e0:3c:00:8f:ae:55:61:b8:db:80:
d8:e8:37:04:db:c3:56:55:6f:cb:de:30:7a:61:15:75:d3:7a:
66:49:55:ea:8c:fb:8b:c9:66:88:52:5d:bc:09:c7:8a:a5:0b:
09:39:f3:74:7c:91:34:5e:e3:cb:1d:51:0f:f7:ac:96:ff:25:
ec:c9:56:fd:6a:80:fa:a0:28:61:e0:30:84:2b:2f:2a:df:48:
93:6c:4f:1f:67:5c:78:1e:1e:0b:2c:0c:fe:66:84:af:be:41:
a4:86:c2:f6:9a:21:23:5d:b2:20:2e:b6:1a:5f:57:ad:6f:5a:
65:e9:de:f6:60:c3:c0:c0:41:40:68:e5:9d:2f:8c:41:75:05:
60:44:75:d3:fc:49:29:22:34:6f:28:07:5d:81:49:c9:07:c7:
9a:08:fb:79:bf:bb:8d:e6:42:34:f4:23:6d:69:63:9b:f5:b5:
b1:4b:57:c1:93:7d:78:03:96:95:55:68:e2:35:1a:05:20:32:
4e:ff:f5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:48 2025 by rpki-client