Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
File: uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft (raw, json)
Hash identifier: O39xGXjc8PmwO3ziQGn0FFAwp5Z61QCEAn5BEIp6594=
Subject key identifier: AA:B6:92:EB:FF:3D:34:EB:AE:2D:47:EF:F3:AE:38:35:AA:9F:49:07
Authority key identifier: B9:14:53:15:B4:4C:B6:5D:2A:79:1A:0A:E5:82:36:64:D0:C4:44:5E
Certificate issuer: /CN=b9145315b44cb65d2a791a0ae5823664d0c4445e
Certificate serial: 019A706E44875F4809968DDB0AE34CD83173
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
Manifest number: 171A
Signing time: Tue 11 Nov 2025 01:01:05 +0000
Manifest this update: Tue 11 Nov 2025 01:01:05 +0000
Manifest next update: Wed 12 Nov 2025 01:01:05 +0000
Files and hashes: 1: JTEfgbcrr8NRTkw-w0rbLDkwOBo.roa (hash: pDGrFl+zPntVOdC+wAqPCIkri5GYwFIWXTpGxCwXD/o=)
2: uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl (hash: 4VHISD+D+rYxWRQfBFRFVdN97cIuGIfZ4S9fYuGJ1Ys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 01:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:6e:44:87:5f:48:09:96:8d:db:0a:e3:4c:d8:31:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9145315b44cb65d2a791a0ae5823664d0c4445e
Validity
Not Before: Nov 11 01:01:05 2025 GMT
Not After : Nov 12 01:01:05 2025 GMT
Subject: CN=aab692ebff3d34ebae2d47eff3ae3835aa9f4907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:38:7c:a2:d0:e4:78:b7:0d:ef:1f:e4:3f:42:
fc:44:ae:22:69:c0:c0:7b:da:4b:72:71:54:68:6b:
83:7d:96:7d:d9:ac:f7:00:28:e1:f8:f2:a1:12:0b:
95:6d:a9:ba:db:a3:22:fe:0d:3b:f4:06:5b:ce:4c:
09:72:07:aa:e7:d3:f3:13:0a:2a:fc:b8:8f:e3:d4:
08:e5:9a:39:5c:c5:f0:57:d6:ec:12:81:1c:62:33:
b6:4f:6c:62:11:fe:b0:20:4b:3b:fa:9b:85:21:37:
6e:c4:18:08:48:b1:ed:7d:fb:25:d3:31:e1:df:be:
f4:43:3e:62:e0:c7:1f:f0:4d:98:af:8e:2f:1e:5a:
70:94:c2:0a:7f:b2:6b:db:94:8b:42:52:95:f0:3e:
95:3e:ed:70:86:ba:2d:fa:60:65:34:1a:57:8b:ac:
c8:38:4a:0d:36:14:b2:19:4b:ec:1f:9e:ea:9c:d3:
11:17:5f:19:05:5c:78:65:e6:11:e3:00:80:9a:84:
68:a5:7b:7f:ab:13:22:0a:75:f4:61:95:51:80:51:
c5:b4:2a:5c:c1:9c:07:a8:c0:de:87:f3:78:11:1a:
92:d9:3b:49:63:11:3d:4e:0b:0a:72:18:c2:fb:2b:
59:e2:f6:bf:52:c4:8b:25:ee:ec:58:25:fc:67:e3:
e0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B6:92:EB:FF:3D:34:EB:AE:2D:47:EF:F3:AE:38:35:AA:9F:49:07
X509v3 Authority Key Identifier:
keyid:B9:14:53:15:B4:4C:B6:5D:2A:79:1A:0A:E5:82:36:64:D0:C4:44:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRRTFbRMtl0qeRoK5YI2ZNDERF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/4f887e-3f6c-48a3-bb03-dfb946d17d0c/1/uRRTFbRMtl0qeRoK5YI2ZNDERF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:81:8d:d3:89:64:bb:4f:b8:46:83:d1:20:20:9f:7e:ef:84:
9a:de:e8:83:8b:0d:fd:6f:30:1a:63:0a:c9:e1:18:e6:43:d1:
17:af:3c:6c:98:6b:70:8f:d4:bf:7f:4f:a0:5b:3f:bc:7f:45:
8f:1d:35:e1:fb:46:63:82:38:e4:8f:9e:18:f0:7f:24:07:7a:
ae:d4:49:1d:31:3a:10:bb:f3:8a:1b:1d:5b:5a:5c:99:18:ed:
68:9c:f1:99:65:2a:07:b8:16:91:de:02:96:75:3d:a5:6c:3b:
ad:dd:0c:22:af:33:b5:70:5a:4c:81:fb:9c:fc:20:08:6f:b1:
e1:e6:9d:1d:af:09:d2:ea:19:3c:ba:5a:39:28:ab:9a:ef:2a:
5d:e5:30:8f:53:40:6f:63:44:a7:a7:25:e9:87:b3:6e:96:84:
f7:a0:bf:e7:3b:e7:9d:e5:88:cc:85:1d:9a:f3:6f:bd:3f:af:
75:30:d9:83:77:94:80:15:a0:d6:4a:15:5a:85:5d:c9:a9:07:
ec:d5:39:60:26:22:f5:11:78:3b:89:c6:42:59:21:16:22:80:
87:35:87:d0:55:74:bf:2d:9b:54:d3:40:62:52:7e:77:7b:34:
a6:59:0e:2b:ac:e0:b4:e7:f6:77:37:c9:d6:3d:d3:8f:45:24:
dc:2a:9f:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:03 2025 by rpki-client