Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
File: UOpay0R7LOuTKgPykAgtx2-OQOM.mft (raw, json)
Hash identifier: 94LLEal+xv75ctYTkbKIOkBt+sOliXkChx1EtDgdsdk=
Subject key identifier: 3D:42:B5:3B:4E:E8:3A:7C:D7:E8:2F:F0:ED:6B:75:F1:70:AC:EF:4C
Authority key identifier: 50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
Certificate issuer: /CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Certificate serial: 019A2741BFE262DE19D33D305D7C78D9ED10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
Manifest number: 16F8
Signing time: Mon 27 Oct 2025 20:00:11 +0000
Manifest this update: Mon 27 Oct 2025 20:00:11 +0000
Manifest next update: Tue 28 Oct 2025 20:00:11 +0000
Files and hashes: 1: UOpay0R7LOuTKgPykAgtx2-OQOM.crl (hash: qbJbBKWUoLEBgi8wjnAYWsYq4rRyeTCO1w1XKGO5wkI=)
2: UPs4nn0eBay_fIEXwzFrziOGHlg.roa (hash: n1rQX2er8ehY5mv/Oe6cZ3YcfGOcUxMxZAxeUBrIysk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 20:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:41:bf:e2:62:de:19:d3:3d:30:5d:7c:78:d9:ed:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3
Validity
Not Before: Oct 27 20:00:11 2025 GMT
Not After : Oct 28 20:00:11 2025 GMT
Subject: CN=3d42b53b4ee83a7cd7e82ff0ed6b75f170acef4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0f:94:e0:be:bb:ba:aa:46:ff:9f:33:7e:17:
6e:42:74:d4:2f:6f:8c:fe:0f:09:19:99:0f:76:94:
d7:99:00:ab:dc:a0:61:9e:5b:b7:11:89:1d:51:da:
10:72:3d:02:a3:5d:03:c6:7a:51:6a:f4:7e:7f:05:
b5:ee:4f:41:f5:4d:d1:ba:70:c0:51:d7:4a:3f:00:
75:d3:ea:2e:e8:91:bf:8b:b3:9f:80:37:f6:89:2c:
2e:66:72:5a:69:c1:2a:e0:1f:7a:05:88:91:e8:b6:
c6:ec:0e:1a:9a:6b:52:2f:41:39:03:25:10:ac:f4:
76:0b:2b:10:50:ed:46:21:5b:cf:fe:01:4a:2b:08:
c7:0c:bc:4a:f7:d1:ba:b7:18:59:20:07:7d:ef:6c:
7b:a6:ad:fc:8e:50:af:2a:2d:eb:b7:ca:cc:94:fc:
88:9a:75:72:6f:06:bd:bc:aa:45:6b:86:f2:7b:0e:
79:97:43:3a:9a:1a:25:9a:10:de:96:e7:bc:d8:73:
b6:42:9e:05:00:86:48:c7:b3:59:e5:6d:5f:e4:00:
bf:9c:5c:4b:96:b7:82:76:57:f7:1f:a3:1d:6b:09:
da:13:6b:b0:af:7e:22:ed:56:66:89:ca:1a:08:5c:
f4:8f:f4:b4:51:c4:e5:79:84:89:c9:6c:2d:14:6a:
47:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:42:B5:3B:4E:E8:3A:7C:D7:E8:2F:F0:ED:6B:75:F1:70:AC:EF:4C
X509v3 Authority Key Identifier:
keyid:50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:d5:8c:b8:42:12:f4:df:c5:2e:fb:7d:b7:12:36:ba:8d:b8:
c9:8e:09:6c:bf:0d:bc:8b:11:94:5b:63:69:2c:10:22:ed:53:
31:83:6e:8a:11:24:6e:16:b0:52:4f:f1:b7:e1:46:eb:5c:8f:
b5:31:e5:03:fd:2a:05:94:7a:10:ca:a5:bc:99:26:4e:e0:f4:
dc:37:5e:cb:8d:4a:59:87:72:70:ca:e0:b8:b9:83:7e:20:57:
3d:fb:be:7c:57:4f:4f:24:b1:3d:b9:6b:25:9b:6c:47:d4:95:
6f:39:14:56:e7:a8:ba:6e:26:46:7b:50:dd:aa:8c:c3:85:13:
96:71:dc:2e:63:94:8e:8d:39:21:d0:53:9a:65:c1:8f:c9:f2:
2d:ec:a8:a0:28:00:dc:2f:06:b4:70:a9:5d:b1:a2:ce:99:7a:
ef:fb:dc:2b:f4:08:fa:f7:8e:c6:ea:c7:ba:e9:83:09:fd:dd:
9d:0f:0b:59:88:a1:24:a3:51:7b:af:00:79:59:2e:9c:2e:b1:
ca:51:ba:b1:26:53:61:63:c3:19:ce:30:16:8b:e8:39:8a:44:
d9:82:70:36:27:da:21:b5:d4:38:00:a8:e4:da:62:be:3d:1d:
07:cb:d0:99:7e:18:3f:55:2f:a7:65:0e:53:20:5d:a6:19:f2:
46:7d:45:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 06:44:58 2025 by rpki-client