Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
File: uqI_dArVZMVpO3cJHHGzwDE2pYA.mft (raw, json)
Hash identifier: 0Y/rg6n+xa5WUxTGEcURGzRc9v/OLVXOhfgrmam3pxU=
Subject key identifier: E8:08:B9:05:E0:BD:14:CB:1C:37:64:70:26:F5:8A:74:27:1C:85:70
Authority key identifier: BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
Certificate issuer: /CN=baa23f740ad564c5693b77091c71b3c03136a580
Certificate serial: 019A16F31C70FDC9D89F7E0B8B9F5D9BAC19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
Manifest number: 0B68
Signing time: Fri 24 Oct 2025 16:00:22 +0000
Manifest this update: Fri 24 Oct 2025 16:00:22 +0000
Manifest next update: Sat 25 Oct 2025 16:00:22 +0000
Files and hashes: 1: gQl4YCr829YOGRu3QQEM_8QNnRo.roa (hash: 468s9eqjwKzKxWWYEkQfsVXrMKlrp7YiLVsT2AanKV4=)
2: uqI_dArVZMVpO3cJHHGzwDE2pYA.crl (hash: thjbLzFmYgBiSyEFSHwKHLAufV7RoqhHsF/nja2snlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 15:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:16:f3:1c:70:fd:c9:d8:9f:7e:0b:8b:9f:5d:9b:ac:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa23f740ad564c5693b77091c71b3c03136a580
Validity
Not Before: Oct 24 16:00:22 2025 GMT
Not After : Oct 25 16:00:22 2025 GMT
Subject: CN=e808b905e0bd14cb1c37647026f58a74271c8570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:88:22:56:87:1e:64:a1:ab:35:01:16:87:c3:
6c:92:aa:12:13:16:fb:c3:d6:dd:c0:f5:1a:a6:32:
33:4d:97:8d:e8:c0:e6:97:71:ce:58:b0:14:f3:56:
04:c6:04:a2:3b:83:ef:47:57:d9:9d:ec:05:55:d7:
1a:6f:39:87:68:17:5e:0a:0e:94:2c:7a:5a:2a:00:
31:86:f0:43:8b:b0:b7:38:20:27:f3:39:41:9a:96:
1f:37:58:50:7d:9a:e1:e8:82:74:56:b1:7f:9f:69:
5e:18:ca:d6:5c:05:9c:c8:23:00:7e:81:47:b6:98:
7f:64:f8:8b:c1:bb:80:de:9d:b6:3c:fb:06:34:33:
24:07:9f:b8:10:48:50:a1:02:bb:f5:b9:62:96:25:
fc:50:c1:52:e4:93:3f:0d:d5:90:e8:4b:83:5d:8f:
30:64:7c:b5:a1:44:14:97:53:2c:3c:56:ea:97:e1:
c3:89:44:f0:ac:10:7d:5e:f8:28:b4:42:d2:1a:0d:
ee:32:df:1f:53:ca:c9:04:30:c4:ae:2f:dc:1a:67:
49:eb:43:f6:01:aa:90:2d:db:bb:7e:ea:65:ca:55:
13:83:c0:c9:18:ff:c2:1e:e8:29:89:d0:cb:15:ab:
bf:57:19:7a:82:d1:4b:9e:4f:1e:c7:3c:25:fb:48:
8a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:08:B9:05:E0:BD:14:CB:1C:37:64:70:26:F5:8A:74:27:1C:85:70
X509v3 Authority Key Identifier:
keyid:BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:2b:21:0e:da:0d:61:24:89:46:a4:0f:58:1c:74:7b:f6:fa:
5e:18:1d:a0:71:78:2a:1c:bf:71:02:a0:4e:42:13:1a:1f:41:
32:fc:6e:8c:73:26:90:f6:2a:91:2f:1c:9a:6b:a3:bc:6a:7d:
92:5e:e0:97:98:1d:47:bf:b5:19:6f:62:df:ad:6a:5c:45:97:
fc:71:f1:70:19:5c:6c:78:6f:65:f3:b4:68:b4:90:e4:2f:7a:
b1:0c:03:df:af:98:ff:ad:36:4d:c8:58:eb:63:e6:29:c3:2e:
31:6d:88:05:d3:d2:b7:69:85:1a:3c:93:eb:ce:37:e1:18:b3:
6a:cd:0e:41:d6:52:1e:99:2f:50:a6:79:b4:6c:68:ae:8b:cf:
0b:f0:78:7d:03:f8:24:dc:19:74:e3:80:3d:34:17:27:3b:e7:
97:9d:d7:9d:c3:9d:20:20:42:62:a1:e7:df:09:8c:c6:d8:7d:
f2:4f:da:5b:a6:e3:83:f6:a2:09:88:8e:40:c9:ae:9c:57:6a:
8c:a3:16:40:2c:03:62:67:a5:b5:0c:58:74:31:26:3b:8d:8c:
b8:3f:28:53:28:b2:60:25:82:51:fb:0d:b0:15:fc:98:f4:7a:
fe:f1:81:8f:3b:b3:34:c1:93:cd:a2:c3:9c:14:6a:dc:67:bd:
f4:17:ec:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 19:15:34 2025 by rpki-client