Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft
File: uO0-vNIVX5oXihA62rSP2osidaU.mft (raw, json)
Hash identifier: /XFqYzerb47qer3ws26l/8g0lUDNZCPeuG3ZkIOfDEE=
Subject key identifier: 3E:99:FE:CD:6E:20:D9:48:6B:AE:E0:FC:6E:09:18:D0:40:7B:15:BB
Authority key identifier: B8:ED:3E:BC:D2:15:5F:9A:17:8A:10:3A:DA:B4:8F:DA:8B:22:75:A5
Certificate issuer: /CN=b8ed3ebcd2155f9a178a103adab48fda8b2275a5
Certificate serial: 019A3E0070718DD61B01BBBB72D467F5DDB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft
Manifest number: 126B
Signing time: Sat 01 Nov 2025 06:00:07 +0000
Manifest this update: Sat 01 Nov 2025 06:00:07 +0000
Manifest next update: Sun 02 Nov 2025 06:00:07 +0000
Files and hashes: 1: Brko5nMKSPwBgCgkjjg5igCr-DI.roa (hash: 3fOnCI08ItaZVpBsarkgTQcdgGi7HK10nR8m2pkLLWI=)
2: RdMb9DZXvill1bIjga0E0ALFTSE.roa (hash: glVlBHXB1p3fuc6KcN7QeAF0s4whdubmLa4lXiIAO04=)
3: bGID9MISfapCQvxtnoK2mwgER1c.roa (hash: 48jEs1SYz7H/DF1j6XjhPt2MSQotOuG8cV4gNdbAuRU=)
4: uO0-vNIVX5oXihA62rSP2osidaU.crl (hash: LAigtI8Yk8/iSXgq8rGYs+6z18KuUMWQSBNIY6BcDss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Nov 2025 06:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:3e:00:70:71:8d:d6:1b:01:bb:bb:72:d4:67:f5:dd:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8ed3ebcd2155f9a178a103adab48fda8b2275a5
Validity
Not Before: Nov 1 06:00:07 2025 GMT
Not After : Nov 2 06:00:07 2025 GMT
Subject: CN=3e99fecd6e20d9486baee0fc6e0918d0407b15bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:05:3c:ff:08:42:42:84:65:04:2b:11:2e:ef:
23:c2:8c:1b:4e:42:8c:d5:a0:49:25:47:d8:21:95:
c7:38:b0:2f:9b:28:64:64:89:92:e6:bc:ef:45:f9:
9c:d6:45:40:6f:12:87:08:f0:60:0b:60:5a:3b:2f:
e1:fb:1c:81:19:bc:74:ae:e7:79:9a:eb:cb:a0:6b:
cf:20:93:54:cd:b5:53:29:1e:f6:52:18:72:5e:c4:
97:26:b6:a4:95:87:9e:ba:e0:06:c0:b3:2a:97:d4:
1f:08:e0:34:17:b8:22:ae:95:1a:b7:5d:60:93:05:
90:ec:5b:a2:c3:b0:3e:cf:60:ba:a1:d7:55:f9:4b:
d5:92:ee:ba:a9:91:06:c1:b3:96:cd:e0:52:08:ea:
f6:5d:0b:d7:a5:9a:b9:81:52:a3:f9:d5:ca:81:53:
e6:f4:60:50:89:24:f9:f7:b0:fd:62:02:33:d9:c1:
30:26:4d:d0:32:6e:e2:d0:3c:78:68:f4:d4:18:22:
2e:d3:2b:96:73:0e:2b:a7:b1:35:15:6e:df:81:7c:
03:58:19:30:cc:15:80:6f:ff:a8:6c:62:f5:e3:e6:
d4:c9:00:ff:d7:1b:e2:c2:77:82:61:df:3e:36:fb:
2d:cb:8c:dc:2e:90:f1:f4:6b:22:1a:77:84:f0:78:
7f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:99:FE:CD:6E:20:D9:48:6B:AE:E0:FC:6E:09:18:D0:40:7B:15:BB
X509v3 Authority Key Identifier:
keyid:B8:ED:3E:BC:D2:15:5F:9A:17:8A:10:3A:DA:B4:8F:DA:8B:22:75:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:ac:dd:10:6d:11:08:7f:a8:9d:8a:01:23:2b:3b:4c:14:58:
db:5b:bb:b6:a6:fe:c6:ff:c1:1d:9e:ed:c7:31:f1:77:fe:a3:
cd:0f:4a:4a:b8:c5:e8:2e:f1:b9:06:b9:09:22:3b:7c:7a:d6:
5d:15:58:0c:b5:03:ab:04:15:97:e4:36:df:41:aa:e7:86:f7:
e8:6f:d2:c5:be:f9:9b:3b:75:e6:f2:1b:23:23:21:82:a4:35:
1f:b4:7e:97:81:20:23:78:05:1f:99:a6:2a:0a:0f:1e:f9:d7:
47:c4:8a:d8:e5:c5:3b:b6:06:9d:ff:27:43:e7:0a:f4:95:2f:
24:70:1c:46:63:27:e7:31:5f:11:ec:83:d5:4d:36:0b:99:82:
61:b4:23:96:4a:21:a6:a5:42:fe:78:95:db:6f:1c:9d:bc:55:
37:59:42:80:5d:5f:d0:94:79:e7:48:3f:64:b3:30:32:02:71:
ac:6e:74:14:c6:c2:0d:ea:4b:c9:e9:dd:39:e7:03:91:0b:c6:
62:5c:7c:ac:e1:d0:b9:29:82:54:d9:c1:6f:54:d4:15:b9:25:
bb:be:09:53:49:d2:20:66:3e:5e:4c:53:84:b6:4e:aa:9e:02:
b9:60:7e:62:b0:5e:77:3c:4c:7c:f2:92:45:5a:eb:c2:06:53:
99:2f:97:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 1 14:08:35 2025 by rpki-client