Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
File: UnB4bxfEG9AWJvctsjnyCLUYm7A.mft (raw, json)
Hash identifier: Awf3hneBwExUOD+hl/nSJVwH4u6xRvFDi2cAIyYVuwo=
Subject key identifier: 3F:B0:2B:E1:77:76:DE:DB:D5:BD:25:F7:E3:D6:8D:48:11:97:50:F5
Authority key identifier: 52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
Certificate issuer: /CN=5270786f17c41bd01626f72db239f208b5189bb0
Certificate serial: 019A70DC27AEF21174033CA689768D483B6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
Manifest number: 1722
Signing time: Tue 11 Nov 2025 03:01:07 +0000
Manifest this update: Tue 11 Nov 2025 03:01:07 +0000
Manifest next update: Wed 12 Nov 2025 03:01:07 +0000
Files and hashes: 1: DmHJvnXYNCZG6CwLW6LsQtmujI4.roa (hash: x67qTlyXrzA3beyYfkqEGco6s6alggLnNjlSZnKsSr0=)
2: UnB4bxfEG9AWJvctsjnyCLUYm7A.crl (hash: FxqZECT/Wa/FaFHeGG4m05M7nyHQDhl+g79uCF8VdkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:27:ae:f2:11:74:03:3c:a6:89:76:8d:48:3b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5270786f17c41bd01626f72db239f208b5189bb0
Validity
Not Before: Nov 11 03:01:07 2025 GMT
Not After : Nov 12 03:01:07 2025 GMT
Subject: CN=3fb02be17776dedbd5bd25f7e3d68d48119750f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:76:bd:55:b7:d5:14:0b:d6:2c:13:43:a6:40:
22:f1:01:82:ed:bd:58:14:01:6c:f5:2e:35:ad:19:
68:d7:84:eb:a3:17:b8:a2:cb:e0:74:fa:40:60:f5:
31:08:d6:25:9b:3b:8c:22:c6:d1:7d:f7:78:4d:6d:
bd:f7:ca:1e:13:0f:8c:6d:20:2e:f6:d2:33:4f:15:
15:8a:1f:14:87:64:fe:69:a5:17:f6:11:e4:6f:f6:
c1:b0:a2:e2:c1:7d:d4:6a:b2:6a:b1:b9:0b:60:ec:
8e:1a:99:7a:d6:0c:6a:bc:d8:e6:2a:f9:ea:85:bd:
27:b7:ad:61:90:88:b8:a4:e3:7f:91:bc:7a:b2:0f:
42:8e:b9:ff:8d:e7:fb:d5:d2:24:a0:e8:e2:24:2f:
4f:f9:af:d6:53:a9:e2:ae:2a:be:c4:0b:61:4d:cc:
36:68:69:41:42:29:07:50:7a:0d:5d:c1:5b:16:7d:
ce:f5:7f:a0:ac:37:64:24:7c:dd:b7:53:1a:43:6e:
6f:1f:43:b7:51:db:e0:97:b0:36:79:aa:4d:69:7b:
62:90:fe:94:01:f5:74:dc:cd:e0:f0:64:5c:c4:0c:
de:cf:e3:4e:52:28:b6:bf:41:d6:94:56:66:d5:59:
e7:48:36:0c:90:25:b3:44:04:a6:fa:0a:2a:3f:fc:
e7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B0:2B:E1:77:76:DE:DB:D5:BD:25:F7:E3:D6:8D:48:11:97:50:F5
X509v3 Authority Key Identifier:
keyid:52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:da:0b:72:2b:ea:0d:d7:4e:fb:77:df:5b:3f:7d:8e:9f:ac:
1a:72:db:89:97:7b:f7:13:b4:20:c8:3c:b9:92:5e:fd:f9:ba:
7d:75:23:4a:43:2e:01:8d:ae:9f:16:5c:4d:e8:b5:bd:80:8d:
c6:d8:b7:06:0a:c1:56:f9:a6:71:b7:b3:ac:52:ed:45:77:cb:
4f:e9:29:51:a5:91:73:05:da:e2:5c:94:d2:1b:f5:ce:00:dd:
df:e6:c3:9d:2a:e2:bf:7d:9f:4a:a4:32:46:98:56:6c:be:81:
40:98:7d:78:95:57:e3:22:8d:a0:88:82:dd:02:43:6b:90:72:
70:a4:88:58:3b:87:98:04:b0:b4:99:90:cc:06:89:61:0a:76:
65:07:4b:14:b1:bc:ca:1a:71:56:19:83:f1:28:30:96:60:d6:
4e:86:84:f1:11:e8:2e:c2:fc:fa:33:38:f3:f0:af:5c:6f:34:
28:eb:34:de:11:63:40:d5:e8:bb:d3:58:bc:9e:a6:5c:ef:d1:
be:2a:4a:bd:78:c2:ff:f7:48:1a:06:e3:d6:12:db:5a:7b:ef:
98:8f:70:7b:5b:ec:64:3b:e7:a2:bb:0c:76:46:e7:27:f3:55:
21:30:13:12:46:af:6e:28:90:04:6e:b3:b5:c8:0d:74:58:9b:
aa:7b:61:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:24 2025 by rpki-client