Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
File: u_mPikT9YO72t0nSFOVsgRiXZgw.mft (raw, json)
Hash identifier: n2BM1drG2+z2PeSPkW2qJ+aih1DK4T1TQhUfoZCWI5k=
Subject key identifier: 2D:07:1A:0D:9D:12:70:9F:CE:71:4C:81:96:21:9D:7E:99:44:30:BA
Authority key identifier: BB:F9:8F:8A:44:FD:60:EE:F6:B7:49:D2:14:E5:6C:81:18:97:66:0C
Certificate issuer: /CN=bbf98f8a44fd60eef6b749d214e56c811897660c
Certificate serial: 019A0447C827A268D60AC8469B56FE20AE1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
Manifest number: 01D2
Signing time: Tue 21 Oct 2025 01:00:04 +0000
Manifest this update: Tue 21 Oct 2025 01:00:04 +0000
Manifest next update: Wed 22 Oct 2025 01:00:04 +0000
Files and hashes: 1: u_mPikT9YO72t0nSFOVsgRiXZgw.crl (hash: iJquv9581ciDQVBIyTVf2hblzLNlnxcigCpp90mg4h0=)
2: xkzazz831mQOXNGmSz3uWho6Ohk.roa (hash: kcYkLf+1B2AuNTj7vUuf68FA8ProRpgWzdWOYFENYJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:47:c8:27:a2:68:d6:0a:c8:46:9b:56:fe:20:ae:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbf98f8a44fd60eef6b749d214e56c811897660c
Validity
Not Before: Oct 21 01:00:04 2025 GMT
Not After : Oct 22 01:00:04 2025 GMT
Subject: CN=2d071a0d9d12709fce714c8196219d7e994430ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d3:b2:b3:fa:59:40:a2:db:12:e1:43:86:22:
cd:8e:4a:44:7e:f7:02:ce:e4:d8:57:c7:c2:34:ca:
c0:21:07:c0:25:d7:f0:d9:8e:69:72:31:61:d8:65:
8f:af:42:25:7c:f7:dd:cc:68:6e:a4:e0:85:07:dd:
18:1f:ca:f5:11:96:d8:c2:25:d1:88:db:05:f0:7c:
41:bb:50:bc:ef:bc:b9:38:15:35:3e:8c:83:82:62:
4b:8a:ec:f5:d8:d1:82:ec:03:4d:d5:2a:9b:dc:01:
db:d9:c0:86:a2:90:b8:4c:c9:a3:b3:8f:b8:97:27:
85:bf:11:b1:ef:9b:fc:bc:bc:5a:f2:0c:c3:e7:37:
25:84:46:0c:4d:9e:4a:18:05:b7:3f:48:77:10:97:
2c:b8:e9:7f:ad:fb:b0:f0:d5:88:c4:c3:b2:85:3c:
39:50:77:91:9e:a1:6b:8d:d6:99:f7:ed:e2:f9:88:
cf:bf:b8:cb:43:2a:68:3d:3a:3a:32:96:83:19:21:
fa:8b:a9:f2:66:9e:84:2d:d6:5c:c8:e6:cf:ac:e4:
c7:15:b4:08:84:ed:69:0f:d6:3a:b0:9b:32:78:7e:
6f:59:fa:20:89:8d:b0:c2:2c:8d:c6:0f:d7:1b:63:
4b:e5:29:75:33:ee:da:9d:6d:62:ca:31:f6:10:86:
a8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:07:1A:0D:9D:12:70:9F:CE:71:4C:81:96:21:9D:7E:99:44:30:BA
X509v3 Authority Key Identifier:
keyid:BB:F9:8F:8A:44:FD:60:EE:F6:B7:49:D2:14:E5:6C:81:18:97:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:95:7a:2c:12:5a:28:aa:f7:76:e4:b5:9a:79:de:d9:30:a9:
a2:e0:e3:bd:2e:50:be:9b:72:cc:38:ee:06:bb:74:46:76:2b:
6b:75:2e:1e:8e:c0:d9:45:22:8d:b5:2e:03:00:e3:00:44:f1:
3f:75:03:60:60:21:93:d2:ba:7b:33:23:cf:8c:94:58:c0:1e:
aa:c7:67:1f:73:ce:29:e0:b0:e8:f0:e3:d3:4e:d3:7e:b0:7c:
96:78:2f:c3:27:a8:06:b5:86:f8:13:81:5f:8e:3b:2c:0f:7c:
f4:65:14:ae:e4:59:71:62:ac:f8:98:c5:91:be:8c:8b:3b:bc:
f3:be:a7:f8:ee:78:a9:ce:b1:d2:4c:59:de:ab:5a:6c:4f:fc:
94:6b:54:05:b5:76:47:07:6f:65:f1:c7:31:1f:fd:db:b8:f3:
c1:43:5a:3b:6a:df:08:56:32:cb:52:e8:ea:48:40:2b:6c:33:
7e:cb:dc:8d:0c:a5:a0:14:51:cb:fc:77:38:7e:c1:34:67:ba:
91:25:66:c2:c6:55:7e:fc:5b:1a:ec:b1:8e:2c:43:78:49:8f:
ad:af:dc:29:17:ba:dc:46:6f:22:47:78:8b:29:8f:18:96:ef:
3c:4a:f4:bc:fc:28:69:16:aa:71:b2:b6:82:bc:5b:f8:d1:f8:
49:61:bd:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 06:30:40 2025 by rpki-client