Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
File: uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft (raw, json)
Hash identifier: Ujw2V1LlXI9EI/gZs9JYhk6uUVtzzathgb5h5GHRNIg=
Subject key identifier: 85:AD:8D:84:70:C6:79:4D:5D:D1:3A:A1:35:4A:63:F1:E1:91:A2:8C
Authority key identifier: B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
Certificate issuer: /CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Certificate serial: 019A714995BE8A55E775D54B6C5D9B4DC8EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
Manifest number: 108C
Signing time: Tue 11 Nov 2025 05:00:39 +0000
Manifest this update: Tue 11 Nov 2025 05:00:39 +0000
Manifest next update: Wed 12 Nov 2025 05:00:39 +0000
Files and hashes: 1: Ez8s9qEUUht2JDDEnDzdcLhPgtI.roa (hash: JIMzy59RHLraK6rhor2VUFRVzGxoje0mc5nW26VOt9E=)
2: uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl (hash: oLcxuNkLM8NH7vBukrv9C5vV3x+lB11QnTzzcg+36aU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:95:be:8a:55:e7:75:d5:4b:6c:5d:9b:4d:c8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b94889120c4e0bff4ece9a2abb862d4c0cd8a31f
Validity
Not Before: Nov 11 05:00:39 2025 GMT
Not After : Nov 12 05:00:39 2025 GMT
Subject: CN=85ad8d8470c6794d5dd13aa1354a63f1e191a28c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ef:a0:f2:f4:c2:e3:54:09:12:a0:6b:45:c5:
7d:4e:d0:dd:7d:e0:f6:18:3b:9f:63:68:0f:04:70:
7d:e5:7d:a2:b2:fe:db:82:ab:14:e1:6e:f0:b2:81:
a9:22:32:12:5f:d5:10:d5:5a:74:77:2e:1f:7e:7a:
43:e2:98:37:79:8d:92:8b:8c:83:f7:6e:43:7d:1d:
8a:e7:a3:58:91:37:fc:b5:f6:13:02:5c:1c:b2:2d:
cf:23:92:36:35:e0:dc:01:3e:a5:8d:33:c3:00:02:
16:07:fe:f3:52:e5:85:7d:ce:e2:91:5b:c2:c3:c5:
32:fe:e4:5a:7a:bf:fa:c0:22:ba:16:b7:78:6d:4f:
a2:69:a4:de:97:da:97:95:50:d3:bc:19:fc:c8:37:
fc:ec:fe:a8:0a:e3:8c:52:7f:08:5e:16:03:74:ff:
af:d8:72:ff:5a:08:d1:bd:0b:90:21:d8:dc:a1:1e:
f5:00:4a:3e:09:cc:fe:e8:8f:6a:34:c2:f1:82:4d:
2a:2f:59:cf:df:ce:b3:44:dc:a5:5b:a3:21:b0:c5:
1a:36:83:2e:c5:9d:cd:6d:61:f9:af:e3:e0:dc:00:
bb:9d:e8:1a:de:a4:ab:69:2f:2e:ef:69:d3:5e:6e:
40:62:55:18:4d:46:c6:8e:d0:db:48:83:f9:f1:bf:
12:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:AD:8D:84:70:C6:79:4D:5D:D1:3A:A1:35:4A:63:F1:E1:91:A2:8C
X509v3 Authority Key Identifier:
keyid:B9:48:89:12:0C:4E:0B:FF:4E:CE:9A:2A:BB:86:2D:4C:0C:D8:A3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUiJEgxOC_9Ozpoqu4YtTAzYox8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/df5670-96ab-4eee-b0d2-85d332604aaf/1/uUiJEgxOC_9Ozpoqu4YtTAzYox8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:6e:f1:91:2a:77:13:4f:c7:4a:55:0e:57:75:ed:28:ed:68:
ee:6f:c0:43:43:69:6c:e1:65:a0:c4:b1:65:c6:51:a2:b2:09:
29:9d:62:46:ff:16:e2:00:c4:2c:23:4c:d6:81:17:95:f3:41:
1f:05:ad:c2:2a:0c:7e:53:18:78:0b:51:e0:8b:a8:a2:21:ad:
16:06:c9:e0:55:63:d6:91:e8:35:48:68:63:16:6b:c7:60:ed:
d1:97:f1:73:8d:3b:67:72:0b:a1:26:58:b3:45:72:43:38:bf:
23:dc:d3:0e:dd:e5:c5:77:7d:15:38:0b:82:16:0e:8d:95:f6:
41:d3:ae:ce:07:f0:24:50:b8:ba:ec:a1:e9:1a:1c:14:2e:50:
6a:7b:fb:ad:ba:82:e6:dd:84:f1:99:01:fb:fc:76:55:36:6b:
d6:33:f6:1a:2d:c0:6f:3f:9a:d7:51:32:21:5c:4e:e8:75:0c:
d4:9d:5d:7a:da:7b:36:c1:19:6e:e4:4c:85:3b:5b:aa:07:d8:
ac:88:6c:d4:4c:5d:5c:89:c2:ab:3f:f9:a5:70:8e:e4:b8:6d:
24:66:2a:a4:52:5b:48:b6:04:3c:45:5b:7a:8e:f5:b4:0a:5d:
b6:18:aa:74:36:1e:5e:4c:74:23:18:81:de:8c:49:ca:80:18:
9d:82:53:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:14:32 2025 by rpki-client