Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
File: rUZjafOSfaDIn7X0s-qeMk-SioQ.mft (raw, json)
Hash identifier: u5vgWAiTUuD9a5nnpVSlkG2iYHheenZF+yzp9awoloA=
Subject key identifier: 31:2E:E4:B2:59:E6:5E:C0:89:40:09:87:D4:AF:A2:BA:82:E4:16:88
Authority key identifier: AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
Certificate issuer: /CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Certificate serial: 019A714A2FC9CE0DCCAB38DB67720E6167FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
Manifest number: 0735
Signing time: Tue 11 Nov 2025 05:01:18 +0000
Manifest this update: Tue 11 Nov 2025 05:01:18 +0000
Manifest next update: Wed 12 Nov 2025 05:01:18 +0000
Files and hashes: 1: e2krXZzkR-AkHScvd476IUHzrz0.roa (hash: KJC7yZeLdAZIJXLO5En/1DBnqhI+LO45sglWIneobpg=)
2: rUZjafOSfaDIn7X0s-qeMk-SioQ.crl (hash: NllW49T9KpjIGTukAqzn+7kn4b0e5JKhu4Is8dkH0d0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:2f:c9:ce:0d:cc:ab:38:db:67:72:0e:61:67:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Validity
Not Before: Nov 11 05:01:18 2025 GMT
Not After : Nov 12 05:01:18 2025 GMT
Subject: CN=312ee4b259e65ec089400987d4afa2ba82e41688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bd:01:ab:33:3f:f3:86:fd:8f:de:64:9d:48:
b6:e2:77:70:c3:7a:d5:85:7b:87:49:25:4f:93:f7:
84:69:79:8c:ea:aa:81:fe:a3:3e:63:e6:5d:b1:08:
be:83:f9:32:a3:9b:a3:dd:44:cf:23:7e:31:4a:53:
bf:ae:29:8c:fc:c0:2c:76:2c:3d:e3:10:49:66:a6:
55:60:dd:70:3e:bb:ab:85:cf:f4:c9:ee:9f:f9:2a:
b5:25:b4:d0:6d:40:53:12:3b:5a:ef:11:6e:20:0a:
a8:2e:73:e7:18:e4:4e:25:85:0d:27:4d:c5:b5:3d:
b8:4d:c2:d7:d9:c3:41:cd:5f:15:9a:26:47:4f:9f:
e4:43:7b:d1:ef:54:f1:08:f2:88:a1:37:9e:cb:b1:
d6:ff:7f:15:b5:4b:14:46:3c:7c:9d:1f:8c:82:5f:
b9:9d:e1:a5:2e:75:6a:91:8e:3d:9d:95:49:21:f2:
e9:45:89:15:01:b1:47:a4:36:ce:80:b3:84:13:b6:
4a:cd:3d:f8:a5:6b:92:ff:eb:bb:58:cb:76:d4:19:
fc:63:56:28:bf:81:50:35:5a:34:7b:aa:c6:ac:03:
77:b3:38:4c:69:2d:fa:03:75:3c:91:ef:23:a9:97:
a8:7f:f4:93:87:4d:a3:7d:c0:f6:d3:3d:b8:48:21:
18:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2E:E4:B2:59:E6:5E:C0:89:40:09:87:D4:AF:A2:BA:82:E4:16:88
X509v3 Authority Key Identifier:
keyid:AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:ac:bc:0f:77:d1:b9:8a:3f:07:72:a1:b9:db:eb:20:66:d7:
2f:4a:ae:71:51:b7:62:21:5c:0a:e7:43:f3:de:32:ef:70:5c:
91:ce:f1:f1:a1:50:b3:98:34:24:0b:4b:e3:6a:d3:69:a7:72:
d0:da:ce:1b:b2:b3:bc:b9:6b:c7:6e:d7:8c:45:3c:aa:5c:f8:
a7:22:8b:b3:f0:66:9b:68:e1:d4:21:94:03:1d:14:06:5c:c8:
01:b6:02:07:a3:9d:4b:0a:10:c6:68:8a:53:62:95:f5:43:34:
13:02:d4:1d:3f:52:03:89:42:26:ff:59:4b:29:0a:30:75:d3:
c9:d2:d5:0a:06:51:e1:50:47:c9:82:5c:5c:59:ab:65:20:b8:
b8:f4:a8:e5:5b:01:36:bd:6b:7b:f7:23:43:0e:6f:93:e8:3e:
3f:12:80:ca:68:fe:05:3f:e0:40:ad:23:01:8f:87:5f:73:6d:
1a:02:f5:65:67:4a:c1:92:64:46:cb:97:9f:40:aa:39:80:09:
c1:f9:af:3c:40:fd:6a:d9:b6:d7:7d:68:aa:dd:af:5d:57:63:
63:43:d3:8b:a8:38:3f:85:03:f6:2c:c9:e8:8f:68:c4:78:ef:
23:ce:e8:a1:d4:92:e2:0d:fe:4a:48:0b:18:9a:0e:15:5d:80:
bd:5d:af:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:52:36 2025 by rpki-client