Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
File: UYnbLl9XTdoOPBfjldXwW2YlTsU.mft (raw, json)
Hash identifier: pEYPm1B3pjNmvoS1x95oi65bwlmwOa+Zzucq90nmveM=
Subject key identifier: A5:9E:B2:03:CB:3E:02:1F:E5:E5:53:D8:D8:E1:4A:3F:7A:24:03:F9
Authority key identifier: 51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
Certificate issuer: /CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Certificate serial: 019936812680854FE13D73C1BF3D530577FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
Manifest number: 0D63
Signing time: Thu 11 Sep 2025 02:00:57 +0000
Manifest this update: Thu 11 Sep 2025 02:00:57 +0000
Manifest next update: Fri 12 Sep 2025 02:00:57 +0000
Files and hashes: 1: BfyClB3XmviPfJ6xZ2InO7FtLcs.roa (hash: 3EeV7dZbc++zjvyl5M1yeUuYRy/Llocvb96yJLQ1iig=)
2: UYnbLl9XTdoOPBfjldXwW2YlTsU.crl (hash: /ler5QvLjxmPaNHkL3Lor868v+2HaPW1KiaaT6VX8Jc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:81:26:80:85:4f:e1:3d:73:c1:bf:3d:53:05:77:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Validity
Not Before: Sep 11 02:00:57 2025 GMT
Not After : Sep 12 02:00:57 2025 GMT
Subject: CN=a59eb203cb3e021fe5e553d8d8e14a3f7a2403f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b4:7c:5e:88:fb:ee:d2:18:77:99:00:55:48:
7f:a8:e0:0e:72:42:96:39:f4:e0:20:80:4f:2f:15:
d3:65:53:c1:d4:07:73:c3:80:a7:bd:8d:73:ea:1d:
fe:b4:1d:ee:f0:42:47:b8:a1:8e:fa:32:9e:78:4e:
a6:e2:11:1a:11:84:4c:20:8c:8b:0d:2f:8b:2d:6b:
25:a2:c4:b4:73:94:48:55:99:d2:a9:14:51:f4:92:
e5:f7:d1:11:a0:8f:0f:c9:91:93:34:b2:be:8b:6a:
fa:94:c2:1e:a6:56:05:0b:21:e0:38:b6:7b:e5:52:
9f:43:64:b5:c4:18:7e:b3:74:c8:3f:53:15:0f:dc:
ac:ff:9e:35:35:05:2b:68:61:86:1c:c8:43:bc:d9:
c5:65:b3:fd:80:70:0c:76:34:1b:51:68:45:e9:2c:
c2:b8:23:4d:e0:5d:85:2e:72:32:12:fd:a9:ab:ab:
b2:77:6a:2e:ba:90:88:27:4d:1c:ec:ab:cf:20:ae:
c7:6a:d1:95:30:c7:00:aa:a0:79:96:21:4b:d1:b7:
0c:fb:d4:ec:66:b3:fb:e7:ea:83:b9:ca:f4:4c:21:
35:5e:46:67:a3:68:5c:63:22:20:e1:28:5c:25:44:
19:9b:27:05:6d:b2:5f:3c:65:18:69:0f:78:c5:56:
60:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9E:B2:03:CB:3E:02:1F:E5:E5:53:D8:D8:E1:4A:3F:7A:24:03:F9
X509v3 Authority Key Identifier:
keyid:51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:24:c9:0d:5d:c3:cc:fc:04:52:e6:87:31:fb:6e:83:ed:5b:
a2:68:dc:b5:10:eb:56:3e:60:66:08:ae:dd:c0:7b:fb:99:0d:
31:53:ce:d4:15:ac:d3:7e:30:76:b7:5c:d3:b9:47:9d:bb:c6:
d3:2c:68:82:e5:cb:b4:0a:4f:de:a7:02:61:ed:58:94:40:66:
ff:12:47:3a:bb:5c:6f:fb:c0:f5:cf:48:4c:56:a7:6c:c6:88:
06:e4:1c:58:d4:aa:d2:f8:35:59:c9:70:12:f6:d5:3e:da:35:
9d:ff:3e:15:18:4c:50:df:12:05:53:e1:93:7b:7c:dd:57:8c:
5d:6c:58:fa:74:a9:96:a2:85:51:06:1a:4c:9e:77:73:eb:1a:
56:bc:73:49:dd:cb:4b:6b:44:73:8c:5e:81:7b:ca:4f:3e:ef:
df:9e:36:ad:cf:b5:d5:59:9d:78:0c:24:dc:de:55:8a:67:6a:
42:a7:c7:13:c4:ff:b1:de:e7:db:4a:d0:1c:3a:51:dd:f1:7f:
39:2a:f0:7c:22:3d:80:d6:32:68:36:d0:70:fa:e8:df:d6:b2:
23:f4:46:39:2a:a4:b4:2e:83:a4:d8:fa:32:57:38:d3:15:f9:
7c:56:97:ea:5a:06:82:93:d7:36:a9:a3:a1:c9:df:f7:34:cb:
ca:3c:16:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 04:09:54 2025 by rpki-client