Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json)
Hash identifier: HT3eh3KHmNekgkMWbeDV7ao4UrQstsWoqL4OFS/Ekag=
Subject key identifier: 38:0D:D6:D1:0B:97:F8:36:F6:AF:BA:A6:B3:51:57:2A:3B:33:A4:FE
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 019A71B8C3CC99FF1B9EB3F676F9D9699732
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
Manifest number: 0BC0
Signing time: Tue 11 Nov 2025 07:02:05 +0000
Manifest this update: Tue 11 Nov 2025 07:02:05 +0000
Manifest next update: Wed 12 Nov 2025 07:02:05 +0000
Files and hashes: 1: DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa (hash: 9ygbw2KxTYEdLBVrIZpBTqLv2Fu0lBk+DuBHrlgf8dM=)
2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: AnebOodpsneuuaY2Wg733+uuASbR1MiPe2E3H/6qxVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:c3:cc:99:ff:1b:9e:b3:f6:76:f9:d9:69:97:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: Nov 11 07:02:05 2025 GMT
Not After : Nov 12 07:02:05 2025 GMT
Subject: CN=380dd6d10b97f836f6afbaa6b351572a3b33a4fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:0d:7a:24:6e:65:9f:5f:fb:50:9b:df:79:7c:
b0:74:cb:f9:bd:cf:b6:bb:e0:d0:cb:7c:73:51:bb:
df:e7:3a:fb:10:93:df:87:bb:6c:e2:72:48:51:1c:
65:67:e2:8a:bf:9c:1c:70:13:d1:fb:a6:ab:24:21:
c5:bf:e6:79:1c:60:c1:3c:5b:ed:14:de:1f:a5:d8:
f0:43:b2:4b:87:a5:e1:04:b7:c5:49:71:e0:8a:46:
d0:c9:d1:b4:3e:52:69:6f:8f:1c:17:ac:19:c2:5a:
11:cf:26:0d:97:f5:05:a7:e9:43:17:01:ea:32:7c:
8a:cd:0e:03:28:3f:9e:8f:43:e7:93:ce:39:57:49:
ba:ee:f1:ca:7e:26:b5:03:11:ea:37:58:33:06:70:
77:b8:fb:0f:22:5e:72:e0:00:c6:37:42:8f:72:ca:
39:ee:8a:05:56:f4:0e:0f:99:d8:0d:d3:17:36:ca:
37:1b:40:51:a2:db:e5:54:f8:e4:e9:14:2f:68:8e:
b7:8c:87:33:d9:0d:4f:b4:73:a6:53:8f:d1:20:6d:
1d:0c:f2:d8:96:e4:d4:90:57:9f:50:61:3f:b4:b5:
72:d9:2d:4c:47:dd:c5:15:4c:cf:0e:92:a8:03:ae:
56:ed:99:94:d9:98:18:98:57:41:9d:8d:94:cc:07:
98:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:0D:D6:D1:0B:97:F8:36:F6:AF:BA:A6:B3:51:57:2A:3B:33:A4:FE
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:6e:8c:50:40:7f:13:bb:fb:a6:a4:c9:ef:85:09:7e:d9:e6:
4a:a4:7e:0e:e0:1c:0b:83:c2:e7:a7:c6:5b:db:6b:10:5d:50:
78:0e:c8:5e:bf:22:e2:36:df:f3:8c:d1:e5:17:71:99:90:21:
af:9c:2d:35:dc:14:1c:28:55:a7:c5:b1:d7:fd:f4:af:2c:65:
74:74:40:38:03:61:6e:48:6f:0e:d8:0d:58:d2:f3:1c:20:f7:
7e:eb:3b:c2:e4:0a:dd:8a:2f:f0:80:24:d6:0b:1b:b1:1e:3e:
fe:ac:9b:a2:67:74:6f:e3:14:88:7e:f4:af:fe:4b:94:48:a1:
67:95:57:8b:3a:10:5e:b4:f2:5e:5c:9b:7a:6c:0c:cf:d4:80:
26:42:60:82:4a:93:de:25:1d:aa:1d:a8:88:73:97:5a:ef:da:
60:a4:80:5d:9a:91:1b:c3:8c:73:56:01:89:de:3c:6f:cb:66:
f6:7e:ea:bb:b1:bb:6d:2c:70:c9:c2:6e:bc:ef:c3:e6:4d:87:
df:a9:2a:d5:ac:f4:db:6a:05:20:99:1b:27:c8:72:cb:2f:06:
88:7a:15:b8:74:85:ed:45:6e:b5:c5:b6:43:43:41:c5:b9:42:
06:bb:0b:86:64:1d:ca:87:3f:12:55:6f:c5:b4:19:c6:6b:57:
58:f7:b5:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:40:59 2025 by rpki-client