Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
File: ug4SZOB7Nwi8udtaFOfMknCGOVg.mft (raw, json)
Hash identifier: CLkJEfaDh5f2MiIKfE9B1lwGQHHDqAbfCJtqmwcSGhM=
Subject key identifier: 57:BC:AF:7B:E1:07:78:CD:AB:C9:8B:E0:5B:55:48:20:07:36:5D:CE
Authority key identifier: BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58
Certificate issuer: /CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958
Certificate serial: 019A7225A5143D36196FE20C390E3DEF7D14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
Manifest number: 1726
Signing time: Tue 11 Nov 2025 09:01:00 +0000
Manifest this update: Tue 11 Nov 2025 09:01:00 +0000
Manifest next update: Wed 12 Nov 2025 09:01:00 +0000
Files and hashes: 1: ug4SZOB7Nwi8udtaFOfMknCGOVg.crl (hash: 5+xW0esABsCwhN/ZdLnrqw/nGBmYOMWpRS2DXafkFfs=)
2: xXvm8v3Fqzu_dszdmjsgqNl1Hcw.roa (hash: Nh/ftcdTWsREAPkqBZbyfany4F8e1nXpYHmf8szSz/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:a5:14:3d:36:19:6f:e2:0c:39:0e:3d:ef:7d:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958
Validity
Not Before: Nov 11 09:01:00 2025 GMT
Not After : Nov 12 09:01:00 2025 GMT
Subject: CN=57bcaf7be10778cdabc98be05b55482007365dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8a:04:f6:bc:06:2d:6d:50:09:f4:1f:56:17:
2b:84:42:16:58:cb:e3:95:7b:54:9a:f1:a2:e2:97:
7d:4b:ef:98:67:17:a2:b2:86:27:18:25:4f:a6:dc:
40:8f:68:1d:14:fa:6d:fd:f3:d7:fc:47:4d:a9:ce:
0a:a6:54:97:9c:dc:16:ae:2f:bb:4a:7d:26:fd:7d:
fb:d5:f5:5c:9a:f0:0c:4a:42:05:1f:a0:33:c4:90:
ee:6e:1f:24:d9:d9:6c:46:df:40:0c:a2:5f:50:cd:
72:bc:d2:1d:43:dc:bd:c4:b5:da:f7:af:92:fa:ae:
fa:63:0d:54:ae:cf:c4:4f:b5:9e:4f:55:b7:5d:10:
d2:fa:bd:23:89:4d:e6:95:23:be:22:88:c7:16:6d:
6b:d7:c3:b2:de:40:2a:f4:98:66:4d:65:10:cb:b7:
64:02:81:0d:c7:48:aa:43:88:6c:c6:60:b3:c9:43:
e9:b6:5c:bb:dc:53:d2:cc:6b:d6:a2:6e:22:a4:91:
7d:8f:ff:0a:cb:ce:2d:c7:8c:12:6f:35:2b:2e:66:
5c:e6:90:c1:1f:19:66:c7:f1:cc:e1:2e:a9:d6:10:
71:ef:f6:c1:a9:f2:3c:8c:ac:ae:9d:3b:42:fb:e3:
53:07:b3:ba:ef:53:03:fc:08:68:db:65:e0:fc:d6:
84:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:BC:AF:7B:E1:07:78:CD:AB:C9:8B:E0:5B:55:48:20:07:36:5D:CE
X509v3 Authority Key Identifier:
keyid:BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:40:b9:3e:3a:0f:b2:93:c9:07:ea:69:eb:76:18:2f:7e:a3:
42:a6:b1:15:c5:04:a9:d1:01:39:63:5c:3f:8e:03:93:78:b7:
22:b1:7c:80:57:eb:18:51:73:c8:f7:e0:4a:07:de:51:51:30:
24:0d:39:c2:b3:21:34:77:c9:bf:3c:64:2b:75:68:f1:86:5d:
a9:68:ca:44:53:3a:00:f4:38:43:03:ec:0f:4c:5c:18:a9:c3:
79:b7:ff:1e:6a:e3:8e:29:be:ad:b6:0d:23:d4:1a:3f:4c:82:
f6:eb:c4:57:fe:05:73:c3:14:e8:35:e8:d1:ef:8a:df:b5:17:
4c:09:e4:9c:da:86:af:10:80:29:cc:55:df:d5:97:d8:1c:70:
d6:0d:dd:61:ca:cb:a7:18:f7:ef:7a:02:cd:de:f1:5b:1f:76:
93:02:58:54:52:9e:85:8e:45:b2:7d:c5:1c:5f:8f:94:4d:17:
3d:3f:f0:00:c4:94:aa:72:e4:57:34:72:67:8b:c4:95:a3:15:
65:41:17:32:2c:2e:f4:7f:6d:e5:2c:38:95:ee:31:39:9c:bc:
cf:33:25:cf:2a:0c:d6:05:d8:1c:36:1e:96:0a:7b:a6:fd:d0:
5d:50:ec:a6:52:6b:aa:01:32:e7:d5:a6:6a:95:06:36:87:67:
c6:d9:d3:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:14 2025 by rpki-client