Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.mft
File: UuAiJP-5cRcuSTXtfdll0RVQibY.mft (raw, json)
Hash identifier: uQpABQdzGUvVw9eBjS06vGB66Q3Yk1hmORQZFL63mE4=
Subject key identifier: 34:95:86:91:B5:31:D3:73:3F:5E:67:68:FB:67:38:94:85:C5:09:BE
Authority key identifier: 52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6
Certificate issuer: /CN=52e02224ffb971172e4935ed7dd965d1155089b6
Certificate serial: 019A4DAAA6EE1A89331751CE2640F7C0767B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.mft
Manifest number: 1098
Signing time: Tue 04 Nov 2025 07:00:20 +0000
Manifest this update: Tue 04 Nov 2025 07:00:20 +0000
Manifest next update: Wed 05 Nov 2025 07:00:20 +0000
Files and hashes: 1: 8g7txje9SoqKQ2otzBwN4bLks6E.roa (hash: jScybjiDRqy1KfNxgfGU+W1leoiKzswBB30SIf7izkk=)
2: E4EhM0-kA25MP39S_T3GJCpO3Pw.roa (hash: hTsswn0ssoYNPfeB4crcap6/QoIOzl9xyRnuZFRerT0=)
3: UuAiJP-5cRcuSTXtfdll0RVQibY.crl (hash: RkSDS2/R8Fy7AsOUXGegueVRHUXxwdVef9/IDpsGOPw=)
4: XAWoF1o6RF-O0CnxEu5_WiGXOA0.roa (hash: HOK/I+6RekhxtoM3dVSYk41KWy3U6Z5NuhquO1H0w+A=)
5: xRvop4eDwIlWec9OLfdUtV2OZS4.roa (hash: dMqiD2K0LVdcRyi1ti46JUn48ZtCTxuc9WQCXxg9omI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.mft
rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:aa:a6:ee:1a:89:33:17:51:ce:26:40:f7:c0:76:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52e02224ffb971172e4935ed7dd965d1155089b6
Validity
Not Before: Nov 4 07:00:20 2025 GMT
Not After : Nov 5 07:00:20 2025 GMT
Subject: CN=34958691b531d3733f5e6768fb67389485c509be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:01:c9:8c:29:9a:b3:4d:4b:86:ae:69:ee:90:
28:b5:b7:4c:5a:ed:48:ae:69:54:f1:90:8c:45:d1:
d7:91:25:78:1b:40:a9:b6:05:91:c6:ce:d8:33:78:
f0:25:b9:1e:58:d5:42:8d:9e:4f:48:68:70:05:61:
8a:fa:6a:38:23:4b:39:c8:3b:07:5e:29:20:c4:07:
7c:65:0d:75:22:2a:b0:db:fd:07:48:ba:96:8c:28:
ae:8d:09:dd:15:47:3a:63:1b:85:55:34:9f:d6:d7:
6b:19:5c:0c:59:f7:9a:a9:ce:58:3b:44:21:f4:df:
51:da:fe:ee:92:05:5c:a1:07:b1:41:79:a6:69:aa:
13:13:37:d6:08:2b:b8:e6:85:e9:c8:c5:9e:c8:05:
22:17:51:b7:e2:0e:49:ff:43:f7:c8:55:0b:6f:00:
b5:47:55:8d:67:21:73:78:6f:cf:7e:8d:93:91:99:
c3:7e:b4:d7:2e:d9:84:0c:f6:5d:eb:fa:1a:ba:4b:
90:b1:d1:bb:15:28:12:cc:4c:96:5c:72:c7:c7:4a:
66:31:86:b4:c9:b3:01:88:63:7b:dc:4c:e3:5a:07:
00:d2:09:2f:a5:81:53:8e:ac:7c:b4:93:bc:f9:d2:
25:57:ce:8d:51:36:66:69:54:1d:a1:05:04:d8:b9:
b8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:95:86:91:B5:31:D3:73:3F:5E:67:68:FB:67:38:94:85:C5:09:BE
X509v3 Authority Key Identifier:
keyid:52:E0:22:24:FF:B9:71:17:2E:49:35:ED:7D:D9:65:D1:15:50:89:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UuAiJP-5cRcuSTXtfdll0RVQibY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/311bc5-3f36-4d5e-abde-b8da89406bed/1/UuAiJP-5cRcuSTXtfdll0RVQibY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:52:45:64:2a:bd:50:da:7b:11:9b:7b:95:d0:8a:97:25:4f:
03:89:f7:aa:7e:a8:62:8d:6b:38:b5:14:c2:d6:ef:fe:66:74:
04:97:7c:6d:5a:d5:d1:3e:f5:64:b1:a7:0c:ea:9e:a2:ac:6a:
c3:be:52:97:f5:e4:91:90:33:9a:16:b6:15:d0:35:12:cd:5a:
5c:99:1e:d0:dc:94:32:88:36:25:5c:a8:ce:c7:c9:fb:cc:a5:
3f:ef:a4:e8:9f:22:42:e6:c3:a3:ed:a4:7a:e1:1c:9c:de:30:
3d:e2:25:05:b9:27:05:e3:1e:ee:ac:95:a3:ec:ad:c9:0d:8c:
63:50:88:93:74:0c:eb:f6:d0:56:74:7c:5a:63:06:9b:b7:ed:
73:d3:e7:3b:0d:76:28:19:07:22:78:6e:3f:d6:45:cc:f5:8c:
81:88:b0:33:24:9f:c7:b6:4c:e1:1b:98:f7:0d:9e:16:3a:45:
57:3c:81:15:6e:48:78:be:76:1d:eb:67:d6:23:44:8d:cf:c2:
66:0f:16:e1:6e:bc:53:4b:6e:a0:3d:e3:cc:f2:c3:33:62:5e:
dc:0a:b1:3c:ee:f0:a6:9b:48:4a:77:c1:f8:41:4e:59:e6:2b:
56:ba:bc:b3:90:fd:e4:92:2e:82:e8:24:12:7a:c3:7f:86:e8:
a7:ce:dd:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 13:52:41 2025 by rpki-client