Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
File: uah5UDfdQPAYNz9HxZ4EohL1oFU.mft (raw, json)
Hash identifier: 884suew/FqJJ3MEGGh3drrcH8vPau5w9mBKAgvIw970=
Subject key identifier: 49:C5:6E:56:44:50:A4:FE:85:54:B3:1F:42:E9:DD:1A:17:81:32:99
Authority key identifier: B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
Certificate issuer: /CN=b9a8795037dd40f018373f47c59e04a212f5a055
Certificate serial: 019A7112E289BFF7070DE83F982F40591317
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
Manifest number: 1212
Signing time: Tue 11 Nov 2025 04:00:54 +0000
Manifest this update: Tue 11 Nov 2025 04:00:54 +0000
Manifest next update: Wed 12 Nov 2025 04:00:54 +0000
Files and hashes: 1: M1itbXmnZylV5aQUWr69aXiCwXg.roa (hash: oXiWWV28pZSLXwASeR4LLqDCm3LTnJMuWV3NYCvwU8Q=)
2: uah5UDfdQPAYNz9HxZ4EohL1oFU.crl (hash: DroH55qx8W9ZEkvwmbspKciEnEKDHJBpn+PKOYFylcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:e2:89:bf:f7:07:0d:e8:3f:98:2f:40:59:13:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9a8795037dd40f018373f47c59e04a212f5a055
Validity
Not Before: Nov 11 04:00:54 2025 GMT
Not After : Nov 12 04:00:54 2025 GMT
Subject: CN=49c56e564450a4fe8554b31f42e9dd1a17813299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ad:a9:5d:cf:78:b8:f0:ba:1e:78:9d:02:91:
2f:69:eb:1c:9d:e6:7d:6a:e0:6c:3e:63:62:9a:dd:
d2:2b:4d:31:43:0c:6f:09:5e:37:72:50:43:54:82:
c5:83:cf:c5:86:0a:e8:a8:51:50:97:71:9c:9b:4d:
f0:50:20:dd:bc:07:69:c2:c0:fc:62:04:7d:2c:e8:
e2:5d:71:7b:1c:b4:eb:fa:ee:1a:99:57:d8:0d:01:
5d:71:50:5e:28:fa:de:0d:f9:54:89:9f:5d:c3:8e:
be:d5:7b:5c:a0:44:98:31:9d:bd:f8:29:eb:2a:c1:
9a:ff:81:f2:fc:ea:11:ea:b3:c9:24:44:d6:eb:a6:
b0:36:d4:68:5f:ee:e1:44:73:13:a7:ca:90:41:ea:
47:4b:b4:f9:0f:18:2c:01:08:46:53:f7:82:bd:05:
c4:b3:8a:cc:18:23:b8:79:21:62:ca:bd:1e:28:ae:
19:61:01:51:ee:8d:24:d0:03:0e:cd:9c:88:f8:bc:
5d:a5:ad:fe:b4:97:02:30:7c:8f:f3:48:78:c4:26:
e4:e8:7e:aa:c6:b4:b2:f2:22:bf:d6:6e:45:2f:08:
9f:14:42:80:3d:91:e2:bb:60:36:64:23:ef:c5:7f:
7c:34:89:29:31:b0:49:ce:92:a1:49:98:dd:40:c2:
d2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C5:6E:56:44:50:A4:FE:85:54:B3:1F:42:E9:DD:1A:17:81:32:99
X509v3 Authority Key Identifier:
keyid:B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:90:79:b0:ec:ff:57:20:a2:f3:e8:9a:6b:4d:e0:d0:7e:d4:
ba:af:8b:41:16:ff:68:65:1d:fb:9e:e3:8f:f6:3b:e7:3e:f3:
ed:0e:59:8e:fb:e7:fe:47:0a:a8:37:ce:86:8e:4f:e5:26:1c:
c3:43:57:cc:35:53:2d:49:1f:91:ca:29:73:5b:e5:e6:98:0e:
ee:5c:7f:f2:2e:d3:1c:ca:e5:43:15:d7:3f:e9:bf:7e:ee:59:
63:99:46:35:84:8e:f4:89:d9:6e:93:d3:4f:d9:8f:c0:7e:c7:
de:9a:95:b5:06:19:49:a2:b8:09:f5:43:70:f4:c0:05:68:9d:
a0:61:59:20:91:52:e5:69:7f:67:65:fa:9e:12:e8:11:41:84:
4b:6d:e8:9f:db:82:a7:68:90:67:77:06:a5:64:b6:d4:59:ea:
04:64:42:ae:d1:fb:ab:49:39:a3:51:14:3e:ee:cd:70:2b:57:
a3:22:84:c7:6c:f3:25:d5:c3:fb:b5:3b:50:25:25:c4:82:6d:
9f:c4:d3:be:36:b9:38:41:8b:1e:71:35:eb:e9:2b:f5:1d:27:
d7:4b:15:3c:ae:e7:d9:9c:b6:45:b1:2b:88:a4:05:72:2d:e5:
66:75:c6:af:2c:b0:11:06:1b:8c:75:e1:40:4f:35:a2:44:42:
46:16:e3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:13 2025 by rpki-client