Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
File: uah5UDfdQPAYNz9HxZ4EohL1oFU.mft (raw, json)
Hash identifier: FTExqb2LANU462DTK8Ww6lu2xdWf3QHez1Q6WBTtFEc=
Subject key identifier: 2E:07:DC:41:90:F4:C9:EA:89:23:9F:62:71:75:B7:D2:55:D5:AB:96
Authority key identifier: B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
Certificate issuer: /CN=b9a8795037dd40f018373f47c59e04a212f5a055
Certificate serial: 019922FAF89462AF28D44C8CE3BED190C456
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
Manifest number: 1165
Signing time: Sun 07 Sep 2025 07:01:36 +0000
Manifest this update: Sun 07 Sep 2025 07:01:36 +0000
Manifest next update: Mon 08 Sep 2025 07:01:36 +0000
Files and hashes: 1: M1itbXmnZylV5aQUWr69aXiCwXg.roa (hash: oXiWWV28pZSLXwASeR4LLqDCm3LTnJMuWV3NYCvwU8Q=)
2: uah5UDfdQPAYNz9HxZ4EohL1oFU.crl (hash: oZlxiCjjITcuLKvepsDP7CtrcFAlWJMbPzovT6fDQrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:f8:94:62:af:28:d4:4c:8c:e3:be:d1:90:c4:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9a8795037dd40f018373f47c59e04a212f5a055
Validity
Not Before: Sep 7 07:01:36 2025 GMT
Not After : Sep 8 07:01:36 2025 GMT
Subject: CN=2e07dc4190f4c9ea89239f627175b7d255d5ab96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f5:ce:40:b5:c4:c2:91:6d:18:5b:07:a2:39:
1f:82:2d:c9:bf:1c:0e:79:6e:ef:ea:58:7a:2b:59:
ad:02:38:11:c0:5d:32:54:a3:f0:6d:77:8a:e5:d3:
4a:1b:60:01:b1:85:08:1e:07:b4:46:f4:f0:4f:af:
34:2d:c2:e0:07:63:76:8d:a6:f5:32:00:aa:cd:a6:
cf:c3:29:72:6a:0d:79:e4:df:72:88:d2:6b:0a:e6:
fd:d1:c9:23:35:3b:6c:a1:96:a1:d1:7a:f0:bc:58:
49:c3:70:20:eb:f9:2a:47:8f:0d:88:cd:09:31:6d:
70:e7:8a:90:f2:92:c9:77:a2:e4:e3:a3:fd:80:93:
39:b8:27:92:47:7b:1b:34:e0:e5:6a:d0:f4:8d:91:
56:32:fb:f0:54:11:b2:27:78:e1:a0:78:d3:b1:8e:
a3:94:a7:2c:cd:72:d1:d0:1b:3a:b0:9b:dd:ad:6a:
b6:65:f7:b2:99:b4:c7:fa:32:c1:3e:0a:d3:69:f7:
87:06:7c:3e:eb:49:6e:a7:53:6f:af:b9:eb:a7:75:
0f:ce:30:0b:15:3a:91:6f:79:a8:90:8e:a8:b2:ac:
cd:5a:fe:3b:84:b5:77:b0:1f:08:db:5d:4b:1d:c9:
10:9b:e2:fb:48:8c:e5:5d:49:37:33:76:97:38:d8:
49:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:07:DC:41:90:F4:C9:EA:89:23:9F:62:71:75:B7:D2:55:D5:AB:96
X509v3 Authority Key Identifier:
keyid:B9:A8:79:50:37:DD:40:F0:18:37:3F:47:C5:9E:04:A2:12:F5:A0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uah5UDfdQPAYNz9HxZ4EohL1oFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/f3d326-154e-412e-b344-7d22b7684479/1/uah5UDfdQPAYNz9HxZ4EohL1oFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:f4:27:f4:fe:b0:4f:a3:46:4e:18:9a:c3:5d:62:cc:f6:f9:
d4:c2:05:2a:98:56:49:ba:e1:06:13:db:1c:6c:8e:ad:21:f0:
18:2d:3c:2c:b3:d4:f0:23:a8:cd:9a:36:ee:6f:12:3f:33:07:
79:03:0d:58:8d:27:0d:0c:c4:c0:44:3d:68:7d:7c:a5:83:ed:
69:79:c2:98:4e:3b:9d:aa:e9:2e:20:69:83:32:b6:98:21:f9:
12:d4:c1:f1:f4:47:f5:47:be:28:60:d2:aa:01:d7:b2:69:69:
4a:1c:a6:ae:0e:70:68:bc:25:b2:27:ba:72:aa:e5:19:a0:7e:
0e:3f:80:e9:45:13:2d:92:b9:c0:38:15:3d:2a:ab:3d:9a:e9:
28:74:64:8e:ce:6f:2d:13:e9:6f:f0:d6:75:48:14:b2:be:9e:
49:43:41:1f:4f:f1:67:89:b8:c9:20:b4:84:4c:40:ec:5c:e6:
0c:69:83:ae:27:b4:65:60:0c:84:83:dd:f1:7e:b8:7f:d8:45:
8d:66:be:a5:46:6c:d3:d5:4e:08:dd:f3:ac:7d:12:3e:de:98:
36:f7:f4:23:be:59:82:bd:bb:aa:d3:57:ae:4a:6b:41:76:3e:
63:5e:99:24:ab:62:c7:60:56:72:bf:7c:fb:c6:4e:21:78:ba:
73:78:8f:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:53:59 2025 by rpki-client