Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json)
Hash identifier: NHTySL0ynqZCkyNWz7Zdt3HIVUvf9S1vxWWi5IJFnf0=
Subject key identifier: 36:1D:73:6B:9C:F9:ED:08:B4:8F:F4:85:F6:67:E6:AE:2B:6B:0E:C0
Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Certificate serial: 019A228966BDAB098FD05A7003F0E40074FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
Manifest number: 0D27
Signing time: Sun 26 Oct 2025 22:00:21 +0000
Manifest this update: Sun 26 Oct 2025 22:00:21 +0000
Manifest next update: Mon 27 Oct 2025 22:00:21 +0000
Files and hashes: 1: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: uo54Q/6avkmUsryjaHqKQZZ6LviwjvV/dEjGVPJ2l1s=)
2: yBgRtAUy9SDMB2oNfVg6DWBcxdo.roa (hash: th+et5jSmKPB56Gge2PfFSgmFKaHL/juuWVdT7KzSfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:89:66:bd:ab:09:8f:d0:5a:70:03:f0:e4:00:74:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9
Validity
Not Before: Oct 26 22:00:21 2025 GMT
Not After : Oct 27 22:00:21 2025 GMT
Subject: CN=361d736b9cf9ed08b48ff485f667e6ae2b6b0ec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:79:e7:8c:5c:58:a6:c5:89:d5:dd:d4:05:cc:
12:93:52:c3:48:b0:59:d4:5f:d3:e4:7a:eb:1d:4c:
fe:60:a4:34:5a:f1:87:1c:d6:17:95:e3:a6:75:39:
df:d6:2e:a9:dc:b6:85:94:f4:9e:e9:98:cf:07:0f:
31:85:70:c5:57:1c:1e:e0:82:27:84:88:7d:01:12:
ea:b1:25:ea:84:3b:56:b3:46:1c:9a:0f:2b:35:63:
be:e8:ff:a9:cb:80:bd:e8:1a:6b:c4:e6:60:e3:03:
67:39:3e:8b:85:45:e6:d1:46:5f:74:ce:3d:3f:86:
31:61:95:be:a8:8a:ec:e3:b4:a2:34:14:0f:e6:7a:
87:92:89:7b:88:48:8e:d5:a0:07:2a:c1:8c:c5:f7:
c3:7a:63:c6:73:79:82:13:bb:17:07:42:6a:e4:a1:
03:e2:25:2f:60:73:ea:22:99:2c:b6:d8:21:f3:c3:
92:b3:df:41:0a:e9:68:1c:61:2e:59:c0:b9:6b:d5:
77:9f:be:3e:f1:be:9c:cb:59:4b:b3:5d:2d:5a:5c:
e4:54:f0:71:b6:04:8e:f0:03:78:a9:59:27:d6:d2:
e0:16:ff:d4:84:6e:68:c4:f0:c8:d5:45:98:ed:52:
a0:8c:7c:53:4d:3d:1f:58:42:9f:54:ad:e7:b0:26:
03:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1D:73:6B:9C:F9:ED:08:B4:8F:F4:85:F6:67:E6:AE:2B:6B:0E:C0
X509v3 Authority Key Identifier:
keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:39:f1:d0:38:6d:25:a6:18:f6:59:f1:8e:b5:5b:01:46:13:
f8:86:05:3e:71:c8:22:a0:6f:9d:4a:31:1e:88:95:f1:eb:91:
fa:d9:b6:48:49:19:64:81:27:c0:3e:11:a8:a0:c4:8b:82:7f:
a8:0e:78:2b:c7:a9:32:b8:45:a0:fb:3e:8e:09:52:75:55:af:
c4:e4:1d:11:b7:e7:28:85:26:30:7c:62:83:63:26:45:c0:de:
9d:47:e5:94:99:c0:77:34:9f:c5:2f:ac:80:d9:9b:fd:88:ba:
1b:82:1c:85:3b:06:f8:3c:8e:91:16:cd:7f:78:a6:a5:82:2a:
17:40:e1:71:cb:e1:a0:0f:93:38:c4:eb:20:34:ff:41:8c:41:
0a:c1:41:80:de:a0:c6:ab:d0:17:dd:34:18:8e:a6:27:ef:cd:
a2:4c:cd:c4:41:fe:ef:83:f0:ef:29:83:b6:4f:ea:7e:6a:a6:
6a:ee:93:41:f7:46:a4:a1:40:36:49:a5:d2:c8:0c:73:06:5b:
e6:33:42:c1:17:37:de:67:44:26:3a:ae:2d:77:77:06:a0:14:
b4:d5:e0:ed:28:90:0c:3f:39:6c:4b:6e:f5:b4:ac:09:83:75:
24:1a:54:9a:27:f2:bb:dd:1b:00:37:bf:24:9e:86:f2:c5:68:
be:78:aa:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:27:58 2025 by rpki-client