Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
File: UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft (raw, json)
Hash identifier: Tw1L0EPzCtTXNjg8zPytfPwpAHyk4Q2E5OkdQO4vO0I=
Subject key identifier: 37:85:89:57:A0:7A:94:33:BE:1D:8B:DB:D8:07:A1:0B:52:F1:F0:1F
Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Certificate serial: 019A2B55CD42E66C412F73C988259051FE3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
Manifest number: 0646
Signing time: Tue 28 Oct 2025 15:00:34 +0000
Manifest this update: Tue 28 Oct 2025 15:00:34 +0000
Manifest next update: Wed 29 Oct 2025 15:00:34 +0000
Files and hashes: 1: CtRLEvt809yNddQQC3-YdVEz8S0.roa (hash: iOnEw767paDA6G2cUVNf8J3Qp7lK0IUOS20QbdMgtb4=)
2: UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl (hash: i3jdsxOc+CP+sPIU6WLGaXNTQD9SN4DsVXV1AP5YX1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2b:55:cd:42:e6:6c:41:2f:73:c9:88:25:90:51:fe:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Validity
Not Before: Oct 28 15:00:34 2025 GMT
Not After : Oct 29 15:00:34 2025 GMT
Subject: CN=37858957a07a9433be1d8bdbd807a10b52f1f01f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:04:a4:2b:b3:f0:72:8d:f4:1a:86:b8:e7:7b:
78:38:8f:ed:82:d1:c8:6b:f1:d6:20:6f:e2:f5:05:
3b:08:8a:37:66:e2:f0:5c:46:de:37:3a:3b:ab:89:
3c:fc:39:3d:ea:d0:b5:bf:8f:ea:70:6a:4b:00:18:
c3:d7:16:3b:b9:0c:09:48:ca:46:ad:8b:7e:78:18:
4b:2b:01:e8:a7:f6:96:9a:e1:75:bc:60:e3:e1:ab:
4a:a9:e0:97:05:d2:47:51:ef:57:a4:fd:51:c5:04:
36:4f:cd:41:3e:7c:8f:87:fd:fa:5d:8b:5d:60:d8:
df:d0:8a:11:7d:d7:3d:5e:de:3e:f5:fd:fd:c9:2c:
26:a9:9f:2f:66:24:19:ac:93:31:83:cf:0b:92:73:
9e:0a:c9:2f:05:8e:68:c7:25:30:88:b1:7c:54:1d:
3e:2f:82:b5:ad:eb:20:19:f8:b6:6e:c7:86:32:00:
31:81:8e:cd:9f:72:71:59:de:6f:51:33:cd:30:f4:
88:48:e7:7a:f4:62:3a:a4:0c:e5:ce:8d:a9:7d:94:
b5:50:2f:ae:a8:18:44:04:2f:55:03:32:34:dd:5c:
d2:cc:71:ab:a1:ac:38:97:2e:47:d3:32:3b:7b:04:
c2:f0:fd:9d:c0:dc:00:ad:34:d6:b7:2e:7c:7a:e0:
9a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:85:89:57:A0:7A:94:33:BE:1D:8B:DB:D8:07:A1:0B:52:F1:F0:1F
X509v3 Authority Key Identifier:
keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c9:2a:b8:2c:47:f0:ba:70:34:72:d4:68:fb:0c:74:31:9d:
da:9c:11:11:96:18:13:4a:76:bb:d9:d0:55:d4:fa:c2:e9:01:
37:69:4e:2e:c1:5e:5e:b3:67:8a:e9:75:3b:48:86:a1:95:f4:
bf:34:e8:68:15:c7:a2:cb:45:88:88:65:b6:ea:d4:b5:8a:65:
cf:21:4e:a9:d2:df:e9:0e:21:99:12:00:f9:d3:49:ff:d6:fc:
02:2e:ab:8e:c9:8c:bc:08:a7:43:ec:1b:77:10:1c:b3:5e:29:
af:9b:9a:82:ec:74:ef:2a:28:30:29:dd:48:e4:aa:46:41:5d:
c8:de:a7:75:aa:bf:87:08:c7:de:a8:24:b0:a5:ac:f6:3c:94:
56:80:e8:e7:5b:18:1d:0d:b3:9b:8e:7a:49:40:bd:46:53:85:
35:e8:1e:4d:c8:b0:e5:56:4b:59:bc:a6:5f:b0:5b:38:37:a9:
d9:1c:69:ef:21:ec:f0:d5:50:c6:78:cb:5b:0b:2e:32:8e:2d:
6a:12:e2:4d:8d:29:94:a4:66:f4:7c:3e:94:7a:e3:8e:22:43:
81:f1:6c:23:bd:af:b3:ef:d0:e9:33:5c:d3:44:e5:75:2d:b0:
28:9b:61:a8:fc:3b:1e:17:22:66:2d:ab:e7:df:20:91:0c:eb:
0f:79:aa:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 16:43:56 2025 by rpki-client