Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
File: UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft (raw, json)
Hash identifier: ckdCXo7M5K22x5DxUcNEj/iPABQ4PIU91seonGmLkec=
Subject key identifier: 9F:8B:CD:EA:E5:14:5F:45:57:AC:6D:E6:73:11:A9:CE:BF:EC:7C:76
Authority key identifier: 52:62:D3:F2:7C:C0:5B:E5:92:4B:B7:BD:89:0F:7E:6D:EF:FB:49:7D
Certificate issuer: /CN=5262d3f27cc05be5924bb7bd890f7e6deffb497d
Certificate serial: 019A7294033D3428DCF3F6B4F79FE671D65A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
Manifest number: 167D
Signing time: Tue 11 Nov 2025 11:01:33 +0000
Manifest this update: Tue 11 Nov 2025 11:01:33 +0000
Manifest next update: Wed 12 Nov 2025 11:01:33 +0000
Files and hashes: 1: UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl (hash: hamxvW9ZsV/jDJsvarIQfmKHA/ZCFgDusTMlbyu9OJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:94:03:3d:34:28:dc:f3:f6:b4:f7:9f:e6:71:d6:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5262d3f27cc05be5924bb7bd890f7e6deffb497d
Validity
Not Before: Nov 11 11:01:33 2025 GMT
Not After : Nov 12 11:01:33 2025 GMT
Subject: CN=9f8bcdeae5145f4557ac6de67311a9cebfec7c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bd:93:bd:fd:3e:ef:4d:70:ba:d2:74:8f:42:
70:80:fe:21:68:a8:0a:23:89:70:8e:9f:7a:2c:5a:
44:c7:4c:74:34:1f:60:e9:0d:0a:84:94:94:86:50:
fc:6b:f3:05:7c:ef:43:cb:71:91:a3:37:2f:36:9c:
43:7b:f8:ea:5c:e8:bd:cc:37:9f:22:1a:fd:f7:df:
5c:8a:17:d0:a0:44:55:dd:67:4d:28:74:a5:07:5d:
49:74:02:6e:3d:f0:91:2e:65:92:29:85:b9:7e:54:
2d:6a:62:a6:14:79:2e:c7:a2:45:85:19:bb:84:f7:
f0:0d:d4:e4:3e:19:1e:25:f3:1f:53:1e:7d:ed:f8:
0a:45:83:37:14:24:de:58:21:c0:c3:69:4f:a4:b3:
7b:5e:da:ee:a7:20:34:ff:bd:0c:5b:9a:51:75:1b:
9e:da:c7:2a:dc:5b:6c:c1:0d:7c:a5:1c:ce:99:4c:
6d:f9:14:fb:a7:88:b5:73:a8:09:f9:bf:b5:89:52:
df:c6:fd:e1:02:90:8e:4e:73:45:03:ba:83:84:c1:
a1:97:11:7f:40:c3:e2:c2:a9:9b:de:9b:18:af:e8:
c3:8c:60:a3:cc:87:01:40:de:6f:20:dd:6a:6c:29:
37:70:36:41:9c:4b:44:42:97:5d:34:27:95:e6:ee:
69:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8B:CD:EA:E5:14:5F:45:57:AC:6D:E6:73:11:A9:CE:BF:EC:7C:76
X509v3 Authority Key Identifier:
keyid:52:62:D3:F2:7C:C0:5B:E5:92:4B:B7:BD:89:0F:7E:6D:EF:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmLT8nzAW-WSS7e9iQ9-be_7SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5974d6-6c67-442b-993a-7ae5987bee62/1/UmLT8nzAW-WSS7e9iQ9-be_7SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:9b:52:17:a3:d1:a7:1e:f6:06:44:ee:4a:2b:b7:ed:7d:26:
55:74:8e:59:ce:99:80:ea:6b:00:a7:7c:29:a0:80:15:ba:3e:
1d:93:9a:66:04:f8:71:8d:30:45:01:41:7c:3e:06:5e:ee:64:
56:53:2d:32:90:71:ad:41:82:fc:fe:9a:79:13:9b:0d:22:d7:
5f:a4:fc:85:09:b8:28:8c:d4:e4:31:1b:84:64:14:6b:61:f9:
1b:41:f6:34:a7:1d:9f:8a:11:28:a9:eb:12:9f:22:cd:6f:cd:
84:33:80:bd:9e:bc:4d:56:ce:81:db:7c:42:12:92:cc:dd:63:
d5:2b:b8:ac:5c:ac:24:fd:a8:15:2e:99:58:71:18:e4:9e:ae:
67:06:e6:0b:3f:3f:6e:b0:10:92:cc:59:05:d7:3f:19:17:d3:
c2:e1:aa:ac:d6:bf:f0:5d:14:f3:ce:d7:7f:5a:60:9f:aa:78:
fd:90:f8:31:35:c1:61:68:fe:d3:d7:f3:c5:97:18:3d:50:66:
c4:d4:b8:d4:63:6f:29:cb:fc:7d:30:95:95:57:dc:57:59:38:
63:a4:68:99:68:ec:ef:f9:3c:79:d5:8a:ca:06:78:5c:67:b3:
a7:b5:40:e7:11:ec:9a:10:1f:83:8d:c9:1b:ff:8f:ed:c5:74:
cf:7b:bb:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:10:56 2025 by rpki-client