Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
File: uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft (raw, json)
Hash identifier: 23OIoSG6ova7xCu2n8xGcxyDqsrn52nEqzlBIe0Mdxk=
Subject key identifier: CD:2D:4F:DC:FA:6B:9A:85:99:6B:64:5F:B7:CD:06:B8:AE:8A:09:69
Authority key identifier: B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
Certificate issuer: /CN=b90907cee4fac50f3753622ad21a989ae7741c47
Certificate serial: 019A7225A90572AAA9F9A989044CB018EB51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
Manifest number: 1421
Signing time: Tue 11 Nov 2025 09:01:01 +0000
Manifest this update: Tue 11 Nov 2025 09:01:01 +0000
Manifest next update: Wed 12 Nov 2025 09:01:01 +0000
Files and hashes: 1: uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl (hash: xzzlsiaEtw4iHRCl5VqezN3qUewfHbWhhvTrmgNiiEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:a9:05:72:aa:a9:f9:a9:89:04:4c:b0:18:eb:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90907cee4fac50f3753622ad21a989ae7741c47
Validity
Not Before: Nov 11 09:01:01 2025 GMT
Not After : Nov 12 09:01:01 2025 GMT
Subject: CN=cd2d4fdcfa6b9a85996b645fb7cd06b8ae8a0969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d4:f9:38:db:22:f7:c5:2c:aa:7f:89:f2:e8:
54:af:29:93:f8:e3:1d:9f:67:78:13:a5:5a:88:08:
90:fe:57:e8:30:52:e9:f6:8a:c5:f5:9e:53:ea:bd:
cc:dd:97:a7:b4:5e:7b:cf:57:ed:5f:d6:07:62:de:
e0:33:1b:07:91:32:4c:71:ce:4d:4e:fa:bf:aa:fb:
67:93:51:47:aa:13:eb:ed:4b:ce:e6:1c:51:d0:69:
fe:ac:9c:1d:99:5b:e0:c8:5f:92:7b:81:fc:f0:bc:
f6:e5:9a:e3:c9:9d:02:8e:28:b6:bc:0f:6d:c3:d1:
46:2e:77:59:dd:ff:dc:f3:2d:7c:62:c7:8e:7e:21:
5c:d9:25:a8:fa:2c:4d:38:00:4e:4e:07:28:5f:d9:
19:2f:59:2c:9f:c9:ef:dd:0a:b1:bb:5b:19:f1:a1:
2c:5d:dc:be:b4:d7:85:c4:94:9c:75:56:aa:5b:30:
75:3c:3c:65:42:b8:9e:ad:c0:b1:fe:b9:33:9f:58:
73:f5:57:8d:d6:19:56:50:6f:9b:e4:0b:47:c6:97:
f2:28:dd:a4:12:5f:00:7c:a4:4b:c7:89:f2:a4:34:
a0:ca:32:fd:7a:e8:53:0c:f5:d4:f7:a9:f8:4e:66:
0e:60:00:59:0d:62:5f:03:cf:bb:b5:48:90:8f:18:
11:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2D:4F:DC:FA:6B:9A:85:99:6B:64:5F:B7:CD:06:B8:AE:8A:09:69
X509v3 Authority Key Identifier:
keyid:B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:d1:98:53:dc:55:11:73:a3:6a:f8:e8:f4:57:28:ab:05:c3:
25:d0:61:8e:01:54:a4:7b:29:3a:cf:3f:cb:4a:b3:72:cb:30:
64:1e:44:8d:cc:2b:4c:da:2b:b0:3d:71:31:36:02:04:ad:3f:
6d:2f:e0:72:5f:ba:57:43:d6:34:3b:e2:22:72:25:ba:eb:6b:
d1:45:c0:c2:ed:16:ea:5f:ff:c8:96:18:e8:9d:42:a5:8b:f2:
ed:0e:5c:54:bb:ce:78:2e:25:60:44:a9:18:09:fe:53:5b:12:
32:d6:13:ba:96:89:e5:d7:da:93:41:7a:c9:ea:ab:df:ea:e2:
ba:21:5b:b1:20:9b:2d:12:90:ca:d1:2c:51:3d:69:81:e2:48:
dd:4c:14:b7:eb:bb:c0:f0:4f:da:9a:fa:f1:78:c0:9f:33:cd:
d0:1c:f4:7f:fd:5b:1e:f1:1f:fb:82:d6:f5:37:02:d6:85:8f:
c9:d3:f4:2e:7e:f9:fe:f4:d1:48:6b:6e:d4:83:9d:22:dd:86:
d3:be:c7:ec:bf:4e:50:ba:6a:b9:c6:1a:34:eb:86:98:9e:b2:
c7:be:19:71:bb:4e:31:ce:eb:21:eb:69:68:a9:28:b0:65:bc:
a6:e9:7c:21:53:92:79:30:79:d4:2f:8e:3a:e2:55:6d:ae:5d:
77:3a:32:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:14 2025 by rpki-client