Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
File: ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft (raw, json)
Hash identifier: ojmMN0+7sLOhyvEaOUTV7QteIKRDZTHpnulq4VWzf3M=
Subject key identifier: 5A:41:ED:ED:61:F3:C5:AA:64:15:4C:DA:ED:F0:DD:EF:30:76:AD:A5
Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Certificate serial: 019A23D33A45A1792BE43E4E4D2F6019A473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
Manifest number: 08C6
Signing time: Mon 27 Oct 2025 04:00:36 +0000
Manifest this update: Mon 27 Oct 2025 04:00:36 +0000
Manifest next update: Tue 28 Oct 2025 04:00:36 +0000
Files and hashes: 1: 9qqw5-kT_WV_X39A7wZIImdbzHo.roa (hash: /+5dGBlEHLXX+0YtcqdadMo/w6B/YFbkAqy9tbmNdEg=)
2: D-sLa7SP7XelLhZGOPS-ls06iHQ.roa (hash: O/tqtREZzKy5oPDokpycb2qRKRocKJlF54vVhaheJr4=)
3: XI8GYNvzBktqANN3ULY6yNPZsp4.roa (hash: 0Mxp84Xa3ZGuCVESuvLHwIOTltEO7ZBfIp1LcrOP0ho=)
4: eRUACPCXV-4Ib9JOJdpUbWI_TYw.roa (hash: h9bviEq7QynmkHeqFVqOAhXJmtcEK3L94GyVb2n9ZXc=)
5: hJkdSoDXpzIKTUPp93OLm4_CfgM.roa (hash: GAALV0VthJPoxa0vb/cdFv6fAU1JjHbthL2uNWZeyCc=)
6: ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl (hash: E4L92SZNCyBMypcjXmAzSxj2hqw8xfh/y+tL1mQ92OU=)
7: yLW-Wxb-WEK3SlgHfRgcFULgwtU.roa (hash: 47c/8wbrDeeCgPSJoS7prqWBSvhn47quuwVKT8eb4AA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:d3:3a:45:a1:79:2b:e4:3e:4e:4d:2f:60:19:a4:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Validity
Not Before: Oct 27 04:00:36 2025 GMT
Not After : Oct 28 04:00:36 2025 GMT
Subject: CN=5a41eded61f3c5aa64154cdaedf0ddef3076ada5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:8a:51:fc:b4:77:cc:a8:1a:38:7e:ea:f1:cb:
9a:70:0a:3e:94:63:3f:63:f3:e9:15:fd:4f:c0:eb:
d2:4b:0d:a2:99:0f:38:9c:3b:fb:c2:d1:b9:b9:ca:
cc:03:10:ef:85:4b:76:89:5b:0b:83:1c:2e:83:21:
b7:45:01:67:7f:3d:94:12:0f:e3:91:f3:cb:a1:fe:
41:41:94:7d:c3:7a:cf:68:36:6d:87:1e:70:d6:95:
53:d3:4a:e9:0a:a8:35:76:ab:7d:6e:b4:8e:92:ac:
ee:bd:27:c3:67:a8:5d:19:53:6d:75:ff:a6:cd:b5:
7b:52:a6:cd:94:77:c7:98:2a:49:3b:67:18:38:45:
b3:50:1a:80:5b:cd:fb:7e:79:81:aa:3a:72:1b:1f:
70:a4:cf:7a:35:ec:81:a9:02:6b:af:42:f2:12:bb:
fa:53:23:ea:5c:b4:71:ba:8f:f8:02:b2:27:07:47:
dd:20:c5:8b:e0:e8:0b:9b:80:09:1d:2c:e3:6a:e7:
52:ed:b4:42:f1:74:b7:eb:a0:9b:a4:1a:3c:b9:10:
95:8e:a3:8e:32:42:bd:23:f5:50:08:56:82:bb:36:
da:ac:da:b8:39:a3:50:cb:e0:72:61:2a:c0:7d:cc:
75:ef:56:66:56:0f:ec:a0:6f:17:b4:38:90:92:a6:
5b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:41:ED:ED:61:F3:C5:AA:64:15:4C:DA:ED:F0:DD:EF:30:76:AD:A5
X509v3 Authority Key Identifier:
keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:c9:27:ce:96:7c:b1:de:a1:31:a6:85:8a:de:16:56:23:ec:
30:20:52:22:c3:50:11:f8:b2:46:7f:d3:d1:b3:42:04:80:b5:
d4:35:2a:2a:2d:6b:e5:7d:40:28:a1:47:72:65:3c:a4:da:2d:
5d:75:1f:b0:d5:92:f2:dc:bb:e7:db:78:ee:9a:08:4f:29:a8:
ee:28:f1:5b:85:b9:8c:cd:87:bc:3b:59:4b:50:99:be:ec:e6:
25:b4:46:bd:21:87:93:b8:d5:22:a6:cf:34:9a:63:79:39:71:
ac:3e:d0:27:c6:0d:0d:2f:16:c8:a1:a4:78:c5:e2:8f:6e:c3:
f0:4e:36:e1:c9:e8:9b:06:14:04:21:a3:63:4a:31:ea:5c:60:
85:a7:df:c1:39:1b:da:a5:e4:f3:ed:f4:6d:a3:ac:67:2e:ec:
e4:6c:63:33:35:fd:91:29:11:e5:e2:f8:1e:c0:d7:61:1f:24:
64:84:15:dd:cb:ac:64:8e:f8:d6:3f:cb:0c:fc:fc:06:9e:e6:
db:bb:24:cf:ce:7c:34:49:a0:b2:bf:e6:2a:f3:d2:05:25:74:
94:f0:6c:7b:ae:05:0e:cc:9c:6b:4f:9a:8d:84:0c:8d:e7:5c:
57:89:2b:ac:43:1d:1c:05:a8:f0:f9:5b:3f:53:f7:f4:9c:24:
65:29:b9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 10:02:26 2025 by rpki-client