Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
File: uvzQImt58j3kemr95RRLGynii1w.mft (raw, json)
Hash identifier: iuSduOQuEsSgw1zZaiw45dSN9RlyLIq+hPcBYJaLELU=
Subject key identifier: A2:37:10:24:4B:1E:8E:C2:43:7E:E1:E8:2E:40:4A:8E:F8:BA:54:44
Authority key identifier: BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C
Certificate issuer: /CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c
Certificate serial: 019A725C96DAB83D08F3C116DB3ADBE30349
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
Manifest number: 08F6
Signing time: Tue 11 Nov 2025 10:01:01 +0000
Manifest this update: Tue 11 Nov 2025 10:01:01 +0000
Manifest next update: Wed 12 Nov 2025 10:01:01 +0000
Files and hashes: 1: uvzQImt58j3kemr95RRLGynii1w.crl (hash: S34YOczH/zJB8+KRG7s3QryTcULDG1J5zyoASXD8cuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:96:da:b8:3d:08:f3:c1:16:db:3a:db:e3:03:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c
Validity
Not Before: Nov 11 10:01:01 2025 GMT
Not After : Nov 12 10:01:01 2025 GMT
Subject: CN=a23710244b1e8ec2437ee1e82e404a8ef8ba5444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e7:29:d0:f4:86:fc:6c:5f:cf:6e:b8:24:c6:
0c:11:f3:a6:1b:2b:cc:21:2d:fb:af:a2:d5:83:66:
d1:a1:61:6a:68:48:86:04:2a:d2:6e:2a:a6:52:61:
cb:bc:5c:8f:ea:e7:06:61:eb:a7:9b:75:fc:47:4a:
a5:48:a0:7b:de:81:a7:9d:dc:70:0d:40:6b:c1:ce:
59:50:22:a5:cc:f8:04:3e:92:61:b0:84:68:a3:97:
cb:3b:72:a0:51:61:62:fc:fd:29:f8:d0:0f:bd:a8:
e0:77:7a:9a:83:99:b6:b4:5e:5f:81:f0:a6:eb:9f:
3e:cc:76:14:20:ea:33:fb:04:6e:e5:8c:57:db:9e:
36:41:41:9d:1f:8f:32:d6:ef:90:c4:f1:0c:92:04:
a0:5a:34:ab:4c:ca:22:29:1d:c5:bb:b4:57:f8:a7:
bc:33:4d:29:c9:31:bb:0b:ab:15:f5:64:44:64:31:
53:81:30:88:28:97:9e:ef:f2:a4:92:4d:5a:fd:23:
4d:f7:f1:68:3d:83:70:90:98:6e:84:a9:16:94:e4:
cc:52:4a:04:b7:64:1d:ad:ed:27:fe:e8:12:68:2d:
a4:b3:9d:08:03:e7:ae:93:8e:3a:e4:99:b8:a2:f5:
bc:43:cf:25:a5:2f:62:5e:ef:1e:b6:2c:17:2d:6a:
62:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:37:10:24:4B:1E:8E:C2:43:7E:E1:E8:2E:40:4A:8E:F8:BA:54:44
X509v3 Authority Key Identifier:
keyid:BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:5a:a4:54:13:52:ef:ba:09:9f:44:03:43:d3:29:ce:6e:13:
2a:16:b0:c9:2b:5e:38:fd:39:f4:d6:f8:fc:2f:23:92:44:0e:
b1:15:17:15:f3:51:b1:01:e6:79:b0:8a:ab:1b:75:67:a8:29:
05:4b:d3:ae:0b:fc:09:e6:09:2b:d5:9f:59:38:70:6b:7a:a7:
70:3d:ae:35:c3:f8:88:33:e1:26:81:79:7d:a6:55:bd:6c:db:
36:1a:03:46:b2:c2:6b:f6:d7:01:eb:fb:de:53:15:3a:74:b3:
26:5e:49:cd:62:8a:43:f4:db:70:38:63:8e:99:7a:af:10:70:
0e:fc:8a:4b:f2:16:25:6d:b2:54:c9:45:06:0e:e5:61:e8:69:
de:b5:42:4d:af:4e:18:30:c9:a8:c5:7a:79:a9:3a:96:e6:a3:
81:e1:85:83:cf:9f:2e:66:9a:58:32:c3:76:73:02:9e:05:fa:
5d:7a:2f:32:89:58:6c:ed:98:d7:1c:b9:12:fb:22:4f:cf:5e:
04:81:05:1e:57:6c:06:ed:54:2c:f4:f7:4c:db:d1:69:e7:6e:
9a:3e:e6:6b:ed:bc:8d:b6:c9:0a:cb:40:2a:8c:3e:06:23:71:
40:87:af:cf:65:17:f6:4b:f1:fa:8e:03:72:06:f1:7a:6b:d1:
0b:db:9b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:51:10 2025 by rpki-client