Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.mft
File: ujWrXugfdPzKSgwT6XLsHP6WeTs.mft (raw, json)
Hash identifier: 7+ax6Sp8jvO6TYFJUEKlI/WYDaFga3bhVvnCmb4zf40=
Subject key identifier: B3:62:ED:21:BF:AC:6E:1A:34:3F:B4:5A:CD:46:84:A7:49:32:3D:DD
Authority key identifier: BA:35:AB:5E:E8:1F:74:FC:CA:4A:0C:13:E9:72:EC:1C:FE:96:79:3B
Certificate issuer: /CN=ba35ab5ee81f74fcca4a0c13e972ec1cfe96793b
Certificate serial: 019A71B8B7D946D269F49F58A1DD575EF08C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ujWrXugfdPzKSgwT6XLsHP6WeTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.mft
Manifest number: 09F6
Signing time: Tue 11 Nov 2025 07:02:02 +0000
Manifest this update: Tue 11 Nov 2025 07:02:02 +0000
Manifest next update: Wed 12 Nov 2025 07:02:02 +0000
Files and hashes: 1: ujWrXugfdPzKSgwT6XLsHP6WeTs.crl (hash: zrP5RH74PpsMZx2MIXE0JFUyLp4tDTgXMSJsP8IrgwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ujWrXugfdPzKSgwT6XLsHP6WeTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:b7:d9:46:d2:69:f4:9f:58:a1:dd:57:5e:f0:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba35ab5ee81f74fcca4a0c13e972ec1cfe96793b
Validity
Not Before: Nov 11 07:02:02 2025 GMT
Not After : Nov 12 07:02:02 2025 GMT
Subject: CN=b362ed21bfac6e1a343fb45acd4684a749323ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e4:a2:bb:25:7c:68:e7:5c:17:43:0b:7b:4e:
d8:8f:14:85:a1:3b:79:43:69:ea:4f:28:44:0a:6c:
78:0f:e1:a7:c3:4b:11:c1:cc:3c:4d:dc:f6:75:e5:
8f:19:59:f3:e6:84:4f:5c:d0:e7:fb:cf:dd:e9:be:
8b:20:bf:e0:81:88:53:19:e8:21:d9:8d:4a:8b:c6:
2b:6b:3c:43:7c:86:11:09:2c:87:13:04:17:51:2b:
b7:a6:3d:09:78:ee:3b:af:51:8e:31:52:c9:c9:00:
cf:0f:3d:17:3f:40:39:eb:10:1d:17:cb:b4:62:a4:
5c:ff:50:f3:ec:01:a6:43:00:a6:8c:35:23:21:d0:
b0:f1:80:79:05:c3:7b:ce:7f:42:cb:30:f6:35:c0:
a1:7e:cf:39:81:c3:32:22:44:5a:bc:a3:05:dc:96:
e8:9d:01:3e:7d:47:14:d1:43:11:0f:a7:c8:f4:30:
23:60:91:09:ac:bb:3b:ba:fa:86:7b:e2:29:f5:8d:
64:62:99:a4:59:8b:86:a9:81:b4:7d:0a:d1:5c:3e:
b0:b8:3d:09:20:7e:0c:aa:18:24:ab:01:7f:3e:1b:
cd:6f:03:7b:8b:2a:f6:b9:21:39:e9:b8:c9:08:94:
44:8b:6d:25:7c:1d:5d:ad:6a:54:40:b2:15:23:28:
b9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:62:ED:21:BF:AC:6E:1A:34:3F:B4:5A:CD:46:84:A7:49:32:3D:DD
X509v3 Authority Key Identifier:
keyid:BA:35:AB:5E:E8:1F:74:FC:CA:4A:0C:13:E9:72:EC:1C:FE:96:79:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ujWrXugfdPzKSgwT6XLsHP6WeTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c0bd66-eed2-429f-a6c7-15efc6785b16/1/ujWrXugfdPzKSgwT6XLsHP6WeTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:f2:8e:75:7b:7d:c6:03:f7:88:b3:49:d0:f6:40:29:77:08:
5a:06:67:ab:4e:ff:c2:ba:fe:a2:8a:46:45:5d:4b:fe:ce:c9:
2a:19:2e:c2:89:4a:6b:63:ad:54:2a:33:27:cd:10:9b:c4:99:
27:78:07:bb:0b:3c:bc:48:ed:db:bf:d7:f8:37:d6:a2:a4:b2:
3b:3a:78:9e:2a:a3:86:e8:84:35:1e:08:2d:b1:35:fa:c3:8f:
75:c4:56:2c:5b:ec:cf:2c:39:bf:6a:0e:4a:77:51:3f:df:3d:
27:5b:25:d8:43:34:8c:03:c9:64:c7:48:b5:dd:71:e5:12:6f:
62:03:03:48:d5:6b:c5:c1:40:dd:e5:32:c2:24:22:ce:9b:8b:
67:dc:db:de:a2:63:d9:bc:0f:69:31:6e:72:4d:59:fd:4a:3e:
5c:34:bd:18:f2:76:21:c3:e1:8d:83:5e:47:f1:45:59:0e:ee:
71:8d:42:d0:60:88:41:d3:2c:29:36:f9:c4:88:b6:8b:da:27:
c2:7f:e0:f2:5e:ce:9c:ee:8b:6c:13:ff:a7:3f:9d:c9:db:77:
70:9a:ae:b0:61:a8:97:6d:a1:13:aa:1e:89:99:74:be:6b:de:
d6:17:15:1b:0f:c0:59:ba:83:24:9c:90:10:42:a6:21:0a:9e:
d2:71:30:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuLfZRtJp9J9Yod1XXvCMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhMzVhYjVlZTgxZjc0ZmNjYTRhMGMxM2U5NzJlYzFjZmU5
Njc5M2IwHhcNMjUxMTExMDcwMjAyWhcNMjUxMTEyMDcwMjAyWjAzMTEwLwYDVQQD
EyhiMzYyZWQyMWJmYWM2ZTFhMzQzZmI0NWFjZDQ2ODRhNzQ5MzIzZGRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOSiuyV8aOdcF0MLe07YjxSFoTt5
Q2nqTyhECmx4D+Gnw0sRwcw8Tdz2deWPGVnz5oRPXNDn+8/d6b6LIL/ggYhTGegh
2Y1Ki8YrazxDfIYRCSyHEwQXUSu3pj0JeO47r1GOMVLJyQDPDz0XP0A56xAdF8u0
YqRc/1Dz7AGmQwCmjDUjIdCw8YB5BcN7zn9CyzD2NcChfs85gcMyIkRavKMF3Jbo
nQE+fUcU0UMRD6fI9DAjYJEJrLs7uvqGe+Ip9Y1kYpmkWYuGqYG0fQrRXD6wuD0J
IH4MqhgkqwF/PhvNbwN7iyr2uSE56bjJCJREi20lfB1drWpUQLIVIyi5nQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLNi7SG/rG4aND+0Ws1GhKdJMj3dMB8GA1UdIwQY
MBaAFLo1q17oH3T8ykoME+ly7Bz+lnk7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWpXclh1Z2ZkUHpLU2d3VDZYTHNIUDZXZVRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9jMGJkNjYtZWVkMi00MjlmLWE2Yzct
MTVlZmM2Nzg1YjE2LzEvdWpXclh1Z2ZkUHpLU2d3VDZYTHNIUDZXZVRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS9jMGJkNjYtZWVkMi00MjlmLWE2YzctMTVlZmM2Nzg1YjE2
LzEvdWpXclh1Z2ZkUHpLU2d3VDZYTHNIUDZXZVRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp/KOdXt9
xgP3iLNJ0PZAKXcIWgZnq07/wrr+oopGRV1L/s7JKhkuwolKa2OtVCozJ80Qm8SZ
J3gHuws8vEjt27/X+DfWoqSyOzp4niqjhuiENR4ILbE1+sOPdcRWLFvszyw5v2oO
SndRP989J1sl2EM0jAPJZMdItd1x5RJvYgMDSNVrxcFA3eUywiQizpuLZ9zb3qJj
2bwPaTFuck1Z/Uo+XDS9GPJ2IcPhjYNeR/FFWQ7ucY1C0GCIQdMsKTb5xIi2i9on
wn/g8l7OnO6LbBP/pz+dydt3cJqusGGol22hE6oeiZl0vmve1hcVGw/AWbqDJJyQ
EEKmIQqe0nEwtg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:17 2025 by rpki-client