Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
File: UiezboKeTYVl7WV0jhsck8zQDO4.mft (raw, json)
Hash identifier: n1/kJ7GMD5UPcKrgxPikF+xMAUPqbxc0ZBGSofGrqSc=
Subject key identifier: B3:1B:CE:EC:1D:DD:A1:68:33:34:25:80:95:00:98:45:C0:AF:65:64
Authority key identifier: 52:27:B3:6E:82:9E:4D:85:65:ED:65:74:8E:1B:1C:93:CC:D0:0C:EE
Certificate issuer: /CN=5227b36e829e4d8565ed65748e1b1c93ccd00cee
Certificate serial: 01996021EA954DE91582A78B1FEC81FCD659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
Manifest number: 10A4
Signing time: Fri 19 Sep 2025 04:00:59 +0000
Manifest this update: Fri 19 Sep 2025 04:00:59 +0000
Manifest next update: Sat 20 Sep 2025 04:00:59 +0000
Files and hashes: 1: RL9-61LJ-xL7UGImuGRdOdgZP1M.roa (hash: W3jLVStcHUC/Po0Yzh+5aEEvdCfFtCnTP/kBctED3eg=)
2: UiezboKeTYVl7WV0jhsck8zQDO4.crl (hash: IrrZ7Jnb0lGHjWhuhzxp3h0s2Fwg1sj17aP4Kd+VEdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Sep 2025 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:60:21:ea:95:4d:e9:15:82:a7:8b:1f:ec:81:fc:d6:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5227b36e829e4d8565ed65748e1b1c93ccd00cee
Validity
Not Before: Sep 19 04:00:59 2025 GMT
Not After : Sep 20 04:00:59 2025 GMT
Subject: CN=b31bceec1ddda1683334258095009845c0af6564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:22:09:1c:d4:c3:fa:93:5b:61:f5:97:61:70:
0f:42:d6:3d:2c:e9:f8:f1:00:f6:9a:cc:1b:88:59:
c0:77:30:a2:2a:14:c3:02:7d:ba:c5:4e:ac:27:b7:
30:e6:28:8f:b1:dc:43:e5:c8:90:52:78:13:db:22:
55:cc:00:af:1e:79:9a:da:b2:f7:a8:f7:13:cf:4d:
52:15:d7:37:fd:af:83:80:d4:b2:c1:4a:f4:50:85:
54:77:cc:6f:c8:b3:ea:88:54:5b:a1:ee:8c:e3:cf:
b0:20:98:c1:04:ff:2c:96:17:8a:74:57:14:60:96:
d8:4b:4a:e3:a8:d0:a7:01:b0:88:f4:c9:71:a8:b7:
d2:05:dc:99:64:d6:b7:b3:52:4c:47:5c:78:a6:52:
ce:5a:ee:70:00:52:c6:80:ba:12:57:b1:53:44:fe:
e0:c7:6b:7b:d6:21:e8:2f:a1:d7:d8:b4:cf:24:26:
cd:1e:93:20:a7:da:5c:e8:f6:c5:d7:07:cb:9c:88:
c6:9d:b4:5f:16:d0:43:26:aa:73:59:e1:f8:95:7d:
87:c9:5b:8e:e5:24:e8:90:38:94:3a:86:32:49:82:
42:fd:1f:73:63:fc:8f:a7:35:f0:50:d1:e8:e5:87:
c9:eb:a3:75:af:69:91:c3:a7:33:3b:df:64:ca:19:
1c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1B:CE:EC:1D:DD:A1:68:33:34:25:80:95:00:98:45:C0:AF:65:64
X509v3 Authority Key Identifier:
keyid:52:27:B3:6E:82:9E:4D:85:65:ED:65:74:8E:1B:1C:93:CC:D0:0C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:be:b6:6c:df:33:ea:3c:8d:03:01:41:a2:36:5e:d8:6c:7d:
7b:d6:79:92:0e:6e:df:e4:d8:2a:5e:33:c3:cd:d0:a6:02:8d:
de:be:de:30:b2:21:69:ab:bb:6d:d3:6a:f0:d2:98:5d:13:25:
2e:d6:11:fb:10:09:d6:cf:39:04:c4:6b:34:a3:08:09:87:8d:
f1:ed:ba:3b:1b:1f:e4:8c:9a:5b:23:c4:95:51:75:f4:ee:9a:
d0:32:f4:d4:07:3d:48:aa:e7:d5:b9:82:d6:57:74:82:90:56:
f2:a2:b4:23:56:52:c0:d3:cb:17:f8:bf:9f:7c:00:74:a6:f1:
1f:a8:91:55:70:e9:13:9a:5e:c8:a7:70:3f:7f:19:4b:bf:07:
c3:19:f2:2f:7d:fb:54:08:63:94:8f:c5:47:1d:b8:51:f9:ed:
f8:3f:58:21:77:e4:df:1f:67:8a:d8:f4:44:4d:af:aa:d9:08:
7f:d2:fe:19:4b:28:ab:3c:1a:ce:8f:e4:bf:63:b9:22:75:f6:
5b:05:a9:05:80:3a:2c:ca:26:4d:42:b5:8e:02:11:e8:f9:69:
aa:3a:13:33:c0:79:5d:8a:75:75:c0:4d:45:9c:e6:23:3f:1c:
5b:fd:dc:da:1d:25:5d:d4:81:aa:2a:de:e3:48:84:0b:82:d3:
34:62:79:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 09:25:36 2025 by rpki-client