Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: ST4jKXcLIzDPePGaxOQ67Dl5BOWGz2KFngZ1H0ZtluU=
Subject key identifier: 9B:D0:25:17:0F:61:39:55:B0:F5:6A:A2:0C:2B:9C:BF:07:36:F0:32
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 019A1CF5AD4F7A538F4682A8450621C5FE44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 0F90
Signing time: Sat 25 Oct 2025 20:00:53 +0000
Manifest this update: Sat 25 Oct 2025 20:00:53 +0000
Manifest next update: Sun 26 Oct 2025 20:00:53 +0000
Files and hashes: 1: Vevc9vrQGyVF5o4NzN0QFHnZAiA.roa (hash: AOWcNE88wNCBWfSzm2+MmaRV4c7usJ5kQGrhyE8Gj6M=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: RVoGh6MNTedhsLdbI2jWo+i6ZK2k4L4xQzhA/FdKG1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 20:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:f5:ad:4f:7a:53:8f:46:82:a8:45:06:21:c5:fe:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Oct 25 20:00:53 2025 GMT
Not After : Oct 26 20:00:53 2025 GMT
Subject: CN=9bd025170f613955b0f56aa20c2b9cbf0736f032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:95:a9:2a:8c:7a:b1:4a:b2:cf:02:1f:84:bb:
84:95:6e:7e:63:b4:ec:59:7b:45:e9:f6:58:ac:ab:
79:ef:05:b2:71:b0:af:84:64:06:10:c9:c0:88:da:
86:3a:3d:83:da:dd:b3:fc:34:a9:2c:19:07:ea:55:
86:95:82:fb:19:4f:a1:8d:82:3b:d2:9f:bf:7b:a5:
e6:c0:6b:b7:6e:1d:67:4a:a4:e4:98:35:17:97:f5:
be:12:15:b9:47:13:e5:de:81:f0:5e:8a:63:4c:c4:
d2:02:48:54:5c:08:34:f0:8e:a0:a0:c3:90:19:8b:
eb:49:bc:11:cf:fc:15:2f:b0:7d:a9:dc:18:78:6e:
41:67:5c:12:7e:5e:3e:5d:35:c6:78:d8:5c:67:e9:
33:e1:f1:cf:fe:d9:fe:27:a5:51:97:bc:a0:f3:37:
70:24:91:8e:d6:23:3a:0b:50:72:b9:e7:db:a8:5a:
97:5b:8c:d7:dc:d3:f9:f7:ba:80:7c:55:33:44:93:
43:1d:6a:ee:3d:93:ca:f9:fe:c2:bf:40:d1:03:4d:
31:b9:d2:4d:fc:9a:36:58:41:e4:fc:fe:ec:06:39:
aa:5f:68:be:a2:15:d6:4b:17:cd:85:ac:28:ab:78:
2a:a4:35:bd:dc:35:52:ae:47:83:df:b9:c1:11:fc:
90:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:D0:25:17:0F:61:39:55:B0:F5:6A:A2:0C:2B:9C:BF:07:36:F0:32
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:a2:18:a7:69:0a:e9:34:5a:62:b8:a9:37:5a:d0:79:c1:ec:
6e:e9:2b:21:18:05:c4:83:be:31:ac:4c:05:34:64:36:c2:c4:
80:da:b3:f6:09:7f:d5:84:43:37:57:67:c0:5a:11:0b:d3:0f:
2e:01:8e:7d:60:26:c9:78:d7:bf:e7:f1:94:78:d0:87:a3:38:
93:38:88:2b:05:4a:34:78:8f:1a:92:ec:21:ea:6a:5d:02:3f:
40:34:08:c1:1a:51:3f:13:14:bd:0b:ec:34:a3:88:03:ef:4c:
e6:14:99:71:9c:0b:c9:12:8a:f1:87:4b:50:97:44:37:98:4c:
3b:c9:58:9d:04:e5:48:81:fc:83:31:1e:3e:4b:45:ae:67:42:
e2:99:9c:48:51:d9:f2:ca:f7:42:37:6f:43:66:cd:c7:90:2b:
09:00:89:fa:3e:8e:b7:c5:c6:af:b1:a9:b3:8f:ba:f4:26:d7:
f0:5e:df:9d:4c:9c:e6:9e:11:8c:17:6b:d0:3e:a2:7c:83:6e:
45:7e:4c:7b:97:dd:a6:b2:30:ef:fd:e7:e5:0c:ac:fa:14:6d:
39:b5:fe:79:a7:c4:13:4c:86:df:a0:25:f7:75:47:c3:1b:91:
ef:f0:a6:2c:43:c3:8d:7b:2f:c3:0b:e1:ff:06:47:6a:e2:49:
97:4c:61:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 06:13:59 2025 by rpki-client