Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json)
Hash identifier: WW2Cfsx+cQHDHKPixW19KPu+l2QbLVBhwNRCIG4+dc0=
Subject key identifier: B1:98:21:11:21:E4:B4:E6:95:69:64:72:10:E9:30:96:2B:09:F5:41
Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Certificate serial: 019A0259AD50CE719FAAAFFCCE48B2BF9B3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
Manifest number: 0D39
Signing time: Mon 20 Oct 2025 16:00:22 +0000
Manifest this update: Mon 20 Oct 2025 16:00:22 +0000
Manifest next update: Tue 21 Oct 2025 16:00:22 +0000
Files and hashes: 1: 02fZd277xqKcuTMYmhFfbwx9HwA.roa (hash: bemKy7xu5/Ii5zazW11+IHavu8JMVH9QIzpKn7l6Pf4=)
2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: 06J2f4gYofjcMnK8IBRylPGlokcYi9WO84VuXJfkqYs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:59:ad:50:ce:71:9f:aa:af:fc:ce:48:b2:bf:9b:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Validity
Not Before: Oct 20 16:00:22 2025 GMT
Not After : Oct 21 16:00:22 2025 GMT
Subject: CN=b198211121e4b4e69569647210e930962b09f541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:72:27:e4:62:14:54:50:d4:07:e8:68:db:80:
c8:8b:d6:5a:0b:c7:f4:92:bc:bb:96:ac:b0:93:fa:
ac:22:64:c8:b4:7e:aa:a9:15:c7:33:ff:5b:e9:6c:
73:02:6d:e2:51:3c:21:e3:40:2e:6b:8e:80:b8:91:
fe:02:fc:f0:26:06:d2:f1:df:a1:23:a7:63:a1:9b:
7a:14:e4:4e:06:94:64:14:1d:a2:91:ac:4a:69:74:
dc:cb:46:1a:b8:e7:a0:d0:b0:af:71:96:10:5e:c0:
82:01:2c:2b:31:2f:3d:dd:36:8d:43:50:69:96:3c:
16:db:46:43:bd:03:61:b7:8e:cf:4d:8d:f0:be:34:
f2:49:6c:30:38:15:59:c7:ef:e3:69:7a:48:b6:d7:
32:04:08:09:79:f4:1f:d0:31:d8:30:a4:1c:5e:f1:
75:02:4e:4c:92:66:6f:fe:0c:60:d8:13:75:f2:e4:
5d:29:df:93:6a:a2:cb:8f:81:b5:80:64:5e:cb:47:
b4:97:46:1e:37:6a:62:a1:a8:7b:59:1d:69:4e:7e:
3b:66:0e:85:e8:ff:de:9d:66:e2:d5:6d:50:2a:2d:
d8:98:7e:2d:c3:c1:d8:5c:3a:5f:a0:2f:34:1f:de:
70:fe:28:42:1b:d8:22:c0:d1:e6:1b:27:e0:08:bd:
2f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:98:21:11:21:E4:B4:E6:95:69:64:72:10:E9:30:96:2B:09:F5:41
X509v3 Authority Key Identifier:
keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:6d:5f:86:2c:8d:77:8b:50:cd:22:3a:ff:a6:a1:18:7f:45:
f3:55:2c:e8:c1:78:85:0e:03:5a:5c:ab:e1:10:69:8a:c9:1d:
d5:69:e2:90:fd:bb:f5:59:f8:51:af:f9:50:e9:f3:08:54:93:
f2:ed:2f:1e:19:e8:df:0d:3b:77:6f:db:dd:64:9a:bc:14:ce:
c6:53:9a:06:ec:54:f7:07:dd:2f:64:4a:5f:00:42:cc:ee:26:
9e:ff:2d:02:9f:5e:9e:96:86:09:10:0f:3d:1b:b8:34:51:7d:
84:a2:c5:d4:af:a0:e4:a5:b7:0a:db:37:99:c9:8c:2b:9f:dd:
f2:17:fe:85:f6:ec:bd:a1:2d:d5:17:a2:ce:2b:de:ed:85:87:
a0:b6:ef:2b:c5:9d:cd:37:a2:df:76:65:0b:46:ee:5c:43:b3:
b1:5d:ec:7b:1f:69:b0:2a:ea:ab:82:3a:4b:7f:61:c0:2b:a2:
c9:46:5b:f2:86:ac:25:d1:65:6c:d1:27:6a:a4:d9:69:4f:ec:
5d:2f:50:c8:ae:d3:dd:26:c5:e9:65:44:2a:54:db:53:36:9c:
a3:2b:ce:0a:44:b8:7c:2c:97:c3:dd:6a:ff:84:38:72:86:67:
1a:32:7a:3f:89:74:4a:5a:23:92:94:5b:37:95:4a:2c:d0:75:
90:85:a0:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:08:34 2025 by rpki-client