Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
File: uxBfoysrF18Y3VkI3ScZFbv0444.mft (raw, json)
Hash identifier: gvlCNRI4TztObNZ62t1i208B8APvE8avk5lz6zcGEME=
Subject key identifier: 17:94:2E:D5:94:6D:C4:84:B4:72:99:36:23:65:99:AF:6F:50:7E:43
Authority key identifier: BB:10:5F:A3:2B:2B:17:5F:18:DD:59:08:DD:27:19:15:BB:F4:E3:8E
Certificate issuer: /CN=bb105fa32b2b175f18dd5908dd271915bbf4e38e
Certificate serial: 0199FC8F94F4559D7B58029891EB2B56912D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
Manifest number: ED
Signing time: Sun 19 Oct 2025 13:01:32 +0000
Manifest this update: Sun 19 Oct 2025 13:01:32 +0000
Manifest next update: Mon 20 Oct 2025 13:01:32 +0000
Files and hashes: 1: DH5lWnRu4VKIIyGckr7F-ImJh8g.roa (hash: h8GN1vDvRKFfkC5MTFTkZWf2BqZtBn12n/5FdI8mvIA=)
2: uxBfoysrF18Y3VkI3ScZFbv0444.crl (hash: BlQ+EJH/d9tY+suD203s5iWiPDNifkKFthmTpmQBawA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:94:f4:55:9d:7b:58:02:98:91:eb:2b:56:91:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb105fa32b2b175f18dd5908dd271915bbf4e38e
Validity
Not Before: Oct 19 13:01:32 2025 GMT
Not After : Oct 20 13:01:32 2025 GMT
Subject: CN=17942ed5946dc484b4729936236599af6f507e43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7f:d8:07:b6:4c:fe:10:c5:10:7d:ef:d8:ce:
e2:e0:ec:04:fb:9b:60:d9:5a:81:2c:0f:e5:42:b8:
18:28:99:86:bf:c7:ff:3f:c9:f6:38:a8:35:a4:a2:
66:02:d9:4a:6b:97:7d:5e:1c:b0:a3:c6:a3:fc:6d:
98:06:67:00:d0:2f:2d:e5:b7:0e:d5:e9:a0:c4:90:
6d:a0:d1:aa:f0:86:75:54:8d:f3:b6:4e:a0:0d:5f:
97:39:6c:ae:16:03:c8:8d:32:bc:c0:46:75:74:8f:
0c:50:59:a8:de:9e:2b:b4:23:1d:b6:e8:f9:24:49:
10:e4:99:ff:c7:de:38:34:eb:a6:d3:be:3c:b7:ae:
fd:c1:b8:77:62:87:6b:92:25:e5:6b:05:48:5d:a5:
bc:7d:db:eb:e9:3b:29:98:1a:24:5e:df:de:d7:3c:
0b:78:b0:e9:b6:7f:23:42:da:1e:16:75:2d:5a:7c:
b8:56:df:ae:a7:bd:bb:e8:f3:e6:7d:62:57:67:71:
31:ff:e2:d4:23:b2:0a:f5:90:47:3d:61:ff:cc:a7:
f8:4a:3a:03:4e:d3:e1:82:b9:00:f7:bc:dd:56:05:
3c:91:fa:21:c4:7d:7e:40:18:3d:e0:52:1a:74:ab:
ef:38:af:4c:5c:d5:5c:cd:3e:d0:49:8d:74:e4:ac:
4b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:94:2E:D5:94:6D:C4:84:B4:72:99:36:23:65:99:AF:6F:50:7E:43
X509v3 Authority Key Identifier:
keyid:BB:10:5F:A3:2B:2B:17:5F:18:DD:59:08:DD:27:19:15:BB:F4:E3:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:b4:30:1b:48:f2:f8:a5:72:f5:ce:29:c3:3c:ca:95:02:2a:
df:7f:78:6c:68:1d:26:c3:1d:0e:35:b5:08:64:94:dc:cd:00:
3b:18:69:10:fc:5e:e5:41:ca:85:c7:01:7d:9f:74:6c:c4:18:
3f:7b:7e:6a:08:83:1c:c9:12:46:84:c7:7e:14:ce:99:16:18:
b8:bc:a4:c4:48:3c:4e:d2:32:7a:67:75:d5:13:fa:81:a1:f4:
8c:9b:e0:28:78:4d:a6:39:4d:f4:12:92:ee:1d:da:54:b1:ac:
09:7e:03:3e:a5:c8:af:1e:99:28:4e:ed:b5:9d:e6:b8:3e:1a:
5d:8b:d8:64:5d:69:d0:8c:b1:0b:2c:f8:6e:12:7e:ce:aa:cd:
39:84:d7:17:09:7f:48:3a:29:66:55:68:11:b9:2d:ac:7e:0b:
fd:83:26:aa:1e:20:5f:41:4b:7a:97:7e:f9:5b:a4:d6:fe:2d:
ab:8b:e1:0d:08:08:47:c5:23:c7:45:0b:00:2f:f9:8d:a9:75:
cb:f3:13:a4:dc:46:e1:2f:01:8b:a2:3b:21:95:2e:2d:89:a7:
d8:7f:82:aa:5f:86:ad:b5:70:1e:d8:e1:2e:a6:7e:ed:b7:8f:
c4:06:83:41:d3:e8:96:1c:bc:a7:12:3a:fd:87:7b:2f:0c:10:
bf:75:44:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:15 2025 by rpki-client