Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
File: UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft (raw, json)
Hash identifier: MxXG7kAkRgdo6nKfPGZflcEKSUofkgZ4Vv2dgc/VT2A=
Subject key identifier: C6:80:EA:4E:57:D0:C1:1B:3B:BD:43:85:8E:0D:5F:70:BF:1F:D6:95
Authority key identifier: 52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
Certificate issuer: /CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Certificate serial: 0199FC58D9ABDB1F5CC9106DB651D9A47EB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
Manifest number: 0F42
Signing time: Sun 19 Oct 2025 12:01:45 +0000
Manifest this update: Sun 19 Oct 2025 12:01:45 +0000
Manifest next update: Mon 20 Oct 2025 12:01:45 +0000
Files and hashes: 1: 6O-rdAPfJL5ja0fsAq0cDrxpBv4.roa (hash: 6xTcUx7aYzPFSdoIn+1iA2U6ilYMmAiW4t3gwfarhms=)
2: UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl (hash: h5SA3OBZQySt2qvdCg74jOYBzn2bkqZfQ9ZwZ1RIy/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:d9:ab:db:1f:5c:c9:10:6d:b6:51:d9:a4:7e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529343235581cf4104190da7a0ca174b9c0d0bd5
Validity
Not Before: Oct 19 12:01:45 2025 GMT
Not After : Oct 20 12:01:45 2025 GMT
Subject: CN=c680ea4e57d0c11b3bbd43858e0d5f70bf1fd695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:72:e8:f5:62:d0:b2:ef:81:4b:d5:96:86:02:
3b:7f:5b:ce:9a:1e:13:ef:11:e7:ef:3f:64:1b:77:
af:8e:62:6a:24:eb:81:0f:2b:49:0e:5b:f3:24:9d:
52:9a:17:6e:72:25:a4:8c:f4:52:1d:2c:8a:97:57:
c7:9f:1a:61:de:a4:4c:c2:12:aa:78:f6:c0:59:95:
b7:e4:f5:a3:fd:14:84:6b:51:ea:4b:a2:e2:c8:1c:
d5:09:25:dc:61:e8:fc:96:fb:5c:d7:00:34:f6:21:
f2:c1:c6:71:8b:fb:e7:c7:c9:6d:3e:b3:e0:a6:c8:
b3:06:53:bf:05:0e:92:d0:9a:45:34:30:02:2e:55:
14:27:9e:cb:8b:65:58:fa:d6:c8:d5:0a:15:f6:1e:
0e:3c:a5:09:45:85:82:ab:fe:c3:2b:bd:73:65:f3:
66:03:5a:3a:b6:39:04:3a:8d:96:5d:c7:b4:60:96:
60:12:f6:c0:38:33:9b:83:ac:d5:51:77:fc:a3:15:
e7:9b:30:38:14:b7:37:bf:35:47:c5:2b:36:9c:e7:
1d:8e:94:20:81:ce:14:0e:b2:e8:78:be:5a:9a:47:
d2:66:3b:36:a5:0d:fb:b3:ff:0a:5c:6b:0e:91:d3:
35:40:10:4b:1b:05:62:d9:1f:b4:c4:6f:86:8f:53:
36:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:80:EA:4E:57:D0:C1:1B:3B:BD:43:85:8E:0D:5F:70:BF:1F:D6:95
X509v3 Authority Key Identifier:
keyid:52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:06:33:c0:68:e9:95:1f:32:b8:45:dc:b7:8f:71:96:d3:e8:
a1:b3:ee:85:76:81:e0:7e:e1:0a:3d:87:41:12:a9:64:33:0c:
19:61:61:5e:cb:c9:0f:65:e9:de:82:5b:a7:ee:b0:db:62:81:
b3:5f:9e:1b:66:19:8c:d1:77:01:9a:aa:ba:a9:a9:61:6a:b1:
c0:6a:d9:bd:ae:d8:d0:4e:72:03:cc:5c:2d:7c:9e:25:0c:22:
d5:cd:7d:fc:1c:ca:fc:31:27:16:23:e1:ce:6d:02:b5:42:2d:
bd:a5:3d:50:7e:d8:39:fc:2e:d2:81:97:43:2a:40:28:88:fc:
2f:68:56:ed:41:de:31:2a:66:92:b0:cb:8f:61:61:c2:a7:eb:
6f:ff:50:fe:12:9b:5a:29:d5:92:1f:cb:8c:12:7c:8a:c3:53:
3c:f6:af:c0:dd:66:4e:ca:d0:59:32:dc:e2:c5:9d:0f:9b:1d:
f0:8f:e8:46:c5:f7:eb:22:e0:4d:f4:86:01:dd:04:68:7e:9b:
1b:7d:3f:2a:21:28:27:7d:59:a0:a5:9c:9e:96:26:1f:87:c6:
77:9c:06:1b:e1:51:25:0a:84:d8:73:63:80:2a:fd:e8:c9:d2:
40:52:c0:0b:84:3f:c3:34:bb:16:6a:14:57:5f:70:52:02:8c:
c6:fb:d9:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:36:18 2025 by rpki-client