Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
File: rUZjafOSfaDIn7X0s-qeMk-SioQ.mft (raw, json)
Hash identifier: v9zKVF0pH7v/wbej8EQaQiqhoG2yadefW/KM7Bl/Kys=
Subject key identifier: 4B:B7:B6:D0:78:A5:0E:F9:43:5C:75:84:1B:FC:69:52:79:31:D8:8D
Authority key identifier: AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
Certificate issuer: /CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Certificate serial: 0199FD6B202276B697F3FB74C1D3807605EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
Manifest number: 06F9
Signing time: Sun 19 Oct 2025 17:01:20 +0000
Manifest this update: Sun 19 Oct 2025 17:01:20 +0000
Manifest next update: Mon 20 Oct 2025 17:01:20 +0000
Files and hashes: 1: e2krXZzkR-AkHScvd476IUHzrz0.roa (hash: KJC7yZeLdAZIJXLO5En/1DBnqhI+LO45sglWIneobpg=)
2: rUZjafOSfaDIn7X0s-qeMk-SioQ.crl (hash: K54Pp7eJIzsRyTNQ1YTHTtXd3kaGQ/Idwz1uJI5IEqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:20:22:76:b6:97:f3:fb:74:c1:d3:80:76:05:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84
Validity
Not Before: Oct 19 17:01:20 2025 GMT
Not After : Oct 20 17:01:20 2025 GMT
Subject: CN=4bb7b6d078a50ef9435c75841bfc69527931d88d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9f:28:4f:50:a2:80:d0:da:6c:bb:c0:fc:cf:
f6:7e:81:d8:a3:e2:66:21:c2:58:7d:15:16:8c:9b:
0d:da:23:5d:25:37:ff:ad:97:2f:f9:b2:39:6a:e4:
65:c0:fa:19:df:89:35:21:ec:95:da:00:b8:45:3a:
7f:58:5a:b9:56:be:c4:ce:ab:e2:5d:ff:ac:d0:7f:
ff:e2:36:61:0b:67:b9:0b:29:98:6f:67:04:bd:f5:
02:32:1a:d4:2e:40:ef:5f:75:0d:14:6b:35:3e:21:
d5:9d:62:d6:0e:48:1d:ee:1d:e1:7e:b5:ab:17:75:
ce:10:b6:af:a2:b7:d6:96:1f:dc:2a:a3:d7:7d:84:
2f:0e:44:6a:3c:e1:ac:7d:a4:3b:b7:b8:e9:6f:a5:
8d:50:d4:d7:91:85:07:1c:31:97:f9:3b:07:81:6d:
8c:64:ff:89:b3:2e:0d:b8:0d:11:d2:e9:dc:2f:a9:
1f:8c:17:73:1a:ff:ed:f0:fc:44:d3:b7:00:de:fc:
5c:33:b7:9b:3d:13:31:fa:c4:43:91:99:39:f5:8c:
82:06:2e:3d:8d:76:bb:0d:f6:9d:c6:39:4d:51:30:
00:d2:06:58:b1:4f:fe:61:37:ea:0c:38:f9:18:aa:
6c:73:48:8d:14:ab:f7:71:43:1e:52:b0:fe:d0:30:
c5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B7:B6:D0:78:A5:0E:F9:43:5C:75:84:1B:FC:69:52:79:31:D8:8D
X509v3 Authority Key Identifier:
keyid:AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:9e:81:f5:b6:27:30:b1:ae:0c:db:aa:c7:5e:7b:8c:86:97:
2c:24:af:ab:df:70:6f:6e:11:9a:97:01:f8:a6:c9:ad:1d:68:
af:30:6d:7e:af:d8:5c:99:d0:ed:77:2e:2c:db:e2:9b:60:ef:
d4:90:14:7e:1b:06:19:5b:22:e0:02:28:b4:93:16:7f:bd:e8:
66:b1:13:9f:61:2e:ba:3f:21:3c:ee:ce:b1:ca:61:76:3a:2e:
bf:fc:c6:29:5c:5a:b0:45:16:1f:14:63:51:04:f1:bd:68:b0:
85:6f:03:ef:72:fe:db:9b:11:8b:8f:07:b2:1d:85:88:6f:b0:
bb:02:2d:cc:d8:99:c2:35:99:56:d0:67:51:6b:79:9f:51:00:
89:42:7a:96:bf:f0:9f:07:29:b9:1f:c2:3c:16:f5:a3:f1:e1:
91:94:ba:bb:b0:fd:b8:d1:ba:6a:3a:b1:ff:ae:d1:97:c2:3e:
c4:7f:d4:e6:8f:61:73:f3:d8:a1:9a:f9:84:ea:2d:31:02:b9:
55:ec:72:9a:ee:41:84:54:e2:55:35:31:d5:6b:9d:99:b3:4c:
29:5b:80:67:2b:73:98:ee:6a:d0:5e:7a:ce:99:89:86:84:e7:
5a:73:fc:3f:cf:70:91:ab:e6:8f:66:ce:73:ec:db:12:d2:d5:
6f:d7:9d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:38:13 2025 by rpki-client