Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json)
Hash identifier: vpRKDoFy2CCP2mm9H2+sbDHcqJty9RwUmSpdedTrTkU=
Subject key identifier: 1C:EA:43:96:DB:F3:EC:72:04:4F:E3:9D:E2:03:97:10:18:30:09:50
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 0199FFC7D8A2C0799D90BA15DA3FB0094872
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
Manifest number: 0B85
Signing time: Mon 20 Oct 2025 04:01:51 +0000
Manifest this update: Mon 20 Oct 2025 04:01:51 +0000
Manifest next update: Tue 21 Oct 2025 04:01:51 +0000
Files and hashes: 1: DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa (hash: 9ygbw2KxTYEdLBVrIZpBTqLv2Fu0lBk+DuBHrlgf8dM=)
2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: Wj58s5BjtGVKBLtrQH/6ex/fS1yLkOgZkbbh1RKI1PE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c7:d8:a2:c0:79:9d:90:ba:15:da:3f:b0:09:48:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: Oct 20 04:01:51 2025 GMT
Not After : Oct 21 04:01:51 2025 GMT
Subject: CN=1cea4396dbf3ec72044fe39de203971018300950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:74:e5:ec:bd:24:79:ad:af:06:66:5b:a8:86:
84:d9:cb:db:7d:f7:7f:7d:b7:e6:71:f2:73:83:fe:
18:d9:e9:18:ca:75:4a:b3:6c:ee:dd:59:15:d0:75:
b3:e6:0a:76:f7:5a:c4:c4:2a:c8:c3:9d:43:87:ec:
fd:87:51:3c:f8:f4:7d:c6:4a:c8:5a:03:07:f3:4e:
cf:7d:c9:3f:4d:39:71:e4:0b:3c:64:87:28:9b:9a:
3c:06:40:87:0c:76:28:59:f8:a5:17:5f:45:07:1b:
fc:b8:7b:93:b7:a0:e2:c3:c9:11:3a:c7:e2:dc:73:
85:db:03:3a:c0:6f:8a:c2:1f:ce:e5:69:0f:1e:0a:
7d:98:aa:b9:de:e6:37:fd:ba:a1:26:4b:b7:71:41:
d1:35:e4:bc:3c:fa:23:f7:5a:68:6c:48:d2:0b:64:
83:d0:6e:43:2a:61:b3:f4:fa:51:28:b8:ef:42:51:
74:2f:cc:ac:b0:00:19:ad:70:b4:a6:37:03:14:02:
21:f2:c7:61:3a:b3:c7:83:1c:10:6a:7a:a2:eb:21:
53:b5:da:3e:81:d6:99:1e:4f:7e:2a:77:9d:92:c1:
78:d4:85:74:77:ae:1d:27:12:51:e4:6f:72:1b:13:
ca:cc:8a:e9:65:32:8a:40:54:90:ff:0f:70:40:54:
25:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:EA:43:96:DB:F3:EC:72:04:4F:E3:9D:E2:03:97:10:18:30:09:50
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:41:c1:9b:6a:75:5e:89:75:ab:3e:cf:c6:ec:20:b7:86:9f:
40:28:e1:4a:0b:f8:d9:35:0d:bd:dc:ac:d1:f5:c1:83:4b:78:
e6:86:1b:05:eb:30:3c:6c:93:fd:82:1f:d1:36:56:5f:9e:00:
b8:3c:99:64:b2:5d:74:92:f6:bb:77:f3:ed:ac:17:95:c3:9c:
08:e4:0f:d1:2e:69:6a:d5:1b:8a:e6:db:fc:c6:98:db:a6:c7:
b9:4b:bc:e5:3a:6f:4c:ce:cc:ac:4f:5a:d1:f7:e9:f6:ee:77:
94:ca:9e:15:47:11:66:e8:70:4f:1f:9f:ee:c6:7b:60:c6:44:
52:4e:35:e4:9c:91:ca:62:d7:75:61:c9:b1:48:c3:b9:85:7b:
f1:a9:c5:a8:78:60:e4:5c:06:1c:4b:a1:46:91:9d:22:3d:4c:
fa:fc:ef:86:7f:14:1b:ed:03:22:39:d6:22:c9:1b:a3:5b:5b:
ea:85:b7:e8:55:e6:20:a8:89:ea:fb:1a:00:bc:46:a7:6d:c6:
ae:93:1e:45:1d:69:92:0d:89:bc:12:38:e4:81:0b:3f:8c:fa:
df:6f:ac:a8:c4:7d:8e:d0:0b:0f:47:27:c8:78:ed:fe:9c:4e:
6f:76:8d:4b:b8:02:1f:ba:ea:13:98:6a:fb:87:01:af:08:42:
9a:50:15:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:17:01 2025 by rpki-client