Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
File: ufurlhxKPhbNdhvC_tuaKBd8tHM.mft (raw, json)
Hash identifier: ulqwvq6+GP/QtJLJD0c31n2n4ft292FRHVCoys0fs8k=
Subject key identifier: 4D:2C:4E:3E:22:3B:32:77:97:60:D7:83:D5:53:9B:80:2F:C2:A8:69
Authority key identifier: B9:FB:AB:96:1C:4A:3E:16:CD:76:1B:C2:FE:DB:9A:28:17:7C:B4:73
Certificate issuer: /CN=b9fbab961c4a3e16cd761bc2fedb9a28177cb473
Certificate serial: 0199FB7CF3567DCE071B203046755C393C2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
Manifest number: 0167
Signing time: Sun 19 Oct 2025 08:01:33 +0000
Manifest this update: Sun 19 Oct 2025 08:01:33 +0000
Manifest next update: Mon 20 Oct 2025 08:01:33 +0000
Files and hashes: 1: h4uw6ufwFOQi4mDrtcZ6XaqmPV0.roa (hash: h3p/LWTg/DWcs8xgDXGpmbcqHQbGvNr+C69wyUtdibA=)
2: ufurlhxKPhbNdhvC_tuaKBd8tHM.crl (hash: r8BSfYqnqxXR1aY68Ok0m3kNDr0oZlziin/w19cHwuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:f3:56:7d:ce:07:1b:20:30:46:75:5c:39:3c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9fbab961c4a3e16cd761bc2fedb9a28177cb473
Validity
Not Before: Oct 19 08:01:33 2025 GMT
Not After : Oct 20 08:01:33 2025 GMT
Subject: CN=4d2c4e3e223b32779760d783d5539b802fc2a869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d3:d9:45:9f:84:17:2f:81:19:c8:11:75:96:
6e:35:11:a0:dc:4d:aa:ad:86:44:cf:25:05:a8:3b:
e3:c3:49:d8:7c:be:f5:a0:75:75:a4:fe:93:a0:67:
21:93:cf:ff:49:39:26:c8:59:69:34:0e:ed:24:69:
61:5a:98:40:4c:08:6e:66:0b:74:ee:97:9b:cd:dd:
fc:ed:90:3d:12:cd:9f:e9:90:a5:03:00:13:02:58:
06:93:a1:2a:f7:7e:41:db:fc:1b:a4:00:91:8b:48:
96:a1:b9:08:7d:1c:5f:fb:44:4d:2f:1b:09:00:b3:
e9:4f:93:2c:e1:93:af:f2:86:f6:4e:b2:55:72:32:
27:aa:fd:a9:57:62:f2:61:5b:86:d2:0e:f6:fd:3f:
f6:27:eb:0b:3a:16:96:87:30:00:62:bc:61:42:25:
9a:88:22:91:2c:c4:70:22:45:06:0a:20:f3:e3:0f:
04:12:46:63:6a:3d:24:fd:49:f3:3b:aa:06:85:17:
77:e4:83:46:9c:2f:6a:69:82:64:fb:35:53:ba:f2:
05:1e:0b:33:46:bb:45:fe:bb:15:1a:c3:55:a3:dd:
34:f0:d2:d2:cc:36:cf:d0:83:c5:15:55:97:dd:16:
d9:28:07:6a:11:c6:23:40:d5:a5:9c:94:53:5f:45:
79:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2C:4E:3E:22:3B:32:77:97:60:D7:83:D5:53:9B:80:2F:C2:A8:69
X509v3 Authority Key Identifier:
keyid:B9:FB:AB:96:1C:4A:3E:16:CD:76:1B:C2:FE:DB:9A:28:17:7C:B4:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufurlhxKPhbNdhvC_tuaKBd8tHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/3d921b-9da6-4a79-a264-fc1303de6d49/1/ufurlhxKPhbNdhvC_tuaKBd8tHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:a9:9b:ba:bc:97:71:ac:7e:a9:a9:df:54:23:df:1a:55:8e:
2f:d5:15:1f:26:30:b0:a5:df:3a:4f:55:c2:5b:49:9e:e1:9c:
68:2d:6c:fc:74:a1:1d:a9:d6:2e:aa:ab:0d:4e:e4:a0:f8:a2:
dc:04:53:98:f1:9e:80:57:d6:09:eb:2c:31:e5:60:12:1d:a8:
54:a4:7a:51:17:cd:08:d8:be:89:a9:de:cc:65:bd:c5:df:aa:
71:dc:4d:a3:6b:eb:a2:fd:53:30:ef:d1:ff:00:68:1a:6c:90:
92:9c:b8:19:05:61:fb:e6:d9:1a:3e:01:6f:f1:83:02:05:bc:
70:e4:4b:42:8b:c0:02:b1:ae:3c:94:fc:0e:d2:7b:82:d8:08:
e6:64:f6:56:bb:79:58:2e:ad:68:42:38:40:4c:be:da:d9:d7:
7f:a2:64:dd:eb:5f:b4:4a:a1:21:7f:53:24:1a:70:64:c8:61:
64:7b:36:e3:e9:1b:e5:8d:14:76:5c:98:6c:91:e7:87:09:ff:
ed:09:17:ad:3d:17:8e:a5:54:60:45:e3:81:62:7a:ab:e1:f0:
26:11:c7:9c:11:32:5e:b5:7f:0b:bc:34:30:71:3f:e1:42:66:
72:50:a0:eb:f3:e7:02:7b:5c:f4:0b:7a:61:1f:b2:70:e0:51:
58:d5:82:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:54:56 2025 by rpki-client