
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
File: uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json)
Hash identifier: 8+oZYYp/kwWIjczghLfA51WrXtzFIjHMcRr4hD4f8/E=
Subject key identifier: 2B:C9:5D:26:AF:F8:4B:39:31:35:35:2F:15:32:87:8D:6F:DB:C4:5A
Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Certificate serial: 0199FE103AD4F71BD7C3363295D10F204D4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
Manifest number: 0B63
Signing time: Sun 19 Oct 2025 20:01:40 +0000
Manifest this update: Sun 19 Oct 2025 20:01:40 +0000
Manifest next update: Mon 20 Oct 2025 20:01:40 +0000
Files and hashes: 1: TGrXflCdfRfW3fIuk1M0sun1vvs.roa (hash: alNQcjpWXoWXc70x5wuOV0VaoVsG9NOJ3xbbbXJM7RE=)
2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: qZOhVB89b+9h4NOepozsnqSDXCoQ1UI+F/GISoNY/UY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:10:3a:d4:f7:1b:d7:c3:36:32:95:d1:0f:20:4d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29
Validity
Not Before: Oct 19 20:01:40 2025 GMT
Not After : Oct 20 20:01:40 2025 GMT
Subject: CN=2bc95d26aff84b393135352f1532878d6fdbc45a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c7:1d:1b:a1:59:b6:64:fa:00:4e:f3:ff:47:
5c:6c:44:4f:39:ae:1e:64:d4:d1:56:80:8c:8f:8f:
cc:d6:a5:b4:e3:a4:4d:86:c0:85:b8:82:7c:e7:40:
04:4c:0e:d6:ac:69:04:9f:4f:12:11:88:69:b2:80:
8a:22:ba:a4:2c:d3:a7:06:ad:10:ce:02:4b:b6:12:
d7:24:7a:54:23:1c:14:4d:10:2c:cc:cd:06:80:46:
d6:55:e9:b1:79:ed:6d:38:ed:30:a3:b4:f2:5e:34:
d7:6c:75:0d:4c:93:a6:ae:73:b1:40:0a:d4:28:d3:
a7:f4:b9:5b:3e:50:71:4b:f5:73:5e:49:42:7d:9b:
b5:e7:70:5a:42:e6:0a:29:34:4e:2d:b2:4e:df:66:
a3:83:0b:76:b1:85:f0:a1:c2:a5:fb:4d:e3:2f:79:
70:76:b3:aa:2c:8e:1b:0a:04:ec:11:cb:6f:eb:23:
c7:1e:e5:5c:fb:ee:3d:16:b1:95:9a:9d:6c:3a:a0:
c5:20:ea:38:7a:a2:2f:69:c9:de:86:19:81:ba:a9:
61:c9:b2:64:35:89:0e:69:92:11:ef:c1:2f:46:3c:
3e:eb:f4:b1:be:d5:5b:da:88:88:54:e3:30:0f:6c:
71:2a:26:2e:d7:e7:22:7a:47:45:44:fc:3c:7b:f9:
16:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C9:5D:26:AF:F8:4B:39:31:35:35:2F:15:32:87:8D:6F:DB:C4:5A
X509v3 Authority Key Identifier:
keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:d9:78:6e:73:46:94:5f:b6:6e:2d:86:0b:39:cb:f6:e3:1a:
d9:cc:6a:d1:7d:9a:16:bb:9b:e6:df:9d:e0:29:2d:4a:06:9e:
b9:57:85:a3:75:ed:c0:f0:96:dd:24:75:9a:16:8e:d6:6c:d8:
da:1a:0d:8c:37:e1:f4:b7:b7:70:2a:9c:7c:11:44:2a:ad:28:
d4:0e:d4:b7:1e:da:e9:09:c8:d3:6d:59:e2:e9:ab:6c:d8:f6:
99:9d:8c:5f:e1:de:0a:8a:14:49:b1:0a:0c:6e:b1:37:75:87:
39:bf:3b:2e:50:8b:bc:cd:42:cf:c6:15:44:22:05:be:e5:01:
5c:27:36:91:46:48:bb:66:ab:4b:94:67:a8:c1:9b:d9:9d:a7:
92:e5:9e:01:4f:d3:a6:10:7b:84:9b:71:0b:d2:54:b3:66:ab:
c2:a4:9a:b3:fc:d3:be:bd:7d:17:21:34:4f:3c:1a:ec:f5:89:
ae:9e:c5:1a:98:82:f7:3b:37:57:23:ed:72:5f:7d:f5:5d:7b:
6f:84:60:93:9d:6a:86:d6:e0:52:47:cb:5e:17:46:0a:f1:bd:
3d:e6:1a:b4:a4:63:29:d4:e1:b7:f0:d2:2f:89:54:2d:69:5b:
fa:f1:a0:c0:b2:a0:a9:1c:e7:60:a9:8a:6a:e7:d0:b7:dd:85:
90:18:6e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:31:04 2025 by rpki-client