Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
File: ufdKR6bRoL9MIW5fq02R-xKd89Y.mft (raw, json)
Hash identifier: 3xHU2WnszJhymsfj2tqdWOOQBmuuPeX5OMMK29ZbzBQ=
Subject key identifier: 9F:B2:80:4B:BA:42:F6:E7:D9:8B:39:04:5A:B3:9B:CB:34:69:C2:AE
Authority key identifier: B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
Certificate issuer: /CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Certificate serial: 0199FBEBF85964C09629E7549B5A6E4D59F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
Manifest number: 0C18
Signing time: Sun 19 Oct 2025 10:02:49 +0000
Manifest this update: Sun 19 Oct 2025 10:02:49 +0000
Manifest next update: Mon 20 Oct 2025 10:02:49 +0000
Files and hashes: 1: 5AZ3tR0kmtggSX8GQL0nk_9vkNM.roa (hash: o7jn9b/bWLBA/ntIWwkYzFbMhpkdc8Mhco9rAn9gsO0=)
2: ufdKR6bRoL9MIW5fq02R-xKd89Y.crl (hash: XDXh1KdpBUP+BSjCyW/SA02tXYHRG+n2m5Cdz78uMEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:f8:59:64:c0:96:29:e7:54:9b:5a:6e:4d:59:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9f74a47a6d1a0bf4c216e5fab4d91fb129df3d6
Validity
Not Before: Oct 19 10:02:49 2025 GMT
Not After : Oct 20 10:02:49 2025 GMT
Subject: CN=9fb2804bba42f6e7d98b39045ab39bcb3469c2ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:29:f3:dc:6f:6d:2a:31:14:56:4e:03:db:a4:
df:9e:c3:cd:57:db:ad:e9:6b:25:4d:d5:c5:04:15:
eb:22:9f:4c:ff:c6:13:1b:e0:15:b1:6a:f6:6d:4d:
9d:18:97:e6:ac:58:9c:01:25:85:13:9b:1b:ce:62:
0f:0f:a2:57:f5:21:13:38:ce:79:6d:ee:40:06:da:
bb:21:66:23:4d:37:64:5c:8e:aa:16:19:46:f7:7f:
e3:3a:1f:d2:e9:cf:42:9f:b3:ec:8e:78:1a:70:ca:
7c:f5:cf:c6:50:c9:9c:37:35:45:13:75:c7:39:70:
26:ce:1e:4b:72:a2:93:22:23:6f:bf:09:4c:66:be:
3e:c7:29:03:20:c7:5c:28:1e:98:0f:de:85:b9:b8:
8a:fb:09:60:a1:9f:a1:bc:b5:ea:08:ac:23:8e:87:
0c:bf:47:a4:8b:09:b5:ce:55:7b:13:c6:83:b1:f8:
f6:f4:dd:c4:00:d7:8b:29:dd:12:d5:f2:a7:c1:43:
ac:70:fc:79:8f:c5:d9:d0:57:b0:f5:44:e9:e8:c1:
fd:48:1d:66:ba:ca:19:c2:2d:a8:d4:43:fb:d4:01:
33:02:b4:2b:18:14:4e:c6:8b:71:8a:1d:24:fd:c2:
b0:af:a0:4b:e0:cc:40:d9:ee:a2:3a:28:6d:e2:40:
27:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B2:80:4B:BA:42:F6:E7:D9:8B:39:04:5A:B3:9B:CB:34:69:C2:AE
X509v3 Authority Key Identifier:
keyid:B9:F7:4A:47:A6:D1:A0:BF:4C:21:6E:5F:AB:4D:91:FB:12:9D:F3:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdKR6bRoL9MIW5fq02R-xKd89Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/24a0bd-0838-4c95-9ccd-30f608ade48d/1/ufdKR6bRoL9MIW5fq02R-xKd89Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:36:fd:46:87:24:6f:70:50:37:36:7e:b6:a8:04:3f:ce:f0:
79:89:07:5f:4d:3c:1d:4f:11:5e:f5:76:78:a0:12:6a:f5:ea:
5c:65:70:53:fe:bf:34:99:18:c4:bc:4e:d1:5d:f7:fd:ed:1b:
06:32:15:2e:9c:d1:82:05:8e:0a:2f:4e:1a:88:45:82:67:1c:
b6:5d:b1:ab:c5:34:cc:dc:55:e1:bb:b6:b6:73:51:c8:b7:55:
28:5c:49:e7:49:b8:9f:e2:72:76:fb:ad:bb:72:e5:cf:10:29:
6f:9b:0f:4b:e8:74:0d:38:d2:1d:91:6c:0c:a3:c7:70:d3:6b:
58:fe:d9:c9:6f:b7:10:0a:3b:ce:2f:4b:5f:72:cc:e7:78:ee:
26:37:8a:17:ac:47:b0:57:73:12:74:a1:8a:86:6c:26:96:ab:
46:b1:be:2b:f3:44:68:3c:c6:63:82:ee:bf:43:b8:fd:c0:fd:
ff:cc:e6:7d:90:69:60:56:f8:76:70:59:2c:b9:72:bb:0b:66:
80:70:1c:00:a8:79:f6:75:a0:84:ae:61:d3:35:18:a2:8f:60:
41:b6:e0:54:f0:37:3b:6b:62:6f:6d:cf:30:b7:27:0d:b8:c7:
cc:3f:80:f4:5e:4c:ce:fd:45:86:85:1b:d1:45:79:b2:fc:38:
98:83:ae:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:59:03 2025 by rpki-client