Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json)
Hash identifier: BHbyZMxaCNUnKdBOS8u3euim7AAJ5fGQ7KfeTKgkjF4=
Subject key identifier: C5:30:AB:A7:D6:4F:3F:7F:35:C5:2E:0E:AC:B6:A4:54:BC:A2:C2:F8
Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a
Certificate serial: 0199FFFE63FFEBEF8E6B53C4C4AA82521AEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
Manifest number: 0F81
Signing time: Mon 20 Oct 2025 05:01:25 +0000
Manifest this update: Mon 20 Oct 2025 05:01:25 +0000
Manifest next update: Tue 21 Oct 2025 05:01:25 +0000
Files and hashes: 1: Vevc9vrQGyVF5o4NzN0QFHnZAiA.roa (hash: AOWcNE88wNCBWfSzm2+MmaRV4c7usJ5kQGrhyE8Gj6M=)
2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: a8MZ3Sity8Kz/QhOEpT6AYUzNIx17L+y8nNxHAVV7Wg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:63:ff:eb:ef:8e:6b:53:c4:c4:aa:82:52:1a:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba68595997900ded300e9925709da627e93f363a
Validity
Not Before: Oct 20 05:01:25 2025 GMT
Not After : Oct 21 05:01:25 2025 GMT
Subject: CN=c530aba7d64f3f7f35c52e0eacb6a454bca2c2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8a:c0:60:72:97:0c:f4:ed:64:85:e1:16:a2:
da:15:8a:2a:95:a2:32:b2:29:84:67:4e:e9:a0:ac:
e1:65:f9:a3:00:63:73:12:60:f6:33:3a:07:0a:98:
a2:b2:93:85:57:4f:8f:a7:49:c5:cf:8f:81:1f:8c:
99:37:40:c3:ed:dd:52:7f:17:90:ac:7c:a8:5a:fd:
ca:e3:be:85:25:83:e9:80:0e:28:e8:08:be:b5:78:
89:83:25:da:dc:a0:10:0b:07:36:fa:a7:08:98:ce:
4e:27:78:8f:ae:58:16:0a:5e:91:e2:e2:e6:a5:9f:
46:01:8c:6e:65:ff:8e:01:89:f0:95:ea:8f:bc:45:
a3:12:1b:a0:fd:b2:24:ed:43:8e:d8:a4:0b:79:03:
d2:8c:8d:8e:67:d8:04:6a:fd:b5:ea:a8:4e:1b:26:
41:3d:ab:25:79:3b:77:44:84:ee:cb:62:d8:52:55:
0d:98:01:d0:fd:37:bd:b7:82:52:36:e4:82:62:78:
1a:ae:df:f8:ae:c5:67:1e:0b:0d:7a:1d:43:09:3a:
21:2a:3a:4a:f3:9e:8c:83:28:27:d8:5d:6b:d2:f4:
1d:46:12:06:6d:c2:3f:b3:40:b1:06:bb:ac:b7:21:
96:08:ae:27:b9:62:54:ad:86:9f:06:7a:8f:c2:82:
95:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:30:AB:A7:D6:4F:3F:7F:35:C5:2E:0E:AC:B6:A4:54:BC:A2:C2:F8
X509v3 Authority Key Identifier:
keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:2b:77:0c:6d:ad:79:f2:d7:97:43:a4:01:dd:b8:0a:7b:98:
24:c9:61:22:59:96:f8:49:0d:57:66:ff:2d:bc:6d:9f:97:53:
50:5d:1d:2c:ef:2b:53:e3:ff:44:45:a1:50:69:10:14:73:6a:
f2:f6:73:e6:2c:c3:71:1f:29:ec:be:96:0e:58:e3:de:69:85:
bb:32:8d:ae:bc:e5:bb:ec:85:93:a4:8b:7a:98:11:86:e3:29:
40:63:0c:af:21:05:70:5d:9c:a7:07:bd:75:f7:80:3c:ec:88:
bc:7b:c2:34:68:1f:47:42:7a:65:e2:d3:3e:4f:89:c7:6e:09:
e6:1e:7a:21:d4:3f:75:53:c2:90:17:d2:ae:d5:4d:d0:4c:eb:
b3:a4:f3:2a:66:d0:54:0b:50:0f:ee:15:6a:f5:2a:70:69:01:
45:61:86:48:ec:fc:0e:85:cf:71:2b:db:19:b0:1d:e9:1e:c2:
2e:ee:7d:f9:c2:95:4c:38:9d:cf:66:aa:32:40:88:31:61:fc:
a1:31:b5:47:21:d4:cb:45:7d:7e:17:11:27:bc:f5:21:63:79:
97:19:6f:6c:52:dc:c2:6f:49:10:54:f6:df:15:b8:f9:f6:12:
63:15:86:48:f6:8e:bc:7b:81:0f:fa:8d:7a:79:a5:a9:fe:7c:
72:a6:b7:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:38:40 2025 by rpki-client