Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: A5i8zg7l+3GIQ8KHHO/9CTUPGQjO+B8KkvcW0HhMN7o=
Subject key identifier: AD:CD:8C:6D:92:70:E9:35:1A:4F:BD:57:A7:27:8D:0B:1C:B7:31:13
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 0199FBEC54887E08A566112F2A09AD2DB3CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: 04FF
Signing time: Sun 19 Oct 2025 10:03:13 +0000
Manifest this update: Sun 19 Oct 2025 10:03:13 +0000
Manifest next update: Mon 20 Oct 2025 10:03:13 +0000
Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: gDjsdRK+petxYZ4RxDJnpxY1+jR9LvPAnHrQpOeKWKI=)
2: ynJSD2xc-CykfYa79BP9jQj40kM.roa (hash: fMb/laTqYN39Vwte4hGLXjRHIufJPIqxfdcZimxGcGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:03:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:54:88:7e:08:a5:66:11:2f:2a:09:ad:2d:b3:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: Oct 19 10:03:13 2025 GMT
Not After : Oct 20 10:03:13 2025 GMT
Subject: CN=adcd8c6d9270e9351a4fbd57a7278d0b1cb73113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b1:a7:f0:79:c2:3e:db:50:7b:fc:1e:e5:19:
7d:3e:fb:1c:be:e1:f4:32:e5:07:03:5a:4e:92:80:
12:dc:f1:fd:fa:16:1d:53:de:20:46:f1:88:30:1f:
8e:a2:14:7a:7a:72:5d:38:c6:81:a7:d6:00:2c:e6:
98:86:03:3d:d3:60:48:2d:b2:c1:f2:26:53:4a:34:
92:cb:89:c0:25:21:40:8a:b8:0d:17:7c:0b:46:11:
a7:66:a1:c7:6e:22:ea:6c:d7:a1:bc:6c:19:4f:bb:
5b:fb:8d:65:57:97:af:fe:16:54:e9:e6:69:74:c5:
47:be:d2:c6:62:f0:07:6f:56:26:a1:f7:ac:72:ca:
b9:c2:58:cd:a2:88:cc:7c:49:c8:bf:22:5c:3b:4f:
b4:87:89:3a:c7:88:32:3b:31:09:5d:c1:3a:f0:7c:
4e:c2:0d:0e:ab:a0:49:3a:4d:92:3c:57:16:b8:85:
6e:31:1a:db:48:c4:8c:02:b8:d8:f6:be:6e:ef:ea:
8c:a9:e6:7f:a4:08:80:37:df:2e:91:8b:96:55:fe:
16:d5:92:41:4f:8a:f8:56:13:a6:a0:66:11:83:e6:
07:ec:64:c7:88:fd:f7:2a:fb:bc:07:ce:00:90:b2:
06:10:27:77:5f:6a:44:fa:a7:35:4a:1c:a0:ae:09:
a1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CD:8C:6D:92:70:E9:35:1A:4F:BD:57:A7:27:8D:0B:1C:B7:31:13
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:b4:57:54:e3:71:87:80:37:cf:ad:c3:3e:92:6e:f6:44:c1:
49:7f:fa:00:92:74:75:13:b0:65:50:65:43:8b:c6:01:d6:fa:
e6:06:f3:fa:77:21:0e:62:06:94:8e:3c:ff:ad:43:19:1f:8a:
66:3f:57:b6:db:06:43:9f:18:42:3d:d6:a1:05:b1:6d:49:b5:
61:7a:49:0d:3d:8f:47:d3:58:27:9e:5b:c0:3c:67:ac:e4:56:
fe:6c:ea:ad:91:c7:a5:ac:e6:54:6b:62:f0:32:3b:0f:27:ea:
4f:da:33:51:40:bc:a8:f8:67:cb:a0:4c:db:a2:9c:4b:b3:66:
77:ef:84:68:f9:43:60:b6:ca:ca:ac:eb:50:67:f5:55:56:79:
42:75:49:cb:2f:85:83:c4:45:ee:47:32:ba:21:a9:5c:d1:0c:
8a:81:a1:ea:7a:80:64:f3:29:11:48:8b:42:61:41:d7:f1:4a:
91:1c:16:51:75:10:13:b2:c0:f7:c5:a7:a4:45:d2:27:e2:2e:
26:13:22:2f:0c:a4:23:ec:6e:08:2f:7d:e0:0f:b6:ae:31:b4:
1e:a4:57:80:c5:d9:0b:84:42:c4:d6:8a:5c:b2:da:e4:51:d6:
13:9f:1b:60:b3:3a:0b:81:f7:e2:8d:3b:8c:f0:6a:92:ca:b2:
a0:c2:eb:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:39:07 2025 by rpki-client