Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
File: mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft (raw, json)
Hash identifier: whpCcG3ZNhxF3Jt1itmPvSw1ewho7fnv98DFDk5oo4I=
Subject key identifier: 66:65:A9:71:65:74:0C:67:94:E4:16:34:E5:F0:BA:48:C0:11:89:9A
Authority key identifier: 99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
Certificate issuer: /CN=991b5422cd5578d4715ebe4c5097202523dd5658
Certificate serial: 0198D65F8C5A905FB5D028D4FB29B14ABF68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
Manifest number: 14D2
Signing time: Sat 23 Aug 2025 10:00:42 +0000
Manifest this update: Sat 23 Aug 2025 10:00:42 +0000
Manifest next update: Sun 24 Aug 2025 10:00:42 +0000
Files and hashes: 1: dUzHcv1qzeux_y2IL7xdvYNLLOQ.roa (hash: nSNOUC9fK3tMm0ddVALi9dbfVwMcfIB34jQG6rm/2t0=)
2: mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl (hash: DiKWyDjggSEyJpXXVA9M/78gbPPes9V63r0jpXQjNcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:8c:5a:90:5f:b5:d0:28:d4:fb:29:b1:4a:bf:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991b5422cd5578d4715ebe4c5097202523dd5658
Validity
Not Before: Aug 23 10:00:42 2025 GMT
Not After : Aug 24 10:00:42 2025 GMT
Subject: CN=6665a97165740c6794e41634e5f0ba48c011899a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:05:05:3b:5d:98:58:c4:23:79:20:47:c4:99:
8c:8f:09:a1:8b:0f:a4:7b:e7:f2:24:f6:0a:47:1d:
09:f3:e9:d7:1a:88:3d:b6:fd:d1:26:4b:08:98:fe:
cc:5b:f3:18:55:68:25:9e:a2:19:73:ab:40:75:43:
ea:97:3c:2b:fc:30:2d:41:56:7d:ed:0a:2c:63:3b:
d7:3c:48:b2:27:85:91:0e:16:18:d3:26:e0:37:f0:
4c:83:8e:68:88:0e:b8:ab:dc:88:da:cb:35:58:1f:
3d:8c:f9:32:d3:c8:c6:d4:4c:27:8a:01:c3:34:54:
55:fd:2a:41:18:e8:36:2a:b9:eb:2e:30:67:32:2f:
71:cb:30:1c:62:0e:6b:13:f1:24:d2:f1:fe:f0:ad:
27:bc:87:1c:b5:b2:99:c9:af:ae:53:46:a3:43:89:
6c:21:df:52:a7:8d:c8:15:94:91:de:21:26:2d:5f:
2c:9a:61:23:04:6d:48:c9:c3:a5:0d:40:2a:b5:89:
74:d2:9d:e7:b1:f2:24:42:37:8b:ef:5d:f1:c7:c9:
f7:61:e1:c2:44:64:15:fc:6e:9f:30:73:35:6d:12:
f7:d9:53:75:13:a8:c7:36:4b:f1:9f:6e:06:62:da:
a5:fb:01:bc:2d:66:db:d6:9a:4d:53:4a:73:4c:77:
47:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:65:A9:71:65:74:0C:67:94:E4:16:34:E5:F0:BA:48:C0:11:89:9A
X509v3 Authority Key Identifier:
keyid:99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:12:db:49:58:91:c8:a1:54:9a:aa:8b:ec:5e:c7:a7:c9:33:
a9:5f:34:45:ff:e1:42:ef:f8:f6:39:f6:2c:0a:e5:5c:b2:55:
e5:76:7a:8a:82:9f:91:78:05:9e:28:fb:9c:a0:8a:5f:3a:4f:
88:43:2b:c7:cb:01:00:33:77:9d:40:ed:46:3e:01:84:cb:9d:
5e:a2:90:25:b0:a0:b4:9f:75:1f:88:ee:de:7f:8e:d6:7d:d6:
24:6c:f4:f9:5f:3b:7f:bf:30:90:48:0d:d4:11:d0:cc:d1:d4:
6e:92:dd:50:7e:ae:dc:41:73:43:e1:46:d1:63:f0:15:bd:76:
31:b2:fb:8c:d2:6b:a0:e4:13:ee:5e:e4:90:89:d6:13:1a:ae:
b7:b5:79:7f:eb:bb:fd:e9:34:9d:22:0b:63:e1:c0:d2:9b:96:
df:89:ba:9e:c8:44:a6:e1:dd:f4:54:72:a8:96:b6:89:72:ed:
ab:4c:96:63:37:5d:3a:9c:7f:b4:2f:1d:74:61:39:30:c5:b5:
cc:9a:f9:ff:db:b5:6e:de:b0:3a:a6:31:02:c1:03:8f:84:c4:
3b:24:3e:ce:47:41:da:dd:c0:8d:57:67:67:9e:86:24:d2:af:
90:48:02:6d:71:71:3b:77:df:a0:58:3e:01:a3:15:c8:1c:e4:
88:7d:32:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:30:08 2025 by rpki-client