Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json)
Hash identifier: OWGG57zjLQYcjYOjzVSE195tRJKvxua4No/mdU2KhXw=
Subject key identifier: D5:2B:83:0C:AE:79:FF:8D:15:B2:F3:6E:B4:A4:7D:92:0C:DC:83:FA
Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Certificate serial: 0199FE7DFE6D9A960C3D9C3466673264B092
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 22:01:33 +0000
Manifest this update: Sun 19 Oct 2025 22:01:33 +0000
Manifest next update: Mon 20 Oct 2025 22:01:33 +0000
Files and hashes: 1: ECD7apX3eHOOfrh7KlF7PFjYZG4.roa (hash: 71V9g38SO7JBAaQym2ThymDLgJtxxyPJi6oj0bVn0zY=)
2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: UWFVfhoomteRbWyRIJJqIeFMXE7rYD2ntaMVEcaJwgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7d:fe:6d:9a:96:0c:3d:9c:34:66:67:32:64:b0:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Validity
Not Before: Oct 19 22:01:33 2025 GMT
Not After : Oct 20 22:01:33 2025 GMT
Subject: CN=d52b830cae79ff8d15b2f36eb4a47d920cdc83fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c5:c1:78:a7:d7:8b:d2:15:01:5b:88:2d:0c:
e1:77:a5:06:a1:14:87:4e:e2:03:07:a7:de:43:78:
00:45:60:e3:3b:8c:28:c7:b4:e9:5e:81:02:6a:6f:
4b:07:3a:7b:e7:3e:74:2c:1b:5e:35:ea:c3:94:14:
e2:6d:c8:dc:eb:11:d4:4e:33:f6:ce:a0:43:66:11:
44:2b:78:cb:47:35:db:70:c4:59:31:43:7c:33:d5:
dd:39:7d:f2:41:4c:1b:a7:84:6a:a7:1e:97:4e:30:
ea:29:8c:ce:5e:cf:8a:58:a6:21:d2:9f:9a:c0:28:
be:c4:22:b4:2c:90:21:13:e3:dc:e8:d2:57:90:8c:
05:76:ee:a8:9e:69:b3:18:fd:5d:37:ec:9f:49:55:
19:da:14:08:15:ee:07:89:eb:5b:66:86:64:50:5e:
25:9e:16:a0:2c:c0:0c:03:5e:17:fb:b6:19:18:93:
fc:e4:97:e3:bb:75:81:ac:d6:de:e7:10:6f:c0:7d:
da:c5:1f:86:f5:32:ee:48:47:09:69:6d:79:58:32:
df:dd:46:9b:85:0c:f8:33:1d:af:b9:7e:a3:30:54:
9c:cb:a6:e6:3a:88:d9:1b:eb:c3:7e:68:4f:a1:02:
92:6f:c2:6e:cc:51:13:52:5c:19:31:25:f2:1e:9f:
21:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2B:83:0C:AE:79:FF:8D:15:B2:F3:6E:B4:A4:7D:92:0C:DC:83:FA
X509v3 Authority Key Identifier:
keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:79:5f:23:48:74:bf:0b:62:e9:ab:15:e0:a7:88:2c:5d:4e:
25:f3:be:66:5e:20:e2:49:cd:82:4e:ce:db:ee:0f:cf:77:f9:
b6:fc:39:4a:40:02:17:95:a9:8e:49:f1:76:52:63:af:65:c4:
2b:7b:2b:7f:53:5e:a1:1a:92:90:73:98:ff:59:6f:91:a1:de:
d8:4d:0b:fe:3f:f2:5c:62:f3:21:c7:05:b1:4b:e6:e1:7a:f9:
6f:c7:66:66:2f:ad:6b:f8:ac:0a:48:a5:fb:56:0a:9d:2a:a9:
56:24:19:20:33:e6:e0:d9:e4:0c:e8:be:5a:a9:4d:40:dd:13:
92:96:b8:f3:f3:64:7f:56:1e:e3:f2:87:b2:06:6f:6f:48:e2:
84:b2:be:af:96:57:6d:af:2b:29:5a:3f:be:e3:a5:5f:1f:9b:
75:c1:10:e7:40:d9:4e:01:b2:d4:86:3e:7a:c3:1a:09:ca:72:
6d:1d:8b:e2:cb:6c:c9:5f:e8:5c:a0:35:be:2b:db:56:b7:c7:
04:13:dd:9b:1f:28:39:b6:45:67:1d:ae:a4:74:97:b0:00:9b:
48:9f:45:d0:53:68:bf:1a:d4:b0:ad:5b:bf:2c:c2:4d:15:13:
71:41:0e:56:01:9d:f8:91:5e:71:a7:54:63:b3:50:31:a1:f0:
4a:1c:f2:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:01:48 2025 by rpki-client