Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json)
Hash identifier: IeND8Xy8dqM2azAgTJx3lSRVExUjgVyCo3vueQ5cZLI=
Subject key identifier: 14:16:FC:6E:FB:B6:AD:07:80:B1:70:77:3E:F9:61:84:D2:E6:F7:FA
Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Certificate serial: 0198D5162C258C437635077B660E2B2786B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 04:00:56 +0000
Manifest this update: Sat 23 Aug 2025 04:00:56 +0000
Manifest next update: Sun 24 Aug 2025 04:00:56 +0000
Files and hashes: 1: ECD7apX3eHOOfrh7KlF7PFjYZG4.roa (hash: 71V9g38SO7JBAaQym2ThymDLgJtxxyPJi6oj0bVn0zY=)
2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: /xXzUqVPx3dliRXOOTEPo6RlWxYewwu+jxkMPciS8Eo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:2c:25:8c:43:76:35:07:7b:66:0e:2b:27:86:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Validity
Not Before: Aug 23 04:00:56 2025 GMT
Not After : Aug 24 04:00:56 2025 GMT
Subject: CN=1416fc6efbb6ad0780b170773ef96184d2e6f7fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8c:cb:a0:ce:2d:9c:5f:c4:9f:e5:b0:13:0e:
44:91:12:d7:6f:3a:d3:ab:cd:f2:1f:f8:f2:eb:6a:
d0:12:5b:ab:6e:d1:7d:ae:79:a7:1c:0e:ba:8f:71:
4c:66:a8:47:8b:41:c2:a4:bf:4e:8f:c4:61:e7:7d:
d9:0f:72:64:88:b7:61:66:c1:01:c3:1a:8b:f3:bf:
45:1d:53:af:59:fd:22:0a:ef:13:5b:17:b3:0d:c7:
07:bc:11:5f:17:f0:31:a1:f5:5c:1c:c7:af:3b:f7:
5e:3c:2d:31:57:80:7c:84:aa:6d:49:e9:f2:a8:ce:
72:24:be:fa:40:98:c7:da:dc:b5:d0:49:ed:90:70:
07:ce:fc:60:eb:8d:bd:58:28:91:ab:b4:de:59:2a:
9e:4d:be:57:40:29:f1:e5:77:c7:65:95:6b:aa:22:
d9:3b:b6:58:0f:31:a7:2c:3c:42:98:e6:21:24:21:
5c:d0:b3:50:1f:aa:ce:ef:9a:ea:ec:6a:39:68:c4:
a3:8a:4b:e3:dd:d6:13:4b:82:61:6d:a4:79:c0:52:
7a:5d:16:87:fd:bf:bb:85:aa:eb:89:9a:64:cf:5f:
7c:60:ea:78:bd:0d:2e:dc:3d:14:bf:90:c8:e9:54:
dd:23:db:65:80:61:1a:11:32:cd:6c:d4:35:54:61:
29:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:16:FC:6E:FB:B6:AD:07:80:B1:70:77:3E:F9:61:84:D2:E6:F7:FA
X509v3 Authority Key Identifier:
keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:3a:a0:9e:69:43:ce:09:68:22:d0:17:ba:0c:31:8a:49:b0:
4d:d9:5a:30:f7:fe:ef:8e:0e:37:00:7b:26:12:2f:97:94:97:
48:ca:ff:a1:16:cd:a8:83:f4:14:ac:a8:c6:ea:46:4c:a7:a1:
49:cd:a5:4c:0e:82:42:cf:09:45:65:b1:95:b4:e1:8b:4a:02:
1c:c5:9f:ef:e4:a1:5c:5d:f8:eb:3b:08:fd:80:1d:4f:27:f3:
4f:ae:dc:41:98:f1:80:f6:ad:06:17:99:0a:31:fe:9c:cc:b8:
39:95:e7:40:35:66:50:c1:e3:c0:5f:93:a8:a7:37:66:5d:c5:
43:31:e6:33:1b:6b:be:4c:c7:47:b6:56:f6:ef:4c:db:24:b6:
ea:e3:ad:24:ab:52:5b:19:e3:73:65:9d:cc:e6:c4:4e:8d:3e:
82:a0:c6:c9:a7:30:4b:e3:3d:33:5b:45:74:01:de:0a:c5:ba:
b1:87:4c:48:05:6c:f8:85:6b:f1:df:e6:5d:dd:83:b3:24:e3:
9b:5c:c4:d9:f2:ca:38:0a:2f:22:2c:3c:78:21:24:1b:7a:e9:
23:54:80:d9:dc:cc:77:9b:95:31:c8:5f:94:c0:ac:46:27:cb:
55:86:02:24:47:03:60:8f:b9:dd:37:59:ad:b6:7c:77:5f:80:
30:fa:f6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:37:42 2025 by rpki-client