Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: 2H37Kot7/074An6jyvu7Kmky+rEvLNmlyPRfJe8TwQw=
Subject key identifier: FB:9A:E9:45:1E:CE:83:B6:C3:81:B6:91:18:30:30:C0:66:24:E4:33
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 0198D4A84AC8FE88AF69EBAAC6D4D2C3CF5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 05CC
Signing time: Sat 23 Aug 2025 02:00:55 +0000
Manifest this update: Sat 23 Aug 2025 02:00:55 +0000
Manifest next update: Sun 24 Aug 2025 02:00:55 +0000
Files and hashes: 1: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: 0CfccNIbuAqZkQyb0xOjFFZzhIEV4xPAhvYauao3G2w=)
2: vloVVT9ufVGR6rj5SefMS3qmK1c.roa (hash: /V+TKP3WFA5NtQkzEdfMB+4hHPZcd6oAqeonzaeqn0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:4a:c8:fe:88:af:69:eb:aa:c6:d4:d2:c3:cf:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: Aug 23 02:00:55 2025 GMT
Not After : Aug 24 02:00:55 2025 GMT
Subject: CN=fb9ae9451ece83b6c381b691183030c06624e433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1d:91:db:ab:d8:bf:37:09:4d:92:b7:41:e8:
b6:16:ca:cb:74:88:18:72:a6:56:91:7e:0e:3b:1d:
46:66:50:55:01:cd:36:54:57:2e:e0:10:bb:55:10:
95:45:de:a1:ef:78:ff:e2:f9:99:81:29:f0:69:f0:
25:ae:7f:ba:71:93:cb:93:fd:25:e0:6e:d6:48:65:
09:c3:00:7a:88:b3:62:f9:bf:53:45:fc:cb:74:94:
07:8b:64:4a:18:2d:af:fb:89:43:30:39:a4:15:ee:
36:c4:80:28:a4:a3:62:c2:26:01:ee:fa:ed:65:f6:
ac:e2:47:be:59:20:ba:0f:c9:a6:c7:f2:57:c9:f0:
c1:55:3c:36:1f:94:53:97:51:25:29:c4:09:70:ae:
73:49:0a:a8:78:79:db:71:05:a2:4a:a7:c1:72:3b:
43:ae:45:6e:1c:67:e6:43:a0:b0:5a:4b:a1:85:5a:
9f:61:f8:69:51:5b:7e:63:47:24:fa:2a:db:ff:b3:
80:f8:6b:31:50:62:6d:11:68:8f:a3:a1:df:a8:ed:
7a:da:ce:bb:01:e7:60:86:1d:60:bb:ac:85:59:89:
67:cd:6d:61:25:d2:7b:5d:b4:e0:fe:89:b3:a2:d8:
dd:98:a0:d8:b8:9e:f4:ff:02:a7:ce:2d:31:bf:6e:
06:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:9A:E9:45:1E:CE:83:B6:C3:81:B6:91:18:30:30:C0:66:24:E4:33
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:4c:e4:7e:ce:67:15:86:c1:6c:52:67:98:d4:9e:1f:22:7c:
a3:79:d4:b7:01:2b:34:95:9d:ba:b7:93:98:47:83:6d:9c:3f:
67:a0:c7:8d:dc:d6:49:7f:0d:c4:7b:ca:62:c9:bf:c6:63:16:
55:38:7a:01:3d:1d:c4:b2:ca:2f:fc:13:0f:ec:bf:ba:51:b3:
be:13:84:80:95:e5:d4:4d:9f:07:3c:fd:1a:c2:74:99:bb:2f:
7b:2d:33:35:76:3a:07:9f:11:8b:27:c8:43:72:e4:73:e3:fb:
a1:10:b7:28:58:87:5e:65:af:82:86:97:26:1a:5a:34:66:f1:
2f:40:c9:98:a1:8e:1b:cc:47:9f:97:8e:58:dc:c3:9b:fa:5c:
e9:35:05:f1:56:ba:e6:97:0e:72:92:80:d7:80:aa:04:64:9e:
79:f9:6d:fe:30:c0:49:de:2d:62:6c:3b:5b:ce:69:47:0e:7f:
e2:4a:d1:d7:a3:bc:d8:98:95:32:5f:49:3f:b3:73:f9:df:d8:
d3:57:dc:01:6d:f1:a4:00:6b:fb:95:46:5a:0e:2c:71:aa:16:
6d:d1:02:3e:d0:23:c4:dc:31:0b:8f:0b:6a:e3:4d:c7:9e:d6:
64:d3:09:2d:01:6d:4e:87:6f:88:9b:a2:f1:2b:91:4f:f4:dd:
0e:21:28:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:42:42 2025 by rpki-client