Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: Quu7x5tcgSJwNx2rq84gyvuQWA73jKp1rlSn28cj2YI=
Subject key identifier: C3:B9:01:2F:95:79:48:6B:94:50:AE:08:F1:49:1A:80:74:2D:1E:55
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 0199FC21C8C7613552994665EC17927F9556
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 0665
Signing time: Sun 19 Oct 2025 11:01:36 +0000
Manifest this update: Sun 19 Oct 2025 11:01:36 +0000
Manifest next update: Mon 20 Oct 2025 11:01:36 +0000
Files and hashes: 1: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: mZLbqxgjqhl6wD0K6vQJ5yrN3XqwMgK4tjXiy7q7L8U=)
2: vloVVT9ufVGR6rj5SefMS3qmK1c.roa (hash: /V+TKP3WFA5NtQkzEdfMB+4hHPZcd6oAqeonzaeqn0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:c8:c7:61:35:52:99:46:65:ec:17:92:7f:95:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: Oct 19 11:01:36 2025 GMT
Not After : Oct 20 11:01:36 2025 GMT
Subject: CN=c3b9012f9579486b9450ae08f1491a80742d1e55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:50:81:83:b2:c2:ca:48:53:3d:6e:2c:31:1e:
dd:df:51:de:06:d9:1a:bd:e8:b1:6d:ad:22:59:23:
89:a9:44:c6:cc:7d:70:eb:f8:74:e1:43:ac:2e:c2:
59:17:2d:ec:20:d0:cb:32:ed:3b:ba:9f:c5:72:c7:
19:ea:9f:3e:9d:d7:52:b4:65:29:7d:e8:2e:d4:c4:
c5:74:4a:ed:c6:4b:e1:af:0a:3f:59:b7:40:96:49:
7e:89:64:1a:4b:35:5c:5e:8b:f4:d6:3a:6a:21:5e:
6f:b9:d4:5d:e7:bf:bb:5a:7f:04:21:66:4b:48:33:
51:35:5f:22:b1:f4:b1:1d:9b:e9:40:42:2d:5f:a6:
a1:82:dc:3a:e6:56:b0:c4:44:24:2a:44:fc:e4:04:
68:4f:33:02:2c:6f:37:ba:fc:be:e4:1e:e8:75:19:
9d:c1:89:5b:80:be:db:98:da:3a:c1:27:19:db:55:
73:fa:e5:6b:e7:aa:94:93:46:1a:bb:f1:e1:d7:1e:
d9:f7:6c:a2:aa:85:99:c9:2c:0e:ba:d5:19:a5:78:
5a:22:55:44:f7:e7:57:63:04:03:96:46:6b:14:b9:
e2:24:f3:3f:fa:f2:17:4f:12:6c:7d:eb:5d:22:56:
36:85:f7:e6:af:88:6a:97:6a:f8:e5:76:28:c0:f1:
d5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B9:01:2F:95:79:48:6B:94:50:AE:08:F1:49:1A:80:74:2D:1E:55
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:ba:99:6a:19:16:3e:35:50:9b:fb:ac:d1:9e:54:69:a1:51:
31:18:93:b8:cf:4e:c6:03:a8:47:44:16:77:3d:d1:a5:2c:05:
90:13:14:9d:37:79:6a:e7:06:ac:07:4c:e6:c6:8b:ad:a3:20:
29:1b:ca:6d:c5:10:a0:fe:7a:f6:50:db:35:10:9c:44:00:f1:
c2:67:99:d1:95:33:8d:88:46:83:b6:a4:c0:4a:f1:94:84:c6:
1a:4b:83:24:c4:e6:43:e2:51:4a:83:ff:80:97:46:59:cf:1c:
06:17:5b:30:4f:35:c4:ba:cb:7c:30:18:87:a1:71:9f:03:2d:
a0:a5:c0:75:4c:97:99:2c:90:0d:4f:03:38:ac:82:9e:1c:05:
ac:6a:1a:3e:b3:ac:1c:c8:ba:91:ed:9a:cb:45:29:86:42:fb:
9b:c2:4a:24:b1:10:3a:48:72:2e:b5:dd:41:01:27:d7:75:21:
6f:ca:07:01:7b:91:c9:2d:c3:08:fe:d5:6b:37:7f:48:cb:ab:
7e:24:db:ea:e8:70:b6:40:31:bb:97:b8:19:3d:93:c3:06:50:
9c:82:21:27:66:2c:41:4f:50:3b:7c:9d:4c:a3:15:28:82:64:
c4:08:17:49:1e:9c:d2:9b:f2:05:1a:8e:21:83:09:ec:da:c2:
a8:f7:d2:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:13 2025 by rpki-client