Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: 4rf9Fp/zGzs014+76h88CxWIP+yuz/ISAHC3WIaPeqk=
Subject key identifier: 8C:A0:FE:33:A9:D1:7F:09:30:2C:D7:F4:70:DE:BF:30:C5:02:7A:3A
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 0199FD6B17DA7D2BF3E06F2E32BEC7D70218
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0CDF
Signing time: Sun 19 Oct 2025 17:01:18 +0000
Manifest this update: Sun 19 Oct 2025 17:01:18 +0000
Manifest next update: Mon 20 Oct 2025 17:01:18 +0000
Files and hashes: 1: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: snK5lY38o5LzRfcKgdaCDKv+en7P4ivY0sunfDi/XIU=)
2: WNeWcYI--FrvgqVvkbFu12LIaYA.roa (hash: k8USa1JcWCZakgNPmvbG30Z+DpfHdvNnOH9UZ98bnDg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:17:da:7d:2b:f3:e0:6f:2e:32:be:c7:d7:02:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Oct 19 17:01:18 2025 GMT
Not After : Oct 20 17:01:18 2025 GMT
Subject: CN=8ca0fe33a9d17f09302cd7f470debf30c5027a3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:10:09:c0:6b:aa:ce:86:b4:d4:5f:76:0d:b5:
6c:79:91:93:af:39:19:87:98:dd:1f:46:ce:5e:99:
b4:78:e4:f7:09:9d:2b:f5:21:c7:a1:38:79:bf:00:
44:19:2e:a1:7a:c7:74:f9:90:b2:72:77:9b:5d:ce:
14:47:75:8f:1e:8c:da:a9:d2:1f:a8:9a:7f:1e:32:
93:3a:fa:d8:af:6a:c8:23:5e:02:28:f0:7c:02:be:
50:e5:95:c5:6b:0e:f5:8e:1a:08:eb:20:c3:2f:20:
8b:7c:91:23:dc:31:95:08:86:0e:8c:af:fc:ec:4c:
d7:53:64:0d:70:5b:0a:9b:fb:de:84:1a:e1:fb:df:
56:e7:82:ab:ce:fd:3b:b2:99:24:02:c8:bc:bc:6c:
45:d4:8b:05:1e:fd:69:d2:32:5d:db:cc:0e:2e:22:
c2:94:94:9b:9f:bb:e7:ae:da:02:72:fe:ce:04:f2:
ff:0a:b5:3a:46:69:16:48:b2:59:8d:95:98:07:00:
23:00:ce:9c:71:c7:22:41:24:a7:8c:15:62:00:33:
39:f3:f1:e7:b5:e1:33:d8:b1:c4:89:4a:96:13:29:
ae:67:37:99:ca:d8:13:11:c5:ef:4a:1e:4c:e1:0c:
31:07:93:9e:d9:1d:fa:35:40:a6:e7:52:09:38:6f:
e1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A0:FE:33:A9:D1:7F:09:30:2C:D7:F4:70:DE:BF:30:C5:02:7A:3A
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:ad:93:23:b7:99:53:45:e3:52:9e:2a:56:f4:0f:b6:53:1a:
b9:bf:a5:2e:0b:be:3a:62:ae:e7:76:5f:74:69:2a:03:60:f4:
7f:31:c9:45:14:bc:73:ea:21:f8:c5:7f:d4:18:73:36:78:c9:
d3:ad:ea:32:95:38:63:53:45:d4:16:57:b5:99:90:2e:fc:a9:
83:fe:00:0d:3e:fa:70:08:8b:0d:50:86:58:86:84:28:90:ba:
db:e6:b2:f2:95:5f:88:6d:b9:85:f7:ff:22:52:6e:8a:d8:b5:
cd:d5:ea:5c:88:a8:c1:81:08:b6:da:22:36:cf:10:d9:74:20:
ca:2c:56:26:1e:ee:29:8d:44:72:a2:7b:23:59:40:de:fb:74:
a2:42:a0:4e:39:e1:73:89:39:95:41:5e:24:51:f0:56:a2:a6:
66:2c:5f:0f:a7:1d:1f:ff:72:bd:ca:8a:65:b0:c4:89:25:84:
e0:a7:29:8d:65:80:16:ad:62:df:56:7a:d8:20:d0:e9:11:1c:
fc:1c:99:b3:79:9a:4c:b7:bc:ad:25:06:99:b2:af:98:7d:10:
37:0c:4d:f1:1f:e4:60:17:fa:41:8c:be:b3:53:0d:53:e1:07:
0b:f6:ce:ed:8a:63:c6:58:e4:cb:75:83:f9:eb:e0:eb:3d:2e:
c7:8f:3f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:26:48 2025 by rpki-client