Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
File: U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft (raw, json)
Hash identifier: mddjKdfBo8zuXF1rAjxg88eNN3nm74xiAH3r2PC1Cwc=
Subject key identifier: A9:D5:6B:75:AC:5D:42:59:42:7C:8D:16:7D:12:01:D1:90:22:CF:CC
Authority key identifier: 53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
Certificate issuer: /CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Certificate serial: 0199FBEABB445588DAE7E4008338311F66A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
Manifest number: 0B16
Signing time: Sun 19 Oct 2025 10:01:28 +0000
Manifest this update: Sun 19 Oct 2025 10:01:28 +0000
Manifest next update: Mon 20 Oct 2025 10:01:28 +0000
Files and hashes: 1: GPBna_IoKKdQyaNksGJT2yWTCj4.roa (hash: TAihNlvs0SdUgl2vxovWMBnyUqa0RWqHLKo09+4ZR88=)
2: U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl (hash: USGVU7gjySz9A7ha//uSa38jaIJEza17Ccsk5/aJ51g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:bb:44:55:88:da:e7:e4:00:83:38:31:1f:66:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Validity
Not Before: Oct 19 10:01:28 2025 GMT
Not After : Oct 20 10:01:28 2025 GMT
Subject: CN=a9d56b75ac5d4259427c8d167d1201d19022cfcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c8:b3:a8:ca:5d:64:04:dc:a0:ef:8a:2c:59:
4f:06:1b:77:19:9c:90:53:bc:7d:64:66:da:cc:e1:
dc:64:75:94:ae:9d:b1:51:64:7e:67:5a:9a:a9:fd:
b6:39:e1:22:01:00:9a:e8:9f:15:2b:b2:45:8b:20:
dd:c3:d6:d1:ba:cd:6a:a1:68:33:8c:fa:70:ba:83:
4a:6b:0d:93:ad:c6:23:f3:08:1c:ab:e6:5e:60:d1:
6e:c0:08:67:4d:52:2f:61:54:4c:0c:d2:ce:88:62:
6a:75:38:07:e2:5a:15:e3:a9:51:70:d5:c6:ea:f2:
f7:bf:7b:b6:01:52:1c:96:71:18:c2:f1:dd:b0:92:
be:9f:34:60:69:57:4d:39:54:0e:34:bb:8f:40:b0:
ec:a2:bb:10:5d:7b:3a:4b:6e:51:d5:b5:2a:81:a2:
b0:7b:5d:90:7c:fa:eb:dd:d0:44:19:d8:67:23:a7:
e0:ac:7f:43:49:83:a4:52:ac:2d:61:c0:e0:c1:e2:
79:cd:73:94:c6:24:8d:02:00:10:af:c2:26:f4:c6:
61:73:14:6f:88:05:ff:39:4b:19:ba:5b:98:fd:42:
bf:49:76:c7:7a:88:8f:a4:fa:64:39:96:b1:2c:5f:
2f:33:52:02:e6:47:98:f8:d6:01:25:8c:b7:f0:51:
56:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D5:6B:75:AC:5D:42:59:42:7C:8D:16:7D:12:01:D1:90:22:CF:CC
X509v3 Authority Key Identifier:
keyid:53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:67:19:e0:17:88:e0:d3:ec:d7:81:7f:ff:af:52:16:84:ff:
f1:64:1b:fd:01:3d:b1:75:a2:0b:2e:00:cd:dd:d6:e8:2b:ee:
47:ea:cc:52:cd:bd:67:a6:8b:0b:8f:02:6d:a2:b4:8d:8f:e6:
8d:15:95:c5:33:6b:ab:76:dc:e4:5f:08:cc:04:1b:9d:c6:2a:
bd:fe:9c:82:07:c8:02:3f:df:21:88:a5:a5:5f:53:17:aa:5b:
86:dd:eb:9d:fd:d8:03:f7:d9:c7:82:bc:4b:b5:3d:62:a7:6d:
fc:52:49:a0:82:78:7c:ed:c5:36:d5:64:ca:e7:24:4e:f6:3c:
a3:c2:63:9f:9a:c6:07:c1:53:4b:c6:19:98:db:31:8e:53:73:
c8:09:a7:08:af:66:bb:c4:5a:b7:4e:15:43:b0:c8:c6:41:a0:
96:72:a2:7c:86:6a:42:43:ca:99:d6:f7:47:2d:cc:42:dd:4a:
80:5c:fc:ea:2a:d0:5f:02:05:36:8f:d6:52:2b:40:8d:60:27:
17:70:c3:4c:21:41:a1:a7:fa:1d:2d:98:b8:86:e5:b9:53:4d:
49:49:94:84:f9:25:79:f9:1f:00:d4:2e:1c:55:0f:50:85:40:
a8:5f:74:3c:84:f6:8c:d3:38:41:fd:82:0e:b0:ac:cb:27:92:
80:3b:af:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76rtEVYja5+QAgzgxH2aoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzNzk5NTYwNDUzZGNmNGFmMzFmOWIyYTQwY2QyMzhiODQ1
N2M1ZGUwHhcNMjUxMDE5MTAwMTI4WhcNMjUxMDIwMTAwMTI4WjAzMTEwLwYDVQQD
EyhhOWQ1NmI3NWFjNWQ0MjU5NDI3YzhkMTY3ZDEyMDFkMTkwMjJjZmNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycizqMpdZATcoO+KLFlPBht3GZyQ
U7x9ZGbazOHcZHWUrp2xUWR+Z1qaqf22OeEiAQCa6J8VK7JFiyDdw9bRus1qoWgz
jPpwuoNKaw2TrcYj8wgcq+ZeYNFuwAhnTVIvYVRMDNLOiGJqdTgH4loV46lRcNXG
6vL3v3u2AVIclnEYwvHdsJK+nzRgaVdNOVQONLuPQLDsorsQXXs6S25R1bUqgaKw
e12QfPrr3dBEGdhnI6fgrH9DSYOkUqwtYcDgweJ5zXOUxiSNAgAQr8Im9MZhcxRv
iAX/OUsZuluY/UK/SXbHeoiPpPpkOZaxLF8vM1IC5keY+NYBJYy38FFWNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKnVa3WsXUJZQnyNFn0SAdGQIs/MMB8GA1UdIwQY
MBaAFFN5lWBFPc9K8x+bKkDNI4uEV8XeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTNtVllFVTl6MHJ6SDVzcVFNMGppNFJYeGQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9kODc3MWEtZTc1My00MDZjLWExZDgt
MzlhYjc3YjgzM2VhLzEvVTNtVllFVTl6MHJ6SDVzcVFNMGppNFJYeGQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9kODc3MWEtZTc1My00MDZjLWExZDgtMzlhYjc3YjgzM2Vh
LzEvVTNtVllFVTl6MHJ6SDVzcVFNMGppNFJYeGQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU2cZ4BeI
4NPs14F//69SFoT/8WQb/QE9sXWiCy4Azd3W6CvuR+rMUs29Z6aLC48CbaK0jY/m
jRWVxTNrq3bc5F8IzAQbncYqvf6cggfIAj/fIYilpV9TF6pbht3rnf3YA/fZx4K8
S7U9Yqdt/FJJoIJ4fO3FNtVkyuckTvY8o8Jjn5rGB8FTS8YZmNsxjlNzyAmnCK9m
u8Rat04VQ7DIxkGglnKifIZqQkPKmdb3Ry3MQt1KgFz86irQXwIFNo/WUitAjWAn
F3DDTCFBoaf6HS2YuIbluVNNSUmUhPklefkfANQuHFUPUIVAqF90PIT2jNM4Qf2C
DrCsyyeSgDuvqg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:02 2025 by rpki-client