Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
File: U_tSQvmM_53qm6qMiuRmpCtTfFw.mft (raw, json)
Hash identifier: jp4+BqOroV6a8YJfQG1g4UEbutMz8D+VbrlqrXlIRAU=
Subject key identifier: B9:A2:77:52:2A:1F:E4:8A:53:74:4E:86:C5:22:C0:A1:D3:87:82:0D
Authority key identifier: 53:FB:52:42:F9:8C:FF:9D:EA:9B:AA:8C:8A:E4:66:A4:2B:53:7C:5C
Certificate issuer: /CN=53fb5242f98cff9dea9baa8c8ae466a42b537c5c
Certificate serial: 0198D65F155E965FB7531C88860952847248
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_tSQvmM_53qm6qMiuRmpCtTfFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
Manifest number: 162F
Signing time: Sat 23 Aug 2025 10:00:12 +0000
Manifest this update: Sat 23 Aug 2025 10:00:12 +0000
Manifest next update: Sun 24 Aug 2025 10:00:12 +0000
Files and hashes: 1: U_tSQvmM_53qm6qMiuRmpCtTfFw.crl (hash: JEMM2KHY7KyPsA/ciYDHj1gZoaAdWD4ZgMdTpKs1SoQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U_tSQvmM_53qm6qMiuRmpCtTfFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:15:5e:96:5f:b7:53:1c:88:86:09:52:84:72:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53fb5242f98cff9dea9baa8c8ae466a42b537c5c
Validity
Not Before: Aug 23 10:00:12 2025 GMT
Not After : Aug 24 10:00:12 2025 GMT
Subject: CN=b9a277522a1fe48a53744e86c522c0a1d387820d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:04:3b:b7:d3:93:8c:43:45:af:41:ce:6b:fb:
e8:1c:c0:4e:bb:7d:24:d1:ca:d3:b5:b9:0e:cf:2b:
e8:8f:1e:3f:e9:3a:c6:d9:62:ed:68:dd:55:9d:23:
47:7c:97:11:66:94:42:3c:db:61:fe:8f:c1:df:38:
34:76:ac:13:83:7a:27:46:ff:48:41:98:9a:33:e3:
ec:33:a7:d5:24:ed:62:34:70:d8:48:2d:7e:03:bd:
f6:39:bb:09:61:ee:78:59:59:a2:69:d3:59:30:e5:
bf:df:90:4c:0f:73:4f:46:5c:9b:f8:29:7d:c2:d1:
01:53:6f:e6:f7:58:ef:73:a5:2c:a8:65:3c:44:8a:
b2:59:af:2a:f1:09:f1:ee:14:36:25:ee:91:0d:6d:
85:d0:e6:ed:d6:41:46:34:fb:6c:7f:85:c9:9e:36:
c0:ad:0a:f9:3d:4d:f3:11:1b:18:6f:28:e6:29:df:
08:99:7c:55:ee:e5:19:78:eb:26:dd:3d:b6:0c:aa:
8b:89:6a:c6:58:b6:b6:b2:58:30:6f:dd:3c:52:17:
2d:6e:b6:bb:c0:08:e7:c4:b0:ef:cd:f2:e8:07:ae:
01:77:37:e2:00:e4:7d:63:fb:ba:d4:5f:22:ca:f5:
57:6c:9a:53:fd:cf:9d:c7:52:e8:c3:9c:fb:27:87:
a1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A2:77:52:2A:1F:E4:8A:53:74:4E:86:C5:22:C0:A1:D3:87:82:0D
X509v3 Authority Key Identifier:
keyid:53:FB:52:42:F9:8C:FF:9D:EA:9B:AA:8C:8A:E4:66:A4:2B:53:7C:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_tSQvmM_53qm6qMiuRmpCtTfFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e4d7c6-a299-4b88-8247-9c4032963e17/1/U_tSQvmM_53qm6qMiuRmpCtTfFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:e4:dd:73:60:2b:07:d6:d1:5e:8f:15:62:7a:53:ab:90:d1:
5e:47:4e:12:96:3e:56:01:2a:96:4b:fc:16:86:52:f3:88:71:
03:9c:13:1c:bc:52:11:12:98:27:20:59:c1:b9:30:40:37:c3:
c1:47:18:14:55:e0:3f:1b:3c:94:3b:c2:63:28:19:19:e7:5d:
82:48:d5:a9:47:61:ee:97:64:5f:b5:20:89:13:a0:56:52:ec:
12:71:62:c2:d2:a4:91:51:56:a6:17:37:78:91:ac:f0:ab:6e:
6d:03:16:54:8d:04:87:2e:94:13:5e:39:3a:21:5f:33:71:08:
f1:ad:c8:d2:73:61:27:a8:7d:a8:ff:94:00:ae:c5:84:f5:69:
27:d1:43:a6:23:7d:b0:88:a7:7c:b7:74:48:3b:89:ff:cc:00:
ef:d4:e6:21:14:e5:1f:c4:61:c5:97:ca:b3:86:ba:24:8c:2a:
bb:17:8a:97:f7:8f:dc:12:ba:c3:9f:96:bd:06:ed:23:47:59:
44:ce:ca:c3:36:a6:84:b0:e1:3c:3c:30:a3:2f:d4:3d:fc:ca:
94:20:a0:47:6d:9c:dd:17:f6:fd:75:31:48:de:83:17:29:09:
e7:cf:36:42:bb:0f:24:a3:c6:0b:13:15:72:a8:35:57:f8:87:
49:80:bb:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:33 2025 by rpki-client