Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
File: UUtNPv-4vQsTNu68uCe3fhKeD28.mft (raw, json)
Hash identifier: lDRB1mDqti+BjNyViOKe+nAVBBs6o33kvY/fIHiq2Kc=
Subject key identifier: 71:53:1B:71:53:8F:DE:80:24:BB:01:75:60:B5:A9:A9:F7:A4:32:0E
Authority key identifier: 51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
Certificate issuer: /CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Certificate serial: 0199FD6B66D2195595C5D8CD2E2B9234FE68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
Manifest number: 0B4E
Signing time: Sun 19 Oct 2025 17:01:38 +0000
Manifest this update: Sun 19 Oct 2025 17:01:38 +0000
Manifest next update: Mon 20 Oct 2025 17:01:38 +0000
Files and hashes: 1: DkmUUaZoynIEdlR9hMmyYSS3NfA.roa (hash: JaWDKrMwIijsWs6TG8arC0MUQjJ3dz0V76FJO19Gqec=)
2: UUtNPv-4vQsTNu68uCe3fhKeD28.crl (hash: Ivx1HDnVHQL2qEJFSFGhCwdklUCpji/ILuwhKtWBs+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 17:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:66:d2:19:55:95:c5:d8:cd:2e:2b:92:34:fe:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f
Validity
Not Before: Oct 19 17:01:38 2025 GMT
Not After : Oct 20 17:01:38 2025 GMT
Subject: CN=71531b71538fde8024bb017560b5a9a9f7a4320e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:20:f2:c5:b6:43:00:81:8b:84:d3:f2:d3:02:
b8:02:39:dc:69:bb:69:e0:01:40:65:21:1f:24:23:
2b:cf:17:cf:43:1d:01:3b:b4:37:0e:82:5f:ba:11:
3d:56:ac:a8:ce:3f:96:a6:63:a0:9d:36:df:67:11:
fb:28:c9:b4:d4:25:1a:f8:92:c6:a5:71:95:80:51:
9a:d1:ee:5e:de:4d:c5:41:c1:21:8e:0d:65:96:4a:
ef:1c:4f:28:9e:92:b2:30:d1:db:7d:2a:12:b7:ab:
fc:c8:6c:1c:67:be:e4:f8:f2:fe:e0:3b:29:3e:9e:
8b:fd:6a:a6:5f:1f:4e:81:48:db:8f:45:c7:52:9a:
59:5e:32:a7:1c:4d:9d:d2:52:e5:bf:19:ab:29:2a:
69:90:90:e0:a9:62:4e:2c:0f:6a:52:f9:cc:c0:6f:
72:a6:7f:34:a4:05:eb:09:d4:fc:25:4b:2b:c1:90:
19:fb:ce:ea:62:ae:33:eb:11:be:4b:e1:53:48:8c:
fe:76:7f:ea:1c:99:38:22:f2:50:ef:e5:a9:dd:f0:
9e:90:2d:14:23:1d:b7:63:f3:29:96:5e:6d:94:b8:
c6:66:aa:64:ce:e0:9c:7d:4f:7b:f4:49:67:2e:46:
97:9d:48:41:cf:df:61:9c:1c:f5:11:96:02:ff:e7:
bf:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:53:1B:71:53:8F:DE:80:24:BB:01:75:60:B5:A9:A9:F7:A4:32:0E
X509v3 Authority Key Identifier:
keyid:51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:e0:6a:ab:a9:64:a8:5b:30:f2:09:9c:fe:06:b1:42:28:1a:
ab:b6:1d:14:07:e6:8f:dc:39:24:55:4d:92:ab:7c:d9:88:96:
4d:75:ef:cc:72:e3:11:9e:9c:b9:b0:2b:9f:59:d2:70:c2:ac:
d2:fa:7b:78:9f:e2:05:4f:2b:bb:15:94:af:ac:69:47:76:0e:
f2:ca:72:e8:c2:25:14:ce:e3:40:e4:c1:69:24:1b:fd:64:25:
a6:65:2d:3f:f4:ba:03:71:77:19:25:58:3d:b4:64:4c:f0:15:
f0:2c:0b:49:21:61:42:eb:bd:ed:13:19:21:cb:26:8d:48:44:
03:9a:8b:fd:f0:e7:39:9b:33:bc:63:09:d6:d6:3b:6d:d8:49:
13:6e:6f:df:08:14:d0:60:8e:a0:f9:1c:e2:14:bc:74:40:62:
20:e1:e8:4b:0b:50:84:de:a1:04:06:b1:61:e5:b5:f9:c9:b6:
ab:2f:a7:bf:1a:cd:83:b9:10:bf:a5:a2:67:a5:62:00:7e:d2:
12:8e:82:52:d6:11:b0:8c:fc:4f:43:d2:a8:e3:c7:cc:d1:23:
fb:d8:6c:3c:11:b2:03:3c:f9:19:af:cb:45:2a:6c:24:92:48:
0b:20:75:f7:e1:58:d5:5e:3a:8a:4b:e5:54:5a:7e:c5:5b:89:
fe:8b:4c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:06:54 2025 by rpki-client