Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
File: U1vkU3bViYdFK9Bka5p0z562yy0.mft (raw, json)
Hash identifier: NCyj7w5tQQ1NB2s6T51ZbJ+cD7ynoWMnkC3zDBpj5CM=
Subject key identifier: 20:05:E2:22:18:D5:73:E6:34:7C:B0:88:D0:F6:EA:37:2B:D2:86:09
Authority key identifier: 53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
Certificate issuer: /CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Certificate serial: 0198D584061CC354282892114604607857C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 06:00:55 +0000
Manifest this update: Sat 23 Aug 2025 06:00:55 +0000
Manifest next update: Sun 24 Aug 2025 06:00:55 +0000
Files and hashes: 1: U1vkU3bViYdFK9Bka5p0z562yy0.crl (hash: E8zsDlTllVugvC7WOS/0BFnPmCrNUdJLM0HEHFy0OQE=)
2: bldtfvyuIcb6nqjUAl8Ak0zMF30.roa (hash: dx6ZT1WJQ+QEzva9Bd5tv/adJVLszcwVSLKhJy+UO24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:84:06:1c:c3:54:28:28:92:11:46:04:60:78:57:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Validity
Not Before: Aug 23 06:00:55 2025 GMT
Not After : Aug 24 06:00:55 2025 GMT
Subject: CN=2005e22218d573e6347cb088d0f6ea372bd28609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2f:51:7d:36:27:b5:8e:39:88:b0:a5:f5:49:
e4:d4:9b:77:3e:7e:85:8a:60:0c:72:e0:2d:e2:66:
cf:98:0d:02:05:a5:0a:e3:94:a0:b5:b5:2d:07:f1:
32:4c:fb:41:27:26:0d:52:f8:de:65:c1:80:a0:07:
67:c4:c1:55:60:d4:ce:6c:81:4f:f8:d1:eb:63:01:
94:bd:70:16:69:66:73:aa:c6:76:0d:10:bd:67:a0:
59:e1:be:2d:83:f8:59:95:46:fa:19:65:6e:0f:69:
be:82:53:98:cb:6c:52:05:15:0f:b8:2e:c7:35:83:
a9:f9:87:05:6c:bf:65:83:d7:ed:b4:ed:71:53:d9:
b8:9a:19:86:75:a6:5d:dc:e6:21:19:cd:b8:ba:f5:
25:49:2a:30:9a:1f:f4:c2:3e:34:7d:de:ed:b6:f9:
71:d9:b4:2f:fe:05:89:ad:c1:ae:83:55:63:e9:3e:
2d:9a:ac:95:db:d6:fe:ef:08:51:c0:24:f6:cb:21:
3f:21:64:53:d8:21:f6:2e:d5:22:83:8e:c5:a4:d9:
70:46:f3:ed:5a:0c:3d:ec:73:77:3f:b8:96:96:a6:
bb:e1:ad:ed:e7:5e:7d:a9:9c:44:1e:ba:1d:11:31:
cc:6b:8c:bf:de:1a:f2:5f:de:60:fc:f7:7a:65:fc:
b5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:05:E2:22:18:D5:73:E6:34:7C:B0:88:D0:F6:EA:37:2B:D2:86:09
X509v3 Authority Key Identifier:
keyid:53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:5c:f8:ce:5a:cf:fd:88:f2:14:bd:82:6b:76:bd:8b:61:5c:
4a:42:f7:9b:b3:c3:3e:7d:9a:01:8f:09:b6:22:60:6d:c2:36:
ff:73:08:f4:b9:ed:16:ce:20:93:86:8b:de:0a:0e:b4:d0:3c:
74:9b:3d:7c:26:05:71:85:86:2d:73:11:b8:02:20:3c:10:c6:
b5:f3:13:9f:91:f7:2b:c8:c5:29:e4:32:30:ea:69:bd:ae:0f:
8a:93:26:ac:b6:55:0d:18:1b:20:d7:d2:d6:c6:82:3e:d9:21:
5e:a3:39:e9:19:e0:6f:99:70:4f:0b:61:f7:30:8c:ce:cc:c4:
4c:44:0e:44:48:2c:02:80:f7:d2:fe:f5:02:a8:5c:b5:1c:f1:
5b:e2:89:65:12:16:64:5b:94:d0:a0:73:ac:a7:3c:29:ad:d7:
cd:39:ce:63:29:02:29:16:f9:13:fe:9b:e8:be:fd:df:54:c8:
4d:5a:c4:4c:83:22:9c:17:95:55:0a:c2:5b:79:b8:39:4c:94:
3c:1e:5e:60:43:30:80:9f:4e:4f:66:06:ab:f4:6c:4c:cf:b1:
9d:cb:2f:2b:26:82:03:1f:27:0a:da:1b:24:82:9c:3d:e1:c9:
08:1b:08:67:da:2c:9b:f0:65:d9:69:f2:f2:97:48:40:a5:d3:
70:4c:4e:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:34:07 2025 by rpki-client