Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
File: U1vkU3bViYdFK9Bka5p0z562yy0.mft (raw, json)
Hash identifier: l9lQ02cFgksXfov2vyjdF+Gi3hDZDNatTNBx/l2lE5g=
Subject key identifier: A7:32:B8:9C:95:9E:5A:87:DF:9C:D3:77:96:CD:A6:7F:48:BF:30:58
Authority key identifier: 53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
Certificate issuer: /CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Certificate serial: 0199FCFD8072200CF38023A667117591D72A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 15:01:35 +0000
Manifest this update: Sun 19 Oct 2025 15:01:35 +0000
Manifest next update: Mon 20 Oct 2025 15:01:35 +0000
Files and hashes: 1: U1vkU3bViYdFK9Bka5p0z562yy0.crl (hash: xB1NERcdAG0J+6UKSMIdJeTGhn3/IRrgnyCARNRc6iU=)
2: bldtfvyuIcb6nqjUAl8Ak0zMF30.roa (hash: dx6ZT1WJQ+QEzva9Bd5tv/adJVLszcwVSLKhJy+UO24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:80:72:20:0c:f3:80:23:a6:67:11:75:91:d7:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Validity
Not Before: Oct 19 15:01:35 2025 GMT
Not After : Oct 20 15:01:35 2025 GMT
Subject: CN=a732b89c959e5a87df9cd37796cda67f48bf3058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:33:7f:f9:b3:92:6a:3e:fc:17:17:5c:96:ce:
63:16:9f:00:27:0b:18:c1:4c:3e:91:95:55:2a:80:
3f:59:d5:c7:94:2f:6d:2e:bf:f1:2f:2f:a3:51:c9:
46:1f:a3:1d:88:5f:a8:9d:19:8a:67:45:e3:7e:75:
61:cd:3b:31:7e:9b:7b:25:ec:0a:a1:82:cc:d7:ae:
0b:91:82:7b:c1:0d:3b:23:f9:c7:1c:86:3e:3c:f3:
f3:12:23:e5:7c:00:3c:37:cd:97:f4:be:be:37:ee:
8e:f1:29:68:b1:57:91:5b:ea:9f:9f:6f:1e:e1:30:
86:c4:d4:ee:6a:41:13:8c:6f:99:2b:fc:f4:97:95:
e4:e0:4f:c1:b8:d5:f2:c2:64:cf:28:33:1a:f9:e2:
41:4d:4c:2b:b7:e3:d0:d8:31:d0:e0:75:2b:1a:77:
62:a2:27:5c:5c:d7:d3:ca:81:86:63:42:ea:cd:18:
5d:9b:1b:9d:8f:0e:b2:1e:9b:42:e3:67:2c:e2:3e:
9e:16:07:22:91:ec:91:72:85:90:d8:6b:83:05:d4:
73:1c:4c:de:92:fa:82:82:0c:8a:c5:ae:88:56:1f:
80:1e:ef:5b:9c:ad:58:69:ea:82:7d:2a:66:57:37:
0d:2e:13:c3:8d:4d:6f:f8:49:a5:c1:f0:46:99:17:
92:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:32:B8:9C:95:9E:5A:87:DF:9C:D3:77:96:CD:A6:7F:48:BF:30:58
X509v3 Authority Key Identifier:
keyid:53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:e5:75:90:0d:80:24:fe:65:f2:63:7e:0c:58:34:ee:0d:48:
fe:66:a5:cb:b1:33:16:51:d3:1a:38:d0:be:4e:e1:a9:cc:7c:
f7:4c:51:8a:60:7b:70:b3:4c:5d:91:f8:59:26:b5:01:05:29:
06:30:e0:6f:f9:0f:52:d1:f2:a9:19:70:cf:d7:cd:d6:90:4b:
b8:b8:9c:ce:44:78:22:1f:02:01:e0:ef:ec:e7:3b:ac:19:7d:
b0:08:1f:b4:22:35:6e:63:d8:6e:2c:56:a9:b5:6e:07:0d:c6:
ef:cd:e9:56:88:0f:cc:fe:97:ad:20:6f:74:54:69:74:d0:f0:
a0:5b:25:56:ea:8d:51:98:98:eb:b5:b3:c8:03:2b:f1:ad:77:
78:a7:f8:23:a8:b4:6d:2d:40:48:fd:69:4e:b4:1a:eb:e2:39:
f3:b9:25:bf:c7:cc:ba:68:8a:d2:7b:b8:1a:07:64:88:98:55:
b7:51:b1:07:8f:35:93:09:a1:db:e7:ad:b6:01:31:91:7d:85:
98:12:50:a2:17:6f:77:83:19:8b:37:7f:f0:15:05:d2:78:cb:
cd:b5:36:4a:7a:36:65:d3:66:e8:bf:91:45:bf:a6:cd:7f:4d:
2e:3d:fe:42:4b:bc:f8:60:46:e4:96:4d:21:3e:c9:d2:1a:24:
62:29:80:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:03:11 2025 by rpki-client