Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
File: U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft (raw, json)
Hash identifier: 3Odz834SYkfgpI6q8HCA5FEkBkywiuDE6g0Zb+U7L8I=
Subject key identifier: C3:CC:21:E8:40:27:B8:DF:4B:DB:FD:60:47:81:69:A1:06:52:EB:B2
Authority key identifier: 53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
Certificate issuer: /CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Certificate serial: 019A011110E7ABFF30D96D45EDE15D889D1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
Manifest number: 16F4
Signing time: Mon 20 Oct 2025 10:01:26 +0000
Manifest this update: Mon 20 Oct 2025 10:01:26 +0000
Manifest next update: Tue 21 Oct 2025 10:01:26 +0000
Files and hashes: 1: 1CCvzsEpR2HzWfAtCPfz-prL4Xw.roa (hash: xMXmg6U7dk2I47UFlru0YwTYb2PTB2hNFflS+Hs5NZA=)
2: 47T-_h4yrwTkNISxK8J3mV88Fh0.roa (hash: BQum24aWy9VPt+BVB7kWULFG+ntEIPlMGrK1sM76ojQ=)
3: U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl (hash: 6b9YVrhTUgbpE16RZmEzU5y/O79/b0GWm+swpobsYDM=)
4: _Swn7rfHkqyddWiH6mJBPzEvtPw.roa (hash: DdKMWCZ6/KHD8pm9QRG9mImRVRpGoqtnHO9unsKXibs=)
5: tNvAcIt1AfnmrpYr9vYkkFneZ2Y.roa (hash: gVnI/4eE/aC58PSWg9zuIzqcxtqe9LJ1Nbo9TV7QxCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 09:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:11:10:e7:ab:ff:30:d9:6d:45:ed:e1:5d:88:9d:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Validity
Not Before: Oct 20 10:01:26 2025 GMT
Not After : Oct 21 10:01:26 2025 GMT
Subject: CN=c3cc21e84027b8df4bdbfd60478169a10652ebb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:77:75:8a:c1:13:47:d5:39:6b:68:56:d1:bc:
f3:d9:85:05:ad:56:bf:e0:4c:29:17:43:4b:13:d5:
84:92:dd:59:ab:df:f8:8b:3c:54:33:dd:30:0c:c2:
5f:d0:6d:bb:64:99:cd:bf:85:87:79:c7:77:2e:63:
99:70:f0:10:e3:fa:3e:02:bc:3e:f7:76:58:9e:cc:
59:8d:97:0f:fb:21:28:0b:51:f4:2e:29:50:4e:e7:
6f:bb:61:9b:d3:9c:17:57:5f:76:79:51:69:c7:62:
32:da:1e:fc:00:0e:f3:81:ec:25:1a:1b:06:bd:4d:
67:c6:7e:73:69:98:e0:3b:ba:3d:f1:72:ff:67:97:
6c:38:51:66:b6:99:4c:ae:f6:ee:64:b5:1f:10:fe:
a0:33:33:f6:b0:c7:18:52:69:2c:20:e8:81:ed:64:
86:a4:58:f2:e1:40:1f:8b:27:72:1b:b6:f1:5b:14:
8d:96:12:be:b2:ab:fd:f5:d4:23:11:d1:99:85:13:
32:c0:29:5d:b5:ae:fc:28:01:80:fb:bb:3f:79:52:
28:af:e9:f1:8f:64:cf:de:1b:05:6b:15:a3:23:53:
ce:82:62:62:0e:b9:8c:20:92:ec:48:f6:fa:77:6d:
23:19:07:03:25:59:6c:a7:c4:2d:b8:8d:f1:81:43:
0d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:CC:21:E8:40:27:B8:DF:4B:DB:FD:60:47:81:69:A1:06:52:EB:B2
X509v3 Authority Key Identifier:
keyid:53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:55:71:b5:4a:e7:9b:f2:e0:c1:c0:cc:69:54:8d:c0:6d:fb:
36:62:95:d1:e2:b4:51:f7:e9:3b:8b:8b:40:e2:a4:3c:c7:2d:
4b:8d:8b:5b:09:3b:f6:bf:f6:2c:82:b9:67:dd:91:1b:04:ec:
a1:b2:93:15:e0:bc:8b:48:6d:e1:ca:30:d9:f8:90:ce:d5:f5:
aa:9a:0b:51:7f:52:5c:e0:fc:f6:27:e6:41:29:c9:5c:7b:37:
91:30:f8:ef:07:e9:5b:c4:03:a3:06:92:c6:2a:4c:e0:3d:7f:
f9:12:5d:6d:7e:44:39:9a:1d:dc:77:cc:42:1c:b1:f9:5e:5d:
6b:86:3a:75:78:32:42:78:4d:08:00:e3:fc:15:b9:1e:66:16:
17:89:6d:b4:57:48:e3:4e:45:61:57:94:bc:d7:60:5c:14:de:
6e:87:da:e3:5d:42:58:70:98:ea:28:15:21:9d:8a:43:c8:99:
ff:87:c5:e1:21:a2:4b:b9:f5:c1:a2:5b:7c:1c:71:93:c2:85:
e7:d9:c5:f2:30:4d:3b:3a:f5:61:cc:67:0f:7a:31:53:01:a4:
b5:d6:5e:93:2e:73:b6:e4:a5:9b:59:df:d0:a7:e2:bb:33:ca:
9f:8d:e6:78:4c:3c:ce:5f:85:a9:ca:9a:7f:69:e4:04:a8:29:
e8:a7:08:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:55:40 2025 by rpki-client