Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
File: U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft (raw, json)
Hash identifier: 4HeGDU0SRueMtY21hQnzXhwnd46K+kW4ujRwyNsvJCw=
Subject key identifier: A9:D8:1B:94:2F:92:37:45:F9:66:10:26:0B:F8:6D:05:BF:26:C5:D7
Authority key identifier: 53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
Certificate issuer: /CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Certificate serial: 0198D5BC2BB679B78696D3E810970BCD54A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
Manifest number: 1659
Signing time: Sat 23 Aug 2025 07:02:15 +0000
Manifest this update: Sat 23 Aug 2025 07:02:15 +0000
Manifest next update: Sun 24 Aug 2025 07:02:15 +0000
Files and hashes: 1: 1CCvzsEpR2HzWfAtCPfz-prL4Xw.roa (hash: xMXmg6U7dk2I47UFlru0YwTYb2PTB2hNFflS+Hs5NZA=)
2: 47T-_h4yrwTkNISxK8J3mV88Fh0.roa (hash: BQum24aWy9VPt+BVB7kWULFG+ntEIPlMGrK1sM76ojQ=)
3: U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl (hash: YlOvTJWOPXKyeDE1R533VbBnKblzvGS2AucnQuTX/6k=)
4: _Swn7rfHkqyddWiH6mJBPzEvtPw.roa (hash: DdKMWCZ6/KHD8pm9QRG9mImRVRpGoqtnHO9unsKXibs=)
5: tNvAcIt1AfnmrpYr9vYkkFneZ2Y.roa (hash: gVnI/4eE/aC58PSWg9zuIzqcxtqe9LJ1Nbo9TV7QxCQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:2b:b6:79:b7:86:96:d3:e8:10:97:0b:cd:54:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b62ace615b906b42ab27f4fb1d203df36d5436
Validity
Not Before: Aug 23 07:02:15 2025 GMT
Not After : Aug 24 07:02:15 2025 GMT
Subject: CN=a9d81b942f923745f96610260bf86d05bf26c5d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:21:95:58:08:29:81:16:f2:ab:65:6c:13:e5:
ca:34:35:c5:2d:ba:a0:db:e9:de:c1:6f:1b:57:69:
0e:8f:4a:4d:eb:e5:12:19:ff:18:39:d6:fe:70:87:
2a:ff:91:7a:6d:de:71:34:58:aa:06:b5:43:e9:8c:
d1:24:a7:27:6f:9e:ea:47:08:89:81:8f:b5:97:b0:
d7:e6:a2:b7:6a:6a:5b:4b:51:50:7f:c5:75:3e:1e:
f0:78:07:cd:01:0e:c7:c0:89:42:3b:9d:28:11:34:
ce:5f:87:a5:f6:db:60:1b:3a:fb:35:7d:f2:98:d9:
bd:c0:1c:3e:1c:59:a8:03:bf:ef:96:55:03:3a:10:
d7:6e:34:cc:c8:03:32:42:dd:bb:b0:0e:94:28:cd:
61:1e:16:34:e2:03:4b:6e:41:4e:bb:e9:4c:55:44:
75:37:d3:27:f1:26:c1:f0:86:39:0f:8d:c1:be:a3:
83:3d:ee:26:ae:40:69:9e:12:0f:bd:b1:26:de:66:
a2:e4:b5:e0:1f:6c:ca:60:9d:fb:0f:81:21:95:78:
9e:39:c6:36:a0:16:8d:55:21:32:aa:cc:8d:36:0b:
a4:ad:94:7a:31:78:66:62:aa:83:df:2e:42:67:fe:
80:e2:ea:03:80:e3:c3:dd:f1:bc:b3:6d:2f:3f:73:
be:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D8:1B:94:2F:92:37:45:F9:66:10:26:0B:F8:6D:05:BF:26:C5:D7
X509v3 Authority Key Identifier:
keyid:53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:d3:1c:a3:45:77:cc:76:40:4a:1b:f2:39:ec:92:2e:bd:46:
61:ca:dd:35:c2:16:c7:0b:d4:f3:70:cd:9d:9a:4b:6f:16:b2:
11:8f:59:d5:18:33:3e:9b:b4:76:d4:9d:a9:d7:bd:1e:44:8a:
7f:17:1a:f5:95:e6:f1:53:09:e5:d1:e2:db:d3:d6:d3:87:85:
4c:b6:41:66:1d:6e:29:cf:e2:68:05:ce:4d:fd:fe:29:47:75:
91:70:08:71:a9:0e:ea:9f:34:60:3a:f0:32:b0:94:70:7b:af:
0f:d5:28:34:a2:1c:ce:9c:41:18:88:10:1f:ae:96:59:25:47:
9d:d0:40:81:40:69:83:14:a8:9c:e1:11:92:b3:2d:00:cd:88:
89:39:4e:ff:e8:0f:ca:02:7c:3b:b4:02:ec:e0:37:b3:8f:7d:
44:5a:59:74:71:4f:6b:51:aa:55:b2:12:31:ce:13:14:bc:41:
c6:e1:56:e0:ea:e8:16:0c:f4:2c:10:7c:49:32:e0:13:9b:b8:
e8:db:ac:e2:74:3a:34:4d:15:0d:e8:8e:f2:59:ae:7d:aa:97:
45:8c:c1:4f:f1:14:9a:c3:aa:4c:36:99:31:1f:ba:74:5f:02:
d0:66:26:42:4c:db:55:51:d3:b0:c7:0d:f2:88:64:a5:e1:5a:
14:90:7e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:21:30 2025 by rpki-client