Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json)
Hash identifier: Umzu6UDqAeaGHbbT64RGdkRo/rhYEp3AvdXa+uzd81A=
Subject key identifier: 21:81:1C:38:A5:A6:CF:F4:9B:4C:0D:47:4B:CB:11:72:E6:F7:F8:02
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 0198D65F17F7F34D0F50F3A9DA257398CB58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
Manifest number: 0AEB
Signing time: Sat 23 Aug 2025 10:00:12 +0000
Manifest this update: Sat 23 Aug 2025 10:00:12 +0000
Manifest next update: Sun 24 Aug 2025 10:00:12 +0000
Files and hashes: 1: DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa (hash: 9ygbw2KxTYEdLBVrIZpBTqLv2Fu0lBk+DuBHrlgf8dM=)
2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: ShAkLo2EwYrtproPbbz7J11nrBQzFpGYh7WEcxWvjaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:17:f7:f3:4d:0f:50:f3:a9:da:25:73:98:cb:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: Aug 23 10:00:12 2025 GMT
Not After : Aug 24 10:00:12 2025 GMT
Subject: CN=21811c38a5a6cff49b4c0d474bcb1172e6f7f802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ef:79:7e:ff:10:15:2a:83:b3:c8:ee:31:66:
fd:61:41:3f:7c:54:78:f5:fa:33:76:87:89:b7:85:
d1:f4:79:19:c8:60:3b:82:0b:9a:04:41:de:af:30:
17:97:f3:b5:11:f6:c0:0e:ef:f8:89:e0:39:d8:3d:
56:27:21:68:5b:b0:db:26:21:4b:78:f6:09:b1:c0:
31:0a:f8:7a:ed:65:c3:a6:ee:eb:0a:cd:85:8c:13:
f7:e4:78:2e:dc:b3:b9:71:0a:07:8e:3c:1f:1b:f9:
64:dd:42:92:43:f0:4e:2f:d6:d0:c0:76:7a:5a:03:
4b:95:4d:43:ac:16:8b:9b:5c:a8:21:65:a9:95:0d:
f9:41:b1:47:6d:b9:c5:e2:15:f2:71:30:2b:54:f9:
be:3b:3f:6f:0f:e2:42:77:66:bf:f2:11:71:2c:75:
d2:b7:d8:30:13:9c:60:f2:38:07:f6:24:89:41:ff:
f9:6e:7a:ad:c6:83:e5:bc:ae:e2:26:91:34:29:43:
1a:50:65:51:30:a0:5f:83:ef:1f:27:83:45:42:4f:
cf:70:e2:82:cc:54:ec:60:81:14:73:25:ec:59:0f:
a0:ee:db:69:c8:75:65:b5:28:00:d4:ff:d8:a1:8f:
29:cc:a9:dd:79:82:09:4a:15:c8:0b:08:b8:93:19:
ae:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:81:1C:38:A5:A6:CF:F4:9B:4C:0D:47:4B:CB:11:72:E6:F7:F8:02
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:10:22:87:93:1f:08:5f:9f:44:1d:a5:1a:87:ad:b0:2c:2e:
61:98:d3:96:9b:44:47:70:e2:f9:ec:16:db:30:89:97:44:00:
a2:df:76:4e:f1:a1:0f:47:82:11:c8:6f:55:9f:6c:a1:1a:04:
b2:7b:bb:01:8f:2e:93:3b:df:59:aa:ca:04:4e:fd:b0:65:ec:
26:ec:21:11:9b:52:83:e7:07:d7:f0:0a:a9:7c:47:0b:0c:d1:
2e:35:4a:bd:04:10:9f:9b:a5:e7:fd:80:d3:10:ab:65:91:35:
07:50:ab:14:66:ae:48:ec:30:f2:fb:53:67:7d:8c:c8:42:a1:
f6:66:8e:18:65:3f:92:2f:05:78:b0:07:2c:ad:1a:60:72:62:
f2:c2:13:01:eb:7e:d0:f1:38:ac:4f:d7:f7:13:cc:be:6e:fd:
9b:57:95:fb:35:f0:5c:f6:cf:75:cf:90:e9:74:2c:22:09:1f:
c2:fd:88:d4:8b:5b:70:12:e3:a3:10:9c:56:58:aa:7c:52:27:
51:df:49:8c:cf:0d:b7:0e:86:41:ec:8e:7c:f1:9d:02:7a:5b:
8c:e4:74:32:0f:70:00:98:04:35:c1:e1:4a:cb:0e:7e:a0:e4:
87:6b:10:75:dc:d2:4f:12:60:a0:72:23:cf:7a:21:18:28:e2:
5f:64:a0:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:49:45 2025 by rpki-client