Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
File: 5UGkwVK194bWI9hcQUZSmc3aM4k.mft (raw, json)
Hash identifier: Bl8wrK9QjHwbHAj4JZzlya1zEpDfNf3HwFHtZvL4NPc=
Subject key identifier: 53:05:79:58:12:5E:75:2C:FC:A4:2A:D3:56:FB:B1:57:CA:69:80:07
Authority key identifier: E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89
Certificate issuer: /CN=e541a4c152b5f786d623d85c41465299cdda3389
Certificate serial: 0198D5BC0DC23AD41E8AB06BFC157B83B4C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 07:02:07 +0000
Manifest this update: Sat 23 Aug 2025 07:02:07 +0000
Manifest next update: Sun 24 Aug 2025 07:02:07 +0000
Files and hashes: 1: 5UGkwVK194bWI9hcQUZSmc3aM4k.crl (hash: seJMwY232dqVhZ1fzx1QCR5CzXBDuz3Z1zAPX/bcPeQ=)
2: kenow9ooVwL0t4IuHSVvvQIsN8M.roa (hash: tJkXtVd1TBPTWkBnhiKcyLiHlQeoQgvy5+UbWV83vUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:0d:c2:3a:d4:1e:8a:b0:6b:fc:15:7b:83:b4:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e541a4c152b5f786d623d85c41465299cdda3389
Validity
Not Before: Aug 23 07:02:07 2025 GMT
Not After : Aug 24 07:02:07 2025 GMT
Subject: CN=53057958125e752cfca42ad356fbb157ca698007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:10:b3:4c:ed:af:48:ec:c0:9e:75:0c:ba:f4:
dd:14:96:fc:d2:47:2b:b9:82:29:ad:85:10:52:87:
16:eb:a6:6f:a5:30:de:92:9b:7a:a9:5d:4f:ff:69:
80:b8:dd:00:31:0f:d3:f6:9c:b5:32:5a:05:7e:6d:
45:ac:57:5a:d9:fd:62:e3:1e:5c:87:b2:73:7b:06:
f5:d8:d2:61:92:39:83:63:f2:2a:41:47:59:da:a0:
91:1f:51:68:79:72:39:60:69:6d:9d:cb:e5:67:9c:
e7:c4:1a:81:65:fa:b0:73:72:3c:4d:8f:c7:76:41:
81:e3:e9:5a:26:0b:a0:0b:83:7d:13:5d:4a:f4:f0:
69:d6:e3:db:38:cd:f3:9e:ad:0b:73:a3:13:20:6d:
a4:bf:bb:5c:a5:17:7a:3a:dc:33:66:3a:32:c7:4f:
39:05:a0:62:2b:b8:3c:93:d3:fe:f7:cb:5f:3b:7f:
c0:44:43:29:1a:86:aa:66:fd:53:ad:85:ba:ad:06:
a9:e3:50:07:e6:f7:15:53:e4:7b:50:ca:f7:6b:b4:
25:b0:e8:ca:03:fd:59:13:0e:e6:f5:cf:ff:10:b7:
2f:59:85:e5:69:17:60:e6:01:d6:a1:c3:b5:05:8e:
77:1c:9b:cc:90:d5:06:63:42:57:d4:26:22:75:e6:
d0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:05:79:58:12:5E:75:2C:FC:A4:2A:D3:56:FB:B1:57:CA:69:80:07
X509v3 Authority Key Identifier:
keyid:E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:06:3b:7d:8e:cc:49:52:15:fd:f4:7f:7f:48:92:c1:71:d3:
b6:5b:98:80:e0:5c:2b:57:30:af:18:3c:8d:61:b0:6f:48:dd:
76:13:6c:c6:db:15:6b:3f:5e:ad:9d:86:21:38:db:7c:68:45:
0b:1d:4e:e2:04:8c:80:b8:5e:03:d3:c8:31:42:1d:4f:2d:4d:
cd:a3:2e:df:6b:95:3f:19:2e:fb:d1:cd:1b:c9:ce:d5:35:fa:
89:ac:1d:a6:44:ed:02:46:45:99:fe:fa:f1:d5:24:9e:5f:4e:
70:3e:22:0e:73:6b:bb:28:45:9a:dc:e7:f5:a4:9a:7a:c3:3e:
aa:84:bd:2b:ca:56:29:78:4f:77:e5:31:6f:5d:40:7d:2b:a6:
0f:9a:dd:de:83:07:c0:6a:9b:f9:c5:30:80:87:94:9c:80:53:
22:2a:0f:d2:99:41:80:c6:43:dd:72:46:65:62:67:96:a7:e7:
cc:f3:86:4e:14:14:f3:0f:2c:0a:09:0e:a2:8e:32:eb:a6:46:
37:d8:b5:09:09:de:1e:c3:7c:7c:63:ec:75:42:59:1d:f5:ec:
e8:af:e9:81:00:7c:f2:59:93:df:92:37:de:9f:de:7c:aa:ef:
4f:18:b8:7a:3b:e9:e2:2c:d1:d5:4c:3d:df:43:df:a3:ab:2b:
f7:5b:1a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:34:59 2025 by rpki-client