Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
File: U3h815RuENiGRqx53lfMbsWeQTI.mft (raw, json)
Hash identifier: xuFJ/LX3wflEPxkScSbMM3/MkoA9zIwBxOWp3dMt1p8=
Subject key identifier: E2:C3:F5:14:87:5F:85:0A:02:C9:D1:12:CC:15:6A:B5:5E:B3:BD:94
Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
Certificate issuer: /CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Certificate serial: 0198D4043BF07780E6993B657EB658A8DD0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
Manifest number: 12F7
Signing time: Fri 22 Aug 2025 23:01:43 +0000
Manifest this update: Fri 22 Aug 2025 23:01:43 +0000
Manifest next update: Sat 23 Aug 2025 23:01:43 +0000
Files and hashes: 1: Gb_tS4tDYUhq7ZFBBu6bXOHKxSQ.roa (hash: j+ql1A+cPykDsn/U+bRsvn2rorjyFgGlp+mF0Qt3tRQ=)
2: U3h815RuENiGRqx53lfMbsWeQTI.crl (hash: YA8QDS7C189vuAP7fZPX39m9WWA9z/T+wUtVQldwY5I=)
3: aDocXw9aAWTC2tonweXjSXZoNMs.roa (hash: M6NywDoKFY4uKrDQ3WCmTb7f59Ph9hBt6rzgbYZvGvU=)
4: dqRRF9NrCy7kpjHElym2fRaWWpg.roa (hash: yVbcvUrGd5qHEf8kKaXL1t+AGyhms8ILF9sbmeot86I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:3b:f0:77:80:e6:99:3b:65:7e:b6:58:a8:dd:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Validity
Not Before: Aug 22 23:01:43 2025 GMT
Not After : Aug 23 23:01:43 2025 GMT
Subject: CN=e2c3f514875f850a02c9d112cc156ab55eb3bd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a8:90:03:8a:75:38:48:c8:8a:26:d4:29:03:
f6:52:bb:24:6e:21:8a:6d:16:66:03:a4:ef:25:47:
19:39:54:9d:56:95:df:20:ed:0d:3f:77:09:7b:b5:
25:88:82:fd:3d:4d:ec:2f:1c:ee:a3:87:5f:d9:7e:
51:0f:c6:9e:b1:a5:62:c3:c6:9c:0c:6f:d1:d2:64:
d6:4f:7a:47:b0:cb:b7:04:09:c0:23:2e:29:e2:3c:
84:04:3e:c3:36:65:13:f5:96:10:a5:b7:71:99:2e:
2d:ab:86:f4:49:2c:03:80:53:95:c8:cd:5a:ae:83:
85:97:2c:25:3f:be:fd:93:99:8a:50:ae:af:7a:24:
24:08:58:cd:a8:0e:45:e2:50:42:2b:1f:ab:6b:e6:
eb:52:f9:b0:9d:20:26:37:d2:a5:31:f3:cc:a6:33:
b2:44:d2:f7:14:54:7a:7f:80:a4:e3:1b:d8:1c:8d:
47:b2:c7:ee:4d:d9:69:91:5c:cb:c5:49:50:35:b6:
ee:ce:b1:fa:eb:55:62:06:d3:de:69:47:f9:f7:fb:
77:a0:93:c2:71:b8:93:69:b8:63:82:d1:fe:ca:cf:
c8:79:6b:c5:a9:3b:eb:fb:db:1b:e8:a6:64:b2:dd:
44:be:de:75:c3:96:47:a6:99:7d:e1:3e:e5:80:14:
c6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C3:F5:14:87:5F:85:0A:02:C9:D1:12:CC:15:6A:B5:5E:B3:BD:94
X509v3 Authority Key Identifier:
keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dc:a4:c2:7d:e4:f2:e8:6f:19:34:3f:25:d3:dd:6b:b4:35:18:
0d:1c:73:47:8f:c4:46:04:01:62:fb:52:46:6f:c9:eb:6d:b7:
12:b6:b0:56:3e:d9:31:98:6a:77:3a:4d:7c:b9:f9:94:1f:42:
01:77:cc:4e:15:a8:e1:49:26:c8:f4:de:07:23:7c:e9:d5:2f:
85:cf:64:fc:c2:0d:02:92:dc:66:7a:4b:8b:2b:25:8a:90:ee:
27:c9:74:b0:82:42:5b:f4:e4:bd:e7:c6:65:02:de:19:22:e1:
61:87:24:c0:1d:68:71:b4:13:6e:2d:3b:4d:b0:37:68:42:be:
dd:22:ef:53:34:a7:52:79:49:b3:e5:12:d4:3b:88:f5:97:ab:
37:d4:8d:19:8e:4e:5e:f4:35:11:a5:fe:7e:48:d0:f6:2d:15:
2a:f2:18:c6:2e:94:70:00:05:b6:0c:8d:f2:1e:e0:02:21:f3:
8d:d6:a8:6f:78:4c:de:5d:99:74:3a:3d:d4:d7:fc:de:d0:93:
bc:33:64:92:5c:1b:65:13:88:e7:b2:c8:5a:a9:4a:39:6e:3b:
c2:19:6e:6e:f5:d4:e2:15:14:e4:e7:54:e7:5c:c0:47:64:be:
87:4e:a9:1a:4c:b4:0d:7a:1f:ed:b3:13:cd:df:5e:8e:5a:a7:
3c:05:24:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:41:41 2025 by rpki-client