Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
File: U1UECuknhr8XJ7a07MEJO4p0Aes.mft (raw, json)
Hash identifier: irrfYB+cZxhJzcmQZIVCZnfiG01h1/o/ps9yGJajAoM=
Subject key identifier: C0:99:EB:2F:DA:83:F3:DD:14:8F:4D:1D:15:A1:09:5E:7A:7A:A5:F9
Authority key identifier: 53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB
Certificate issuer: /CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb
Certificate serial: 0198D5159F27196272EF91215C8E471632DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
Manifest number: 0AAC
Signing time: Sat 23 Aug 2025 04:00:20 +0000
Manifest this update: Sat 23 Aug 2025 04:00:20 +0000
Manifest next update: Sun 24 Aug 2025 04:00:20 +0000
Files and hashes: 1: GBm75ZmZioJB2ocCMhAt7gwcAjo.roa (hash: gsh5fLNtNPH78sBeeVxRzXrv6jA9hVTz/xvnQZtNCkc=)
2: U1UECuknhr8XJ7a07MEJO4p0Aes.crl (hash: DZ4+C72rP6FKXEKvqoEfqbtsMSFnhV/fW3HPknLgxFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:9f:27:19:62:72:ef:91:21:5c:8e:47:16:32:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb
Validity
Not Before: Aug 23 04:00:20 2025 GMT
Not After : Aug 24 04:00:20 2025 GMT
Subject: CN=c099eb2fda83f3dd148f4d1d15a1095e7a7aa5f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a8:e9:03:1b:63:b6:b8:38:d4:f9:1c:c3:c7:
2f:d2:6a:24:b1:b6:54:6f:95:5d:f8:5c:26:51:8c:
5d:70:e8:9e:21:cd:cd:5c:33:73:e6:fe:27:af:2b:
17:a3:e1:62:db:f3:7b:fb:db:78:84:5e:0c:33:02:
79:77:76:6a:22:52:fb:6a:5e:1a:02:ad:ca:1c:bf:
14:40:58:62:78:6d:f2:d8:85:e5:38:5b:ca:5d:b0:
f7:e9:a0:09:61:08:14:b7:68:ec:c2:d2:16:2b:8c:
6c:f5:1d:ae:11:52:a8:79:d9:22:8f:83:5e:8b:d2:
d2:6c:64:6d:9e:70:d0:0a:cf:06:e2:95:fa:81:b7:
aa:6b:0a:a4:d5:9a:61:53:b7:2f:5d:53:73:83:2b:
20:f5:ad:a3:3d:4c:3f:cb:2a:d4:25:01:2e:58:a3:
4f:d7:62:d4:1d:85:65:0f:9e:4b:c6:f5:c9:c6:91:
9e:25:39:2c:83:5e:e7:4c:f5:51:98:af:0d:9a:2d:
fb:02:a4:10:9f:c9:15:14:51:86:59:7e:19:05:c5:
16:2b:f5:a0:0b:51:36:02:36:5c:9e:78:b3:21:72:
dc:43:77:97:7f:d6:b6:75:7e:e3:46:1f:5b:06:63:
6d:38:f2:df:d8:a6:0e:df:59:b0:ce:7b:ba:86:30:
be:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:99:EB:2F:DA:83:F3:DD:14:8F:4D:1D:15:A1:09:5E:7A:7A:A5:F9
X509v3 Authority Key Identifier:
keyid:53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:5b:76:90:c5:4a:dd:06:dd:35:2c:93:e3:16:d0:fe:1e:a3:
a2:84:5a:05:2f:10:b7:ce:d5:23:08:e7:3c:76:ce:cb:59:78:
25:27:b3:ca:51:43:8a:fe:5c:e0:82:1a:51:d4:ae:46:66:5e:
c0:a8:87:2d:77:10:67:fc:dd:6d:92:3f:4c:7b:cb:e8:50:18:
57:c5:8d:bb:4b:4d:67:31:b2:45:45:53:1d:eb:81:f2:24:77:
01:15:1a:d0:be:69:a3:aa:5e:9a:99:4a:36:d3:83:42:6e:3e:
1b:98:f1:dc:55:04:3f:3c:20:25:dd:18:8b:64:1b:33:57:2d:
0e:a9:96:f5:b8:f0:b6:08:83:e4:b9:1a:20:f8:dd:c6:17:d5:
72:eb:ae:ce:47:53:14:f8:26:2f:9c:b5:66:90:0d:75:f3:e4:
4a:dd:f8:ca:4e:9c:24:d8:35:0b:3e:26:5a:10:d8:e2:64:2b:
8c:62:e5:b9:76:1f:d8:d1:2c:ae:5a:8f:bf:d6:78:54:bf:d3:
16:6e:28:43:8a:2d:00:ac:8f:ce:a8:47:3a:04:ba:a5:26:ce:
da:70:b7:57:f4:b6:a6:0b:03:58:09:45:d7:51:83:35:96:3e:
6a:92:38:56:68:2b:0f:78:95:6f:61:91:2f:42:73:09:cc:a4:
6d:60:e5:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:58:27 2025 by rpki-client