Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
File: U1UECuknhr8XJ7a07MEJO4p0Aes.mft (raw, json)
Hash identifier: bpU9jJwFNxryA72y8F7KvPdU/oYCYSLJ/EZlW25ceOc=
Subject key identifier: DE:61:C8:0F:1F:76:6E:89:5F:2C:09:23:EF:79:04:98:23:CF:A0:7C
Authority key identifier: 53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB
Certificate issuer: /CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb
Certificate serial: 019A006C1D13641F0601322EB012F1C7E6B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
Manifest number: 0B47
Signing time: Mon 20 Oct 2025 07:01:16 +0000
Manifest this update: Mon 20 Oct 2025 07:01:16 +0000
Manifest next update: Tue 21 Oct 2025 07:01:16 +0000
Files and hashes: 1: GBm75ZmZioJB2ocCMhAt7gwcAjo.roa (hash: gsh5fLNtNPH78sBeeVxRzXrv6jA9hVTz/xvnQZtNCkc=)
2: U1UECuknhr8XJ7a07MEJO4p0Aes.crl (hash: hJf8gklXwpGFw2jxM9bFUQxDu/0EJ1eSoUHxfZ4pw5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 07:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:1d:13:64:1f:06:01:32:2e:b0:12:f1:c7:e6:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5355040ae92786bf1727b6b4ecc1093b8a7401eb
Validity
Not Before: Oct 20 07:01:16 2025 GMT
Not After : Oct 21 07:01:16 2025 GMT
Subject: CN=de61c80f1f766e895f2c0923ef79049823cfa07c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:55:03:ae:e0:25:41:7a:b7:cd:57:3c:ee:3a:
88:55:bf:e8:08:7c:ab:0e:c0:71:b3:67:2f:3d:79:
19:c9:c3:af:7c:6e:06:c3:2e:ea:5d:e0:f7:7f:06:
ce:45:74:35:1e:d0:61:74:f9:75:8a:a9:02:bf:1e:
5e:96:f3:b4:37:18:85:28:6f:73:a6:7d:52:48:b9:
4b:f7:08:81:23:3e:ff:e4:b2:9a:ce:56:da:5e:29:
37:02:03:53:34:a0:c3:09:4c:cb:f4:d1:17:cc:3d:
4b:40:e6:ef:f7:34:0e:82:27:7f:d1:14:dc:5f:7a:
47:5d:31:72:a6:cb:e5:13:aa:de:cc:81:f4:04:ed:
4e:6f:d6:82:5b:1b:61:ed:ff:40:bb:08:c8:5a:a4:
b3:f7:0d:b1:bc:f1:71:1c:5c:78:d0:a2:74:82:fe:
3c:b7:a3:02:da:20:2d:a2:5a:5b:eb:db:e5:fe:9f:
b3:ec:cb:39:26:b8:e5:45:2a:9e:f3:57:f0:8c:cd:
6e:8e:0f:8f:3d:64:e5:52:e1:21:e0:8a:bd:ca:17:
24:28:8c:4b:8e:b9:73:1b:0c:27:95:c9:db:27:5d:
9b:90:11:9f:1f:81:fe:6d:7c:22:8a:d1:dc:bc:99:
e5:88:4d:46:07:b8:18:94:9c:e4:37:a4:aa:89:93:
a5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:61:C8:0F:1F:76:6E:89:5F:2C:09:23:EF:79:04:98:23:CF:A0:7C
X509v3 Authority Key Identifier:
keyid:53:55:04:0A:E9:27:86:BF:17:27:B6:B4:EC:C1:09:3B:8A:74:01:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1UECuknhr8XJ7a07MEJO4p0Aes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/af5657-c8b2-4855-82a7-1dd57e3f3d97/1/U1UECuknhr8XJ7a07MEJO4p0Aes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:86:9e:b4:74:7f:26:b2:fd:1b:ea:ab:31:22:a5:e8:35:c7:
19:85:74:c3:fb:3c:8a:43:f3:bf:23:10:67:78:dc:86:40:ca:
8f:01:a7:a3:53:1f:5c:3c:5e:6b:f7:e8:43:88:f2:3c:04:52:
48:9e:85:0c:f8:00:f5:f7:0f:28:82:ea:4b:30:e7:53:d0:5f:
5c:ab:2b:de:23:5f:62:d9:1a:b6:a6:b5:ab:cd:20:c2:2e:90:
86:cb:6f:c7:fa:b2:a0:48:5b:c0:09:77:e7:ee:8d:9b:02:4f:
91:8b:b4:ea:c3:bc:69:31:29:28:fa:31:9a:27:b1:60:c5:00:
f5:0e:fa:86:b1:b2:a5:e5:ab:71:cf:78:b8:07:e0:79:a3:ad:
64:f2:05:4f:10:89:af:81:82:32:59:25:7d:d3:95:95:1f:00:
6a:7e:d1:eb:ab:75:8c:cb:39:24:b5:bc:9b:a4:bd:40:15:65:
a9:b4:11:86:27:90:1e:4d:6f:5c:9e:e1:46:c7:49:c7:26:e6:
14:16:c6:f9:46:d4:03:2c:c0:d0:fe:a8:ba:62:f1:b8:f5:ee:
9a:df:4c:8b:54:66:f3:06:60:ca:9f:4a:d2:b0:82:54:50:05:
ef:a6:57:18:60:05:66:52:89:d4:a6:c5:de:57:dd:d8:fb:81:
31:48:18:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:06:04 2025 by rpki-client