Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
File: 53OfCEQuIkRmIbiaV2ObNUK6NNw.mft (raw, json)
Hash identifier: PMmCCGT54JHjrYM29N9tbJYU7DpYJZ0haUGiE0Yr5lw=
Subject key identifier: 8E:A4:D6:E8:DB:8B:36:FE:CC:DE:00:AD:3A:84:1D:3B:55:C3:F7:AC
Authority key identifier: E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
Certificate issuer: /CN=e7739f08442e22446621b89a57639b3542ba34dc
Certificate serial: 019923A0EAF11FF0A703A13C55FA0CABF828
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
Manifest number: 048F
Signing time: Sun 07 Sep 2025 10:02:52 +0000
Manifest this update: Sun 07 Sep 2025 10:02:52 +0000
Manifest next update: Mon 08 Sep 2025 10:02:52 +0000
Files and hashes: 1: 53OfCEQuIkRmIbiaV2ObNUK6NNw.crl (hash: YVOZbKGamcuTtWkSKsFTgxAi+HNg6npbrS+Jr1IAX4c=)
2: ynJSD2xc-CykfYa79BP9jQj40kM.roa (hash: fMb/laTqYN39Vwte4hGLXjRHIufJPIqxfdcZimxGcGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:ea:f1:1f:f0:a7:03:a1:3c:55:fa:0c:ab:f8:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7739f08442e22446621b89a57639b3542ba34dc
Validity
Not Before: Sep 7 10:02:52 2025 GMT
Not After : Sep 8 10:02:52 2025 GMT
Subject: CN=8ea4d6e8db8b36feccde00ad3a841d3b55c3f7ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:49:bf:65:43:8b:82:f1:4b:aa:8e:5e:65:84:
0d:97:8a:cc:2f:56:98:7b:a9:f6:b8:ac:da:f0:da:
d3:b8:a2:79:96:f9:4a:f5:21:9d:5c:05:00:7a:ff:
83:cc:71:f4:11:3d:0e:bc:d1:73:4d:91:e1:1a:33:
f9:f1:97:37:dc:45:70:41:5d:31:a0:56:eb:c5:ed:
10:07:71:1d:6d:b6:61:61:52:89:4d:52:85:64:e1:
37:ea:ca:90:cf:3e:8e:22:bc:6d:87:c7:19:6e:c3:
ba:c2:50:09:8a:a3:ee:8a:86:90:cc:bb:f8:7b:2f:
f6:27:b7:4f:f6:02:18:7d:26:4e:e0:ca:4b:83:85:
d7:b7:d0:24:78:d7:8f:ce:29:9a:65:b6:81:c5:6e:
32:02:9b:ac:ba:93:5e:2c:51:60:8c:00:c2:51:3a:
f2:8d:42:4b:7b:59:22:ab:6b:36:02:32:e7:52:4c:
98:50:50:de:61:e1:ac:81:15:06:a3:d2:e2:65:14:
a7:c9:a7:30:95:36:e9:c2:c8:3b:84:d6:9c:3b:09:
f5:5e:69:65:ed:72:62:e7:e4:79:52:46:11:7a:5c:
0a:d6:30:68:9d:a4:18:f1:bf:9b:38:58:29:ba:38:
40:4c:a6:16:3a:f5:01:44:41:12:00:09:2c:fd:87:
04:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A4:D6:E8:DB:8B:36:FE:CC:DE:00:AD:3A:84:1D:3B:55:C3:F7:AC
X509v3 Authority Key Identifier:
keyid:E7:73:9F:08:44:2E:22:44:66:21:B8:9A:57:63:9B:35:42:BA:34:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53OfCEQuIkRmIbiaV2ObNUK6NNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e20d59-4454-4ec8-9677-5f2bf22e189d/1/53OfCEQuIkRmIbiaV2ObNUK6NNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:6b:b2:88:22:cb:6b:27:c8:02:7e:7e:25:8f:3d:73:a2:a4:
11:ce:d7:36:59:3d:98:eb:cc:08:0a:ba:2c:e2:1c:f5:5c:37:
1f:c0:b4:fa:ad:ad:6c:ea:a9:e5:3c:8e:4d:75:fe:fc:ba:c7:
22:48:d6:c3:8f:39:62:fa:0e:18:43:82:eb:55:14:70:04:50:
ca:96:81:7b:18:1f:5f:0b:50:f2:ed:5e:1c:d7:fe:fd:76:ed:
44:ac:0c:ee:ae:3c:aa:d8:ca:2d:c4:e1:38:40:2a:0d:9e:07:
48:02:e4:ba:a2:a6:4e:c1:b7:de:6a:5a:36:19:e5:96:ce:52:
fc:fd:86:c0:b8:fd:dc:ad:a9:9c:52:31:62:64:b3:20:8f:62:
26:e5:14:1a:a8:05:62:4e:a4:4b:3e:ed:0e:74:2c:aa:a9:3d:
bb:3d:06:fc:7b:0c:e5:6e:ce:f8:0a:13:47:94:d4:b0:71:1c:
26:2b:bf:fc:a4:28:97:00:8f:48:92:9a:e1:75:dc:bb:fe:e2:
01:ef:08:43:06:14:b4:29:d2:ee:bf:35:7a:6a:e3:50:0d:c5:
69:fa:42:97:c1:d2:56:be:3f:ac:d2:99:25:e6:4b:6d:fd:65:
7c:a2:bc:89:1d:70:f8:be:4b:fb:55:4c:88:81:07:a8:56:9d:
27:de:2c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:35:55 2025 by rpki-client