Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json)
Hash identifier: /m6dVwg++pTc+Jc7f+V4bej6BpN5ikgkG2bpVN5avEc=
Subject key identifier: B9:7E:A6:FB:9C:AE:5A:59:DB:80:84:50:37:EF:92:DE:2C:F9:9A:4C
Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Certificate serial: 019A251CC948B70F763BBF7C7233C7E37794
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
Manifest number: 16F9
Signing time: Mon 27 Oct 2025 10:00:34 +0000
Manifest this update: Mon 27 Oct 2025 10:00:34 +0000
Manifest next update: Tue 28 Oct 2025 10:00:34 +0000
Files and hashes: 1: ECD7apX3eHOOfrh7KlF7PFjYZG4.roa (hash: 71V9g38SO7JBAaQym2ThymDLgJtxxyPJi6oj0bVn0zY=)
2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: dFMFzwfGTmxxeVfIM2m28sA0vFSqiAGXZR63jhkR8OY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:1c:c9:48:b7:0f:76:3b:bf:7c:72:33:c7:e3:77:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f
Validity
Not Before: Oct 27 10:00:34 2025 GMT
Not After : Oct 28 10:00:34 2025 GMT
Subject: CN=b97ea6fb9cae5a59db80845037ef92de2cf99a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fc:e0:a8:c3:f4:e7:b4:d0:dc:db:ef:71:03:
9a:a3:27:dd:4c:e4:f5:89:b1:36:a8:8c:2f:f8:19:
a3:c4:30:87:d9:69:48:78:d4:80:32:6f:83:a0:1d:
fb:f1:b0:54:09:47:27:af:6a:37:ed:af:42:45:12:
c5:43:6a:7e:59:f7:7a:88:3c:2d:1d:14:c1:d3:17:
2f:9d:a7:6f:5a:43:be:37:b8:4c:3c:9a:82:14:64:
7b:1c:10:5e:7f:4a:1f:c0:48:a2:62:c0:e1:59:7c:
d8:f5:1e:eb:9a:c1:32:2d:f1:2b:f2:28:31:49:a5:
a5:4d:52:99:79:13:97:d8:74:99:d2:33:13:44:c0:
09:30:c9:c7:98:26:00:f5:cf:de:23:ca:c5:93:1d:
c3:95:0d:8b:db:18:c4:cd:b4:87:ec:57:93:f7:7c:
bb:39:99:c7:86:4a:90:8d:2b:9d:62:ec:4c:f7:4d:
8a:fd:b7:9b:b2:92:9c:c1:56:43:43:da:f3:44:c7:
ef:a5:52:75:5b:ad:a0:0f:53:fb:18:37:5c:97:fe:
18:c7:ca:99:22:ec:7d:6c:f1:a4:1e:04:d5:41:b6:
2a:ab:5e:62:8f:20:cb:93:c4:d9:bd:a5:3d:90:50:
e9:65:8b:db:6c:b1:5a:23:dd:47:e3:a3:29:a5:88:
c6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7E:A6:FB:9C:AE:5A:59:DB:80:84:50:37:EF:92:DE:2C:F9:9A:4C
X509v3 Authority Key Identifier:
keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:5b:1e:a0:36:5c:ac:a2:e7:b3:a8:fb:5b:dc:dc:f7:59:a1:
65:a6:ec:c2:1d:84:bb:a4:aa:7a:ce:37:b2:05:69:38:ed:0c:
70:1b:a9:17:94:0a:45:7b:66:da:16:8d:6e:47:38:4f:3b:6f:
3a:29:5e:a5:9e:2a:70:a6:4f:eb:e2:b6:1c:7a:90:8d:13:62:
65:01:ba:e4:b5:a0:0f:5e:e9:c2:f6:75:57:ea:16:9a:93:13:
16:96:0a:85:19:c0:56:d3:24:a5:a5:2c:40:46:0b:56:2f:fb:
80:66:f1:37:70:aa:22:2a:41:52:05:96:f6:2d:a0:fb:2f:b1:
08:54:32:09:a2:63:ff:f9:cb:e2:15:66:6b:45:ad:85:11:f6:
09:67:b1:69:5a:56:51:f7:3e:08:c9:56:89:1d:73:34:61:a0:
22:b8:f3:a4:ba:8c:ec:05:f5:cc:bb:b0:42:47:ad:49:5d:2d:
ad:fe:cf:6f:41:a1:19:d8:b8:a6:7d:11:86:6b:63:a1:01:9a:
a8:d1:0a:aa:49:81:af:c5:1c:41:bd:8d:12:f6:87:2b:db:41:
94:b3:3b:8a:b5:2e:68:21:35:32:7f:a9:d1:46:83:ea:42:c7:
6a:a0:17:2f:b0:2a:08:84:0e:ad:44:ab:3f:58:0b:1b:b5:e3:
ae:e7:42:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:32:06 2025 by rpki-client