Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
File: U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft (raw, json)
Hash identifier: bjetqHvYoN3lGCoeFidEWU/Ou1O2/wo7iE9aIKMEUEs=
Subject key identifier: E9:F4:CC:30:3E:AC:14:98:11:0A:D6:A1:1F:2A:E2:F5:03:B4:9B:FF
Authority key identifier: 53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
Certificate issuer: /CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Certificate serial: 019A22F7A74DEA365B784DC30FF3BE7BC10E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
Manifest number: 0783
Signing time: Mon 27 Oct 2025 00:00:46 +0000
Manifest this update: Mon 27 Oct 2025 00:00:46 +0000
Manifest next update: Tue 28 Oct 2025 00:00:46 +0000
Files and hashes: 1: U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl (hash: qM5VHySkgZyq7f6OM+iYfycFXE0njze7pWk+SJ5/AKo=)
2: kDLhfcy8YHG9d7r3ZyKyTCN67dU.roa (hash: FHssmQ805uZ/Wtb94rUn/bLQZUQ10hPffXrOYDXFnpE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:f7:a7:4d:ea:36:5b:78:4d:c3:0f:f3:be:7b:c1:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Validity
Not Before: Oct 27 00:00:46 2025 GMT
Not After : Oct 28 00:00:46 2025 GMT
Subject: CN=e9f4cc303eac1498110ad6a11f2ae2f503b49bff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e6:6b:27:73:f4:b7:88:69:c3:f8:4a:a8:23:
e5:f4:14:8c:a4:4c:c9:23:b8:24:8d:44:e7:96:8f:
32:c6:9a:a4:86:87:16:5d:dd:42:dc:ba:11:2f:8a:
28:7d:80:99:d6:44:c0:13:11:62:5d:7e:34:da:5b:
92:41:8a:c7:0d:04:79:5c:82:4b:bd:c8:98:9f:cb:
f1:06:b3:69:c2:6e:ae:ae:20:43:02:8b:23:f3:f1:
83:33:98:ce:7d:8f:5d:dc:12:58:09:22:86:ff:8d:
49:14:a4:fe:bd:f8:76:38:7b:cd:6d:bf:57:54:53:
bd:79:23:fb:2d:7a:28:10:4c:4a:b4:a8:54:84:91:
fd:6f:32:b3:95:d3:80:ac:90:e9:5e:75:0d:35:05:
4c:a6:68:d1:c3:e4:c3:4e:28:fe:7c:e4:58:26:c6:
02:8f:8d:e5:c6:30:25:e3:90:fd:d7:a5:66:bb:93:
53:48:20:17:5f:00:b4:a9:34:59:64:22:66:8c:7a:
1a:be:75:ef:f0:8c:c2:99:de:c6:48:81:c9:23:0a:
67:f7:8c:ec:f8:20:82:bd:11:2c:7e:12:e4:d6:74:
45:c2:9d:ae:ed:c1:44:90:96:ef:a5:88:33:74:f8:
aa:d0:31:85:75:1c:55:5a:24:40:b9:95:97:e7:1d:
79:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F4:CC:30:3E:AC:14:98:11:0A:D6:A1:1F:2A:E2:F5:03:B4:9B:FF
X509v3 Authority Key Identifier:
keyid:53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:e0:ea:3f:9c:56:24:18:28:a8:0e:43:f7:b5:49:c2:db:d4:
7d:5f:9a:29:43:2c:13:97:2c:84:b4:36:1f:25:4d:39:84:ad:
0a:3f:14:a6:4d:8d:78:8f:d3:46:81:b0:3c:5c:44:59:3b:2c:
ec:c1:44:27:d1:ee:42:e2:0a:5f:1e:ef:75:44:8d:6d:0f:87:
c9:d4:b3:b4:98:45:1c:73:d5:ff:71:a9:11:b4:fe:1d:6d:53:
43:d4:fe:b6:ea:32:8d:70:ee:af:96:92:dd:44:00:48:d2:99:
d9:39:02:03:ca:ce:1a:9a:d0:ae:68:0f:0d:30:8f:ce:00:74:
9d:3f:1f:36:bf:d0:61:ff:ba:f0:8b:bb:39:e8:d7:61:21:06:
e2:87:71:31:9e:b4:10:0b:97:a4:58:cf:96:04:92:fd:20:10:
e6:4e:94:0c:08:bc:ef:47:51:1a:e6:dd:f2:4d:cf:74:7f:35:
3b:56:ba:48:57:bc:ce:ef:c4:81:c9:12:9a:4c:33:d9:a5:6f:
99:29:68:d3:3d:7e:51:5b:b1:7a:4d:53:54:50:de:75:c5:a7:
48:cb:17:82:ef:7e:de:c1:51:62:bf:45:b2:dc:29:d3:5a:73:
bb:c6:06:ba:58:5a:76:9a:e4:b9:06:33:fb:1a:f6:31:0f:82:
3a:5d:d2:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 02:08:53 2025 by rpki-client