Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
File: U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft (raw, json)
Hash identifier: 5otxkUhr8a9Q18agXZdn12vf5bn1fwOw5I/L3E3ampg=
Subject key identifier: EF:7E:96:13:62:0F:5C:7A:65:CD:72:61:E5:D0:4D:6E:E3:C9:3F:DD
Authority key identifier: 53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
Certificate issuer: /CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Certificate serial: 01992DB575F7E0C6351148AC29FB27F186D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
Manifest number: 0704
Signing time: Tue 09 Sep 2025 09:01:30 +0000
Manifest this update: Tue 09 Sep 2025 09:01:30 +0000
Manifest next update: Wed 10 Sep 2025 09:01:30 +0000
Files and hashes: 1: U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl (hash: /bIxxycvriGYRozx7wmAVB/JZGgsittdYtNM2DDBYLs=)
2: kDLhfcy8YHG9d7r3ZyKyTCN67dU.roa (hash: FHssmQ805uZ/Wtb94rUn/bLQZUQ10hPffXrOYDXFnpE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 09:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:b5:75:f7:e0:c6:35:11:48:ac:29:fb:27:f1:86:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Validity
Not Before: Sep 9 09:01:30 2025 GMT
Not After : Sep 10 09:01:30 2025 GMT
Subject: CN=ef7e9613620f5c7a65cd7261e5d04d6ee3c93fdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4c:e5:7f:15:f1:d7:9c:e7:95:84:31:43:ac:
60:b7:da:ff:bd:77:ca:99:a0:01:a5:39:a4:18:db:
74:d5:5a:9b:d0:fc:f0:85:11:77:70:b8:1c:f8:c4:
73:79:c2:66:d0:b3:a1:17:e8:a6:90:47:bc:cf:05:
25:52:6d:ec:1d:03:f8:dd:ad:f7:7a:25:10:19:11:
56:53:4b:d2:1a:7b:eb:4b:20:91:77:bd:8c:08:fc:
d3:94:4c:97:69:a5:b7:c8:3e:0d:c2:35:79:8b:fc:
d5:e1:60:6b:2c:d4:f7:79:05:43:d3:19:de:df:83:
29:38:3c:26:1d:1f:cf:af:60:80:e3:30:a1:16:e4:
58:bd:4c:bf:6b:0a:0f:25:42:9c:75:1a:9b:ee:ad:
83:a7:15:18:fe:22:21:8b:f8:1c:17:84:a0:05:91:
01:68:09:e5:e8:3f:4b:f3:cd:84:ad:9d:da:1c:69:
a3:cc:54:18:0b:4c:79:d0:d5:2e:8a:5f:42:74:d7:
40:1c:8b:67:e5:c8:a1:f4:ac:a1:26:5e:95:cb:59:
02:dd:f1:ff:73:81:2f:5d:24:61:af:da:c1:ee:b6:
86:ea:0e:26:94:cd:fc:e0:25:ff:60:ec:3f:a7:61:
dc:a4:de:2b:d8:8c:40:28:f5:51:68:5b:9e:ff:69:
80:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:7E:96:13:62:0F:5C:7A:65:CD:72:61:E5:D0:4D:6E:E3:C9:3F:DD
X509v3 Authority Key Identifier:
keyid:53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f3:f8:14:75:80:78:17:c2:00:8d:f3:da:dc:69:a2:96:63:
71:5d:b6:66:c6:61:13:28:f6:ef:1f:47:52:72:c8:2c:bb:56:
53:bd:12:b7:ac:33:9f:ed:19:98:c1:94:77:7b:2a:ba:84:bd:
f6:4e:01:cb:8c:c1:00:12:cc:c6:6c:37:a7:52:6e:e8:44:09:
ba:d2:77:b4:b6:a3:55:a7:ed:26:55:4e:4e:0a:7b:bc:84:00:
b0:36:42:22:39:83:b6:f5:ff:c4:ef:86:2b:51:0f:5f:e1:9b:
f2:3c:0c:6a:8b:c4:a3:4b:42:fa:ac:59:f7:02:00:c9:67:ce:
f3:41:15:84:20:72:a0:9a:5b:6e:4d:e3:9a:3e:1e:0d:0a:7f:
03:f3:34:7b:31:a1:7b:89:71:2a:82:87:92:2f:13:3f:09:58:
64:74:59:99:0e:39:5b:c8:4b:8d:d7:1e:72:1c:9f:70:09:e2:
b6:61:02:e5:ef:88:6a:73:92:98:18:9c:d7:9c:55:54:d7:59:
02:16:db:61:90:4e:3a:eb:76:cd:9a:3e:58:ba:9a:55:01:c4:
84:1e:d6:52:8d:97:a2:27:35:97:85:53:4e:14:2f:42:99:4c:
e0:8e:60:ea:a5:40:8e:75:df:9f:db:4a:d5:14:3e:40:d1:2b:
08:c4:e8:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 18:29:35 2025 by rpki-client