Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
File: U9qZ-TUY4pqUWwf2ChjvhumznmU.mft (raw, json)
Hash identifier: T+p91yppRgfWyr9Ed3R2pnkpzTiWykNslWVLBqMEpNo=
Subject key identifier: 97:1C:79:D4:82:4A:95:1C:81:49:B0:8F:BA:BB:0B:66:1F:71:90:AD
Authority key identifier: 53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
Certificate issuer: /CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Certificate serial: 019A725C91476F0286E71D894A03AC385742
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
Manifest number: 1463
Signing time: Tue 11 Nov 2025 10:01:00 +0000
Manifest this update: Tue 11 Nov 2025 10:01:00 +0000
Manifest next update: Wed 12 Nov 2025 10:01:00 +0000
Files and hashes: 1: U9qZ-TUY4pqUWwf2ChjvhumznmU.crl (hash: UOCG3lzq97lFqYVIiq5V4/df843pqqZWlijPtYKvwRw=)
2: p1W2xtpypFZeS4V60u-1DjDqTds.roa (hash: 34oWoq20u1/mqtBm1kWh1Zu5DKZerBQ57c/ZC8RMnIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:91:47:6f:02:86:e7:1d:89:4a:03:ac:38:57:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Validity
Not Before: Nov 11 10:01:00 2025 GMT
Not After : Nov 12 10:01:00 2025 GMT
Subject: CN=971c79d4824a951c8149b08fbabb0b661f7190ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:6a:71:1e:3f:84:18:c4:ad:98:83:99:34:
dd:06:ab:34:a4:f6:25:fc:70:c3:5c:8c:3c:fb:17:
05:3c:05:d7:62:08:b0:07:4b:d3:40:38:8f:3a:0f:
a1:f0:d1:8f:b2:ea:98:de:de:ff:15:b5:b0:57:91:
c9:4b:d1:bd:64:d6:8b:35:06:d1:50:a5:2a:92:0d:
ff:6e:64:44:ee:c9:86:0d:86:be:d2:22:a6:e5:8a:
7d:1e:34:64:c3:ec:37:3f:10:25:ea:3e:1c:05:44:
ec:9f:5a:89:bc:b9:b3:fb:e8:b7:95:92:92:3d:3e:
35:88:3d:4a:a5:36:22:86:44:c8:7b:53:23:ba:17:
f4:58:bd:22:15:00:4e:0e:e5:73:b9:d7:10:93:4c:
8f:41:4c:62:1d:b0:3d:38:00:86:64:c7:8a:ec:b2:
c7:b2:3d:4b:26:39:bc:f5:7b:25:21:83:14:dd:55:
89:d5:cc:e7:39:cf:e6:83:d2:02:0e:11:ce:f3:cb:
15:6e:0d:17:3e:8a:7f:f2:1a:29:8f:d9:e4:20:f9:
61:00:33:b4:87:a0:58:a5:16:23:26:6b:b3:5d:f0:
d4:14:a2:e4:84:c5:08:4c:8b:11:0c:6c:7f:9c:2e:
01:2d:7a:3c:7c:51:17:2a:61:82:0a:d0:b6:28:60:
25:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1C:79:D4:82:4A:95:1C:81:49:B0:8F:BA:BB:0B:66:1F:71:90:AD
X509v3 Authority Key Identifier:
keyid:53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:7d:60:68:61:fd:73:af:43:16:52:14:70:3d:e7:d9:a0:dc:
7b:ae:09:9f:dd:61:38:47:33:91:93:5e:ca:72:7b:7c:38:e9:
24:55:ca:a0:db:81:f6:15:a8:e4:4a:86:07:8b:80:14:6c:cf:
a4:f7:a3:2b:d6:54:39:e6:99:f2:b5:63:1c:b3:c8:8f:38:7e:
20:24:26:3b:80:d0:db:dd:09:e1:58:fc:9f:7d:29:d3:ee:d5:
f6:a5:4d:cb:f2:92:a4:94:31:f0:10:90:f5:f4:22:79:de:6b:
fe:a9:d7:d4:e5:ff:cb:88:ba:3a:5a:89:d4:76:31:aa:c8:84:
e3:a7:3a:85:10:1c:d7:bb:82:f2:f3:46:d8:c7:d9:1f:7c:2e:
fa:1f:e6:f6:91:e3:cd:ce:fd:22:ec:e0:17:34:6e:b0:9c:1f:
ca:23:85:91:e6:08:ed:fd:eb:86:c1:b1:57:4f:1a:c9:65:6d:
99:ee:85:e7:f6:02:e0:b6:36:0d:eb:84:91:56:48:1c:bd:e7:
3e:04:5d:bc:78:a8:d3:4c:0e:bc:d1:f3:57:7f:7c:6d:56:36:
85:4d:f3:3a:2a:a3:a9:71:3c:c1:9d:35:a8:74:51:02:bb:a1:
fe:5c:d5:f0:58:e5:81:88:ed:14:5e:35:b7:de:ea:59:b9:53:
90:74:c5:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:16:11 2025 by rpki-client