Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
File: U7EFBlwNkTm1_-3DLJAM9ktDEus.mft (raw, json)
Hash identifier: xoo2Cv8oPEpk7pXF9o2H/CTDEFOJPghAbsxLxpSATgI=
Subject key identifier: 36:91:8F:8D:0B:55:56:C9:DD:56:5A:37:1C:53:29:7D:E5:6D:E4:4C
Authority key identifier: 53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
Certificate issuer: /CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Certificate serial: 019936EF098CA105A189151DE72D379F0FD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
Manifest number: 167B
Signing time: Thu 11 Sep 2025 04:00:59 +0000
Manifest this update: Thu 11 Sep 2025 04:00:59 +0000
Manifest next update: Fri 12 Sep 2025 04:00:59 +0000
Files and hashes: 1: U7EFBlwNkTm1_-3DLJAM9ktDEus.crl (hash: ZCmB9a9h+qa4BC3pnfKyTSwH0MZg2ABck2qjM8emIlc=)
2: dXA2sXCeF-zEI-_J4kU7kczSGDo.roa (hash: yLUH5uzp/Ib7vlJR5HEnjKQN0s3hZM+CwSBPhsePj6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:ef:09:8c:a1:05:a1:89:15:1d:e7:2d:37:9f:0f:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b105065c0d9139b5ffedc32c900cf64b4312eb
Validity
Not Before: Sep 11 04:00:59 2025 GMT
Not After : Sep 12 04:00:59 2025 GMT
Subject: CN=36918f8d0b5556c9dd565a371c53297de56de44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2c:5f:a3:4c:4e:88:d6:f2:e5:0a:80:3e:c3:
fe:01:d6:1a:4a:69:cc:85:36:67:75:9e:59:b5:66:
8c:53:6d:61:17:76:68:58:ef:cf:2c:4d:91:b0:59:
34:07:61:38:7f:90:c7:38:27:5b:98:b0:15:5b:6b:
4b:6e:96:d3:68:ff:31:76:9d:72:35:1c:4c:e2:af:
ad:33:ef:02:a3:ee:f8:df:4d:a1:63:ea:bd:70:ac:
e4:a7:3e:02:88:d1:71:09:43:c2:cd:0b:07:9d:41:
d5:ab:01:22:6f:43:34:bc:f6:f5:1f:22:00:09:d2:
1c:b9:15:5c:22:11:b8:31:b6:02:40:da:3a:14:8c:
ba:8d:dc:8e:44:be:b1:7a:0f:43:51:38:08:92:c1:
b2:68:50:92:9d:af:2e:3b:87:44:db:22:e4:60:dd:
87:a8:08:2c:46:bb:da:09:6b:d8:d2:60:35:5e:94:
de:c1:cc:cf:d6:1b:f9:b8:f6:4d:30:9a:bf:44:1a:
62:0a:fe:7b:1e:48:fb:50:c9:cf:15:e0:4e:17:98:
87:30:36:df:43:3a:d4:3a:27:4c:d9:1d:e5:ce:50:
d0:0b:d6:79:5c:a3:2b:72:f9:fb:8b:d4:7d:7f:1a:
2e:02:43:82:aa:81:05:48:a8:44:79:83:c1:2c:47:
50:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:91:8F:8D:0B:55:56:C9:DD:56:5A:37:1C:53:29:7D:E5:6D:E4:4C
X509v3 Authority Key Identifier:
keyid:53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:57:d2:00:87:74:38:f6:74:bb:43:22:0d:61:55:67:80:db:
5e:25:44:e1:3a:cb:91:b2:b4:c8:0e:ea:79:77:40:fe:68:14:
aa:59:01:9b:06:44:c6:c5:87:cb:f0:d6:72:44:3e:b1:3b:e6:
90:ce:e6:51:45:11:15:e6:79:46:74:ba:c4:e5:1b:17:40:d8:
72:00:ce:c5:fd:f5:43:e5:39:13:d8:5c:b8:cd:09:f1:ef:7f:
c2:46:aa:dd:31:91:67:7a:56:79:29:b7:fd:af:66:65:15:43:
e5:16:67:96:37:d0:97:36:4e:fd:37:03:c0:02:b6:e9:1c:6e:
e4:65:af:21:c5:ea:fc:d8:16:6c:65:23:6c:15:33:f4:9d:e2:
7f:d8:c9:06:9d:07:58:6c:a4:ea:91:be:cd:0c:6c:7c:aa:a9:
0f:50:94:27:ff:23:73:f7:d4:57:8f:32:bd:e1:96:2b:95:25:
21:6a:44:92:71:87:07:f1:ef:bc:51:eb:24:75:4e:8c:3f:f9:
14:48:b3:a8:75:47:c6:34:ba:d3:d0:04:6a:63:d1:8a:4d:15:
9f:09:2f:33:2b:38:de:64:2f:c8:13:c0:d5:c1:da:95:03:f8:
8d:19:10:49:c5:a5:f9:3c:93:2f:ac:2e:ae:49:79:57:0d:9b:
8f:49:ba:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 11:25:20 2025 by rpki-client