Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
File: U8DiB45PPrpfh5UD_dgJw4O7dig.mft (raw, json)
Hash identifier: a/62HAIyVzfyuqaoaAmPJXzKNn7/8TZhWInWIVZopKE=
Subject key identifier: 2E:E5:FD:C3:A3:E8:D5:25:63:81:D5:61:FF:81:C6:38:7B:B1:63:23
Authority key identifier: 53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
Certificate issuer: /CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Certificate serial: 019A4B85774FF63821781F7D42DC44F9114D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
Manifest number: 1108
Signing time: Mon 03 Nov 2025 21:00:29 +0000
Manifest this update: Mon 03 Nov 2025 21:00:29 +0000
Manifest next update: Tue 04 Nov 2025 21:00:29 +0000
Files and hashes: 1: U8DiB45PPrpfh5UD_dgJw4O7dig.crl (hash: RUBQqidplZ85XUhH0OClemB4e/R1iOLiQbOpqKyc0tE=)
2: XOqVL4Qlgd2qj_R2o35sDNSHJkw.roa (hash: Vhjo7o5u3C511AphXSnY5EBALpIpM0HGnrEGYenlVkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 04 Nov 2025 20:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4b:85:77:4f:f6:38:21:78:1f:7d:42:dc:44:f9:11:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Validity
Not Before: Nov 3 21:00:29 2025 GMT
Not After : Nov 4 21:00:29 2025 GMT
Subject: CN=2ee5fdc3a3e8d5256381d561ff81c6387bb16323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9f:5c:4b:3d:d0:c2:72:8d:2b:d5:66:a8:5d:
54:47:1f:52:15:b7:1c:3d:27:a0:87:d7:19:d8:22:
11:74:69:65:14:3c:46:53:d9:33:36:b6:45:e8:17:
7a:08:ce:f9:0a:8b:ba:0d:16:4f:27:1d:dc:be:7b:
66:a1:f7:28:f2:4a:59:2e:0b:7c:5a:d4:c6:3b:97:
6a:a8:6c:9e:33:5e:9d:14:1a:77:cc:20:fe:94:c2:
43:b3:bc:a4:ef:1e:3c:f0:17:81:ce:bb:4c:31:18:
49:1c:66:76:c2:14:3a:10:90:24:28:63:62:ef:ca:
e8:e1:86:6d:b7:29:4c:1f:60:c1:98:1a:5b:4b:26:
0c:5a:eb:51:e2:7e:af:e5:bf:13:cd:67:c9:e0:b1:
99:b2:10:16:55:b5:81:12:3a:61:89:77:1b:20:cb:
d6:de:3f:a4:c8:4e:36:03:cf:af:a5:63:c0:94:b2:
ed:51:4f:c1:b9:62:c0:3e:dc:59:f2:5d:db:cf:1a:
cc:ce:89:0f:10:53:6d:69:04:5e:41:74:b5:16:47:
49:c9:b7:fd:a0:2a:64:9c:3f:79:f8:da:b1:6e:a8:
b0:cf:f3:9e:fb:a4:c5:a2:1f:89:9f:6a:9f:a7:64:
36:c9:99:33:94:f9:10:e2:ea:ea:12:69:6c:df:ef:
ea:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E5:FD:C3:A3:E8:D5:25:63:81:D5:61:FF:81:C6:38:7B:B1:63:23
X509v3 Authority Key Identifier:
keyid:53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:fa:b9:48:1c:36:40:a4:ce:0c:38:66:43:23:37:e1:ff:d4:
a6:ca:55:39:46:a6:3e:f4:6f:57:88:0a:86:55:ef:39:b3:94:
b4:68:58:08:1b:91:c3:a4:fe:e5:bd:a6:a2:7e:19:59:a7:75:
b8:2f:32:f2:79:37:39:35:2b:9c:02:62:55:6b:87:af:bc:4b:
f4:fb:ce:31:cf:79:a8:d0:2b:c8:4f:c5:66:74:17:aa:82:cc:
3e:aa:c8:ae:5b:a9:0a:88:bf:e2:21:00:84:92:36:56:80:e9:
77:57:cd:3f:da:c8:b3:f2:f4:c3:ca:1c:5e:84:9b:8b:70:f4:
b8:e5:ae:40:5d:5a:55:28:d2:c7:9a:3e:40:25:f9:c1:a4:ae:
04:fe:c0:6d:8b:48:d1:cf:01:99:9f:20:fa:8c:64:0d:8f:5d:
37:fa:d5:c9:48:40:c7:9e:6f:fc:c0:59:3a:36:ad:82:e4:27:
02:fe:3d:da:f7:e3:06:03:c2:12:6c:be:24:5b:b9:76:1f:8b:
ab:80:20:b5:4f:49:da:6d:b1:83:6c:a2:e6:13:a8:96:d3:05:
cb:09:3e:64:97:a1:97:34:15:64:da:1c:17:49:97:e6:8e:b8:
90:c5:5b:a1:9c:57:d6:8d:67:81:c6:15:b2:55:ed:c9:25:c9:
77:f9:15:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 04:00:48 2025 by rpki-client