Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
File: U3h815RuENiGRqx53lfMbsWeQTI.mft (raw, json)
Hash identifier: a3vT6F1HXwCZdPsSkYQFrN3dHtwpGLqBzQdsGjHWimY=
Subject key identifier: C1:4C:80:B1:14:22:9E:AA:C6:C0:50:D4:3E:E3:96:C2:D3:42:1C:68
Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
Certificate issuer: /CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Certificate serial: 0198C67F435CD7D3A7755D6B9438D3B47E09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
Manifest number: 12F0
Signing time: Wed 20 Aug 2025 08:01:25 +0000
Manifest this update: Wed 20 Aug 2025 08:01:25 +0000
Manifest next update: Thu 21 Aug 2025 08:01:25 +0000
Files and hashes: 1: Gb_tS4tDYUhq7ZFBBu6bXOHKxSQ.roa (hash: j+ql1A+cPykDsn/U+bRsvn2rorjyFgGlp+mF0Qt3tRQ=)
2: U3h815RuENiGRqx53lfMbsWeQTI.crl (hash: OKc48qDgDBNlGmBhEwAmReXu7L2g89umOh0PC/GHdNI=)
3: aDocXw9aAWTC2tonweXjSXZoNMs.roa (hash: M6NywDoKFY4uKrDQ3WCmTb7f59Ph9hBt6rzgbYZvGvU=)
4: dqRRF9NrCy7kpjHElym2fRaWWpg.roa (hash: yVbcvUrGd5qHEf8kKaXL1t+AGyhms8ILF9sbmeot86I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c6:7f:43:5c:d7:d3:a7:75:5d:6b:94:38:d3:b4:7e:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132
Validity
Not Before: Aug 20 08:01:25 2025 GMT
Not After : Aug 21 08:01:25 2025 GMT
Subject: CN=c14c80b114229eaac6c050d43ee396c2d3421c68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:de:e3:dd:e5:07:19:e7:be:11:15:41:59:7d:
e9:21:50:2f:75:20:ff:a3:de:b6:77:68:12:c2:85:
43:5e:78:7e:c6:7d:02:5c:8c:1c:dd:84:2e:fb:67:
d1:b2:85:49:e7:d3:c3:a0:7a:61:a8:39:3d:6e:4b:
4a:83:cc:22:67:87:ac:0d:f1:b0:68:ec:9b:84:5f:
74:e2:88:49:ff:67:b9:a2:d7:a6:7d:b9:5d:4f:5b:
61:f4:cf:a0:86:31:9e:2c:36:9d:c7:16:cc:12:56:
f5:10:1b:b4:5e:fb:28:8e:1b:9f:af:13:12:50:ce:
0b:0d:9d:e1:33:46:b9:62:ca:21:54:00:e0:d3:ae:
1d:7f:5d:cf:81:0f:8c:3a:1a:a1:33:f4:74:dc:c8:
f4:e3:9f:4b:df:82:9a:62:71:bf:3c:b6:83:39:50:
02:0c:27:fb:3f:8d:03:b2:d8:99:4d:c9:c4:7d:c9:
30:f1:81:48:6d:23:40:68:3c:cd:92:d3:a8:9a:77:
9d:d9:c1:cb:b1:98:38:cb:0d:15:47:3c:83:aa:03:
2d:ee:0f:f8:7c:6a:0e:9c:10:db:05:ad:7e:83:e3:
54:48:41:96:ab:9d:89:a0:1f:5d:83:e3:a9:37:1c:
af:2b:22:a5:f3:62:14:fb:77:b9:81:26:85:04:49:
c4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:4C:80:B1:14:22:9E:AA:C6:C0:50:D4:3E:E3:96:C2:D3:42:1C:68
X509v3 Authority Key Identifier:
keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:f5:dc:32:cf:fd:35:87:ca:5c:db:de:34:87:94:f2:6b:9f:
0f:33:9e:10:ad:6a:36:fd:9d:40:95:5b:3b:df:c1:78:17:83:
cd:f6:c9:62:99:af:74:ab:68:b3:48:e5:72:03:0c:ac:d1:b1:
7e:42:b6:1c:50:47:a4:4a:5f:a7:37:c6:6f:51:54:b7:6b:62:
6d:62:68:23:70:28:78:85:59:09:53:02:af:99:a6:17:a6:5b:
e8:ae:c2:75:0a:70:9c:d6:a8:32:e8:5b:7f:63:c9:8c:c4:f5:
b1:2a:ae:81:dc:d6:53:73:4e:3f:36:55:9f:7d:17:d5:c1:ca:
5c:78:19:32:fc:09:cb:17:dd:ad:ae:bd:5d:b1:09:6d:87:38:
fb:a9:fd:79:45:72:b6:0f:b5:1f:95:e3:6b:bb:34:e9:f1:da:
e2:ed:88:f4:de:88:c0:36:a3:f1:ba:e8:4f:e0:ac:52:5e:a1:
b4:9c:41:7a:30:c9:c6:8d:77:e1:ca:e7:73:cb:17:6c:10:a6:
50:df:28:52:66:9a:bb:ab:be:a3:e7:4f:60:3a:00:f2:4d:34:
57:0a:9e:78:ae:8a:d6:50:d6:d6:92:e5:ca:20:ec:2d:de:6d:
d3:a6:3c:46:fb:51:65:f2:ec:ee:5a:d0:f5:1b:57:46:71:26:
9b:0f:4f:48
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjGf0Nc19OndV1rlDjTtH4JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzNzg3Y2Q3OTQ2ZTEwZDg4NjQ2YWM3OWRlNTdjYzZlYzU5
ZTQxMzIwHhcNMjUwODIwMDgwMTI1WhcNMjUwODIxMDgwMTI1WjAzMTEwLwYDVQQD
EyhjMTRjODBiMTE0MjI5ZWFhYzZjMDUwZDQzZWUzOTZjMmQzNDIxYzY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAit7j3eUHGee+ERVBWX3pIVAvdSD/
o962d2gSwoVDXnh+xn0CXIwc3YQu+2fRsoVJ59PDoHphqDk9bktKg8wiZ4esDfGw
aOybhF904ohJ/2e5otemfbldT1th9M+ghjGeLDadxxbMElb1EBu0XvsojhufrxMS
UM4LDZ3hM0a5YsohVADg064df13PgQ+MOhqhM/R03Mj0459L34KaYnG/PLaDOVAC
DCf7P40DstiZTcnEfckw8YFIbSNAaDzNktOomned2cHLsZg4yw0VRzyDqgMt7g/4
fGoOnBDbBa1+g+NUSEGWq52JoB9dg+OpNxyvKyKl82IU+3e5gSaFBEnEFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMFMgLEUIp6qxsBQ1D7jlsLTQhxoMB8GA1UdIwQY
MBaAFFN4fNeUbhDYhkased5XzG7FnkEyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTNoODE1UnVFTmlHUnF4NTNsZk1ic1dlUVRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9jNzc4MjUtNjhhMy00YjNlLWJjOTAt
NTIzZmQ4NmEwN2M3LzEvVTNoODE1UnVFTmlHUnF4NTNsZk1ic1dlUVRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9jNzc4MjUtNjhhMy00YjNlLWJjOTAtNTIzZmQ4NmEwN2M3
LzEvVTNoODE1UnVFTmlHUnF4NTNsZk1ic1dlUVRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm/XcMs/9
NYfKXNveNIeU8mufDzOeEK1qNv2dQJVbO9/BeBeDzfbJYpmvdKtos0jlcgMMrNGx
fkK2HFBHpEpfpzfGb1FUt2tibWJoI3AoeIVZCVMCr5mmF6Zb6K7CdQpwnNaoMuhb
f2PJjMT1sSqugdzWU3NOPzZVn30X1cHKXHgZMvwJyxfdra69XbEJbYc4+6n9eUVy
tg+1H5Xja7s06fHa4u2I9N6IwDaj8broT+CsUl6htJxBejDJxo134crnc8sXbBCm
UN8oUmaau6u+o+dPYDoA8k00VwqeeK6K1lDW1pLlyiDsLd5t06Y8RvtRZfLs7lrQ
9RtXRnEmmw9PSA==
-----END CERTIFICATE-----
Generated at Wed Aug 20 13:13:04 2025 by rpki-client