Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
File: U6i3vKixHSeFDpGMpZlmmIAWKSk.mft (raw, json)
Hash identifier: v9mzDFvwqQ9cKjPIXlB98hPbGRzXI+99uWknecIAMnE=
Subject key identifier: EE:4A:B2:74:DE:06:FF:68:8E:A3:50:02:8D:E7:42:02:AA:6D:04:F2
Authority key identifier: 53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
Certificate issuer: /CN=53a8b7bca8b11d27850e918ca599669880162929
Certificate serial: 019A4F2B61F536950AD6AD31D461F3007C45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
Manifest number: 031D
Signing time: Tue 04 Nov 2025 14:00:34 +0000
Manifest this update: Tue 04 Nov 2025 14:00:34 +0000
Manifest next update: Wed 05 Nov 2025 14:00:34 +0000
Files and hashes: 1: U6i3vKixHSeFDpGMpZlmmIAWKSk.crl (hash: bXE+cASvuAZmjbt8Hnn2WvtuE1vjuIq+n7alkxQLDmU=)
2: qST1YzpfG0Aj9HfkTwxj9U8CUhI.roa (hash: wruCCghr0kJqtbuyZdJFoTZhRH+nhRjwzTxdaCBX4hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:61:f5:36:95:0a:d6:ad:31:d4:61:f3:00:7c:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a8b7bca8b11d27850e918ca599669880162929
Validity
Not Before: Nov 4 14:00:34 2025 GMT
Not After : Nov 5 14:00:34 2025 GMT
Subject: CN=ee4ab274de06ff688ea350028de74202aa6d04f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:56:9a:6d:be:b9:de:1a:d9:76:d1:99:76:7b:
21:a6:ff:20:f6:73:58:b9:ca:a0:14:a2:1b:4a:f0:
09:c4:60:38:a3:dd:1e:38:f3:e3:37:03:95:fa:0c:
cd:e3:2c:68:90:59:4f:aa:c1:08:96:bd:ed:2f:fc:
52:21:96:68:da:0d:ae:1f:97:d2:63:e4:3b:a9:28:
f3:a2:d5:5b:eb:7c:36:70:33:c0:f6:cd:39:66:4a:
37:10:d4:86:37:22:fc:b6:f1:fa:5a:e0:ab:35:6f:
0b:5b:28:1a:c8:0c:8c:18:a5:c1:dd:de:da:a5:c4:
ff:d9:f8:b2:65:03:2e:0a:30:f4:b9:0d:5c:98:89:
74:91:92:bb:9e:6a:9e:28:49:78:f8:cb:a8:4e:13:
96:16:d3:2b:35:c8:d3:e4:86:59:b3:0e:10:c0:de:
59:d9:94:53:7d:6d:75:73:29:14:e4:e9:2c:1b:7a:
5c:ea:c3:b3:cb:10:22:8f:86:28:ed:39:71:ac:45:
7d:2d:9d:46:37:cf:af:2e:58:74:81:df:bf:a5:fd:
84:48:d4:49:28:8c:b0:ae:2a:3e:7e:28:d0:86:7c:
e4:39:09:6b:da:58:6f:4f:45:a9:58:9d:0d:bb:d2:
cf:a5:29:2f:ea:e2:02:85:a7:20:bd:08:31:8e:c9:
8e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:4A:B2:74:DE:06:FF:68:8E:A3:50:02:8D:E7:42:02:AA:6D:04:F2
X509v3 Authority Key Identifier:
keyid:53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:e3:03:19:bc:e3:c2:2f:96:e6:57:76:3c:d7:51:ea:48:07:
7c:0f:93:9c:7d:17:63:de:61:c8:64:b9:f7:8c:e5:49:84:fd:
f4:28:5d:d0:7a:1d:d4:d0:95:9b:a7:ea:ae:cf:f4:48:c4:ef:
5a:c9:15:43:04:e8:44:14:32:cc:db:3a:1c:b3:51:c0:4b:06:
fb:ec:05:de:c9:ed:e7:e4:7a:bd:3a:46:9f:01:f4:38:be:ab:
96:1c:8f:2e:d9:02:00:b3:17:a1:3e:fb:61:14:bb:08:e6:fb:
d0:ca:e8:6b:02:e6:09:1a:ed:73:64:fd:94:86:90:98:90:75:
c2:38:b6:d4:3f:aa:40:25:92:e7:0a:79:c9:7b:4a:8b:e6:5e:
89:0a:b0:30:96:15:a1:34:ec:ac:8a:c7:ff:75:c8:c1:37:7d:
e1:f7:ab:74:46:d4:19:9c:3e:03:1a:8c:bd:c3:25:3d:90:2f:
e6:45:a9:0f:1d:32:c5:f0:26:d7:4b:0a:59:b4:48:ff:3d:1a:
5d:09:b0:aa:24:60:2d:b3:cd:07:43:4d:dc:e1:42:90:1f:cd:
d8:9f:18:9e:76:48:62:7e:ab:c6:8c:8a:1b:ec:69:3e:dd:2d:
68:6a:fa:11:36:48:3e:72:38:18:67:64:ec:8e:f1:81:f6:d9:
ea:af:2f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:19:33 2025 by rpki-client