Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json)
Hash identifier: f1PMdQVPRISi5sgsradxv0cJ3RRwIp6KpT1am8WvgFk=
Subject key identifier: 84:7F:18:09:FD:85:C2:07:AF:9B:1E:83:51:3B:48:B9:01:3A:80:CF
Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f
Certificate serial: 019A4E867EA74F031ACC6CBCB4B3A41CD24C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
Manifest number: 0998
Signing time: Tue 04 Nov 2025 11:00:28 +0000
Manifest this update: Tue 04 Nov 2025 11:00:28 +0000
Manifest next update: Wed 05 Nov 2025 11:00:28 +0000
Files and hashes: 1: If5j4KjsWFg3kwDUxrHpbFCCjpg.roa (hash: iGbVOgQjxfoZ4tZTHfIMlZvCv27war8Yd/ywUcGl39o=)
2: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: Ba9nN2n7TUavXyhnZrhBnwGSLbU0gcybLZckViyFx00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:7e:a7:4f:03:1a:cc:6c:bc:b4:b3:a4:1c:d2:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f
Validity
Not Before: Nov 4 11:00:28 2025 GMT
Not After : Nov 5 11:00:28 2025 GMT
Subject: CN=847f1809fd85c207af9b1e83513b48b9013a80cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:80:d6:e2:a3:17:11:76:b3:f8:91:9f:4d:bc:
ba:c5:3f:92:c3:7b:ba:1e:23:45:97:f6:f6:71:ca:
1a:73:a7:a7:1e:77:42:a9:49:50:68:83:66:61:04:
be:e1:4c:5f:c8:92:98:d5:a0:26:a1:42:4e:54:37:
ef:cc:f9:fc:18:84:ea:5b:ca:db:71:64:f7:17:5a:
db:e6:c3:3e:ed:87:54:4c:dd:3a:14:24:8f:92:7b:
db:de:73:79:ab:51:41:37:89:74:fd:f1:c4:f0:db:
0b:43:bb:06:37:81:3b:a7:af:51:cd:02:df:ed:5f:
b9:7f:e6:07:49:6a:fb:f0:84:7b:e9:c9:60:b6:c2:
93:64:38:42:68:31:76:65:77:b0:28:74:55:0b:19:
3a:2a:09:38:ec:07:65:df:03:76:35:06:27:96:d9:
85:82:47:fd:24:f4:42:ff:2e:40:09:40:38:ad:09:
de:88:61:38:84:19:db:1d:ac:dd:1a:91:89:83:7a:
b8:e7:28:81:d9:34:bf:6c:88:db:57:cd:95:58:72:
60:81:79:9b:f7:32:f0:5b:d3:84:ac:43:2c:d8:2c:
9d:e2:23:88:36:75:b7:99:1b:35:c7:ca:9e:61:f2:
24:85:03:b3:d1:ab:80:0e:74:2d:38:20:ae:96:0b:
79:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:7F:18:09:FD:85:C2:07:AF:9B:1E:83:51:3B:48:B9:01:3A:80:CF
X509v3 Authority Key Identifier:
keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:ca:10:d4:06:e1:63:45:76:e1:c9:35:ed:64:2e:09:81:84:
f8:20:57:96:ff:79:28:7a:95:22:be:18:14:6f:ba:15:db:50:
d4:68:11:87:26:8d:91:4d:3a:7d:89:e3:f9:1f:5c:6a:f7:8e:
78:b1:9c:be:b7:93:27:c1:6a:e7:d5:4d:71:07:b0:3f:8d:5c:
d9:1a:08:6f:aa:5b:40:67:03:c0:9a:b2:02:af:ea:a5:5c:d1:
f0:01:9e:f8:db:8f:9a:8d:1e:57:30:a1:ef:22:d8:2a:6c:57:
1c:f0:d8:b5:71:dc:78:58:55:66:be:17:5c:27:77:13:12:25:
8b:89:30:10:ff:4b:a7:7f:df:c6:99:cd:b3:c1:de:6d:57:7e:
a2:24:53:36:a4:bb:30:f8:29:da:70:dd:7e:71:4a:ba:dc:72:
68:64:16:e0:bd:af:9b:68:31:f6:2c:c6:8c:c3:7f:19:39:f8:
70:75:32:a8:c5:01:29:a0:8c:a3:12:4b:e1:23:bd:1e:e4:b9:
e5:7c:f8:6d:1c:92:a9:57:88:5d:16:ea:ef:c3:5e:56:ce:1a:
c8:c9:ab:3a:0d:4d:04:cf:e1:23:8e:25:ae:02:f9:bb:13:50:
20:ee:74:e3:1f:6b:8f:1a:94:38:22:04:e0:0d:ac:82:ab:27:
5b:6e:64:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:01 2025 by rpki-client