Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
File: U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft (raw, json)
Hash identifier: 2gmAb6HOX1//5ZFp9D2LduQI5o2LeAjMSj1RT4khy5k=
Subject key identifier: 31:AB:C1:9D:35:16:2F:E1:23:C8:BF:1D:A9:58:E9:6F:B6:64:DE:10
Authority key identifier: 53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
Certificate issuer: /CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Certificate serial: 019A4F62D7975B8A11188787E37A30942730
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
Manifest number: 079A
Signing time: Tue 04 Nov 2025 15:01:08 +0000
Manifest this update: Tue 04 Nov 2025 15:01:08 +0000
Manifest next update: Wed 05 Nov 2025 15:01:08 +0000
Files and hashes: 1: U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl (hash: y7a9mh/PRTmOydD9oWlyIl6n+4VUzRo/cN9iHyZ/0hI=)
2: kDLhfcy8YHG9d7r3ZyKyTCN67dU.roa (hash: FHssmQ805uZ/Wtb94rUn/bLQZUQ10hPffXrOYDXFnpE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:d7:97:5b:8a:11:18:87:87:e3:7a:30:94:27:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Validity
Not Before: Nov 4 15:01:08 2025 GMT
Not After : Nov 5 15:01:08 2025 GMT
Subject: CN=31abc19d35162fe123c8bf1da958e96fb664de10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:78:bf:a8:d0:ac:1c:0c:fc:69:55:14:95:f5:
65:84:49:b1:ba:29:d4:46:00:46:24:56:df:45:3d:
53:da:42:d3:7c:5c:26:bc:ef:a6:af:40:1c:da:cc:
9a:c4:5d:88:06:6c:16:53:b6:19:3f:3f:f4:f8:6a:
60:53:67:80:1c:bb:53:22:2f:79:bd:cb:6a:c7:1c:
9c:7c:9a:48:85:cf:3a:19:30:49:60:8c:f8:79:9a:
3a:6c:3b:e4:c0:38:d1:30:a7:53:29:51:95:8c:61:
d1:18:d4:c5:8b:97:4d:6e:4a:ca:2a:6c:fd:ca:f8:
c9:79:2e:7c:e6:6a:1d:99:ba:5c:ae:6d:88:4e:dc:
39:21:e5:19:5b:53:f1:32:fc:7a:42:04:cc:5c:29:
42:79:92:0b:d2:ea:ed:5b:94:30:e5:3f:91:8d:9d:
fb:14:01:c1:93:78:0b:b8:bc:57:47:e6:7c:9f:66:
b6:bc:38:b8:dc:26:3d:e5:dc:fc:80:fe:5e:5b:f8:
95:e8:43:e2:ca:ea:fb:1f:90:8c:c6:2b:53:bc:a7:
f7:ec:e7:23:cc:b9:59:5c:94:0b:10:16:e0:32:98:
40:33:dc:95:d9:76:95:76:e6:03:d6:a0:5e:72:82:
4d:89:a8:03:4d:8d:08:de:78:9c:43:a5:6e:52:ac:
a3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AB:C1:9D:35:16:2F:E1:23:C8:BF:1D:A9:58:E9:6F:B6:64:DE:10
X509v3 Authority Key Identifier:
keyid:53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:8c:b6:c1:f4:5b:fd:48:1d:5c:43:41:e9:24:77:6f:47:ce:
cf:47:ac:18:a0:de:ae:40:80:5d:fb:2d:94:91:ef:eb:df:fe:
ea:00:09:b2:49:2c:6b:ef:65:d6:f0:2d:06:41:8d:cf:07:46:
47:c2:20:1a:bf:be:ce:d6:ec:39:29:b4:ff:fa:25:85:38:73:
79:6e:3c:a4:8f:e4:0c:e8:be:cc:ef:50:3e:37:25:90:1b:1c:
88:1f:d4:37:20:2e:2b:b4:86:a0:c6:06:1f:41:9c:49:28:2e:
b1:e9:b4:ed:01:b5:b1:26:12:43:e3:8f:e3:08:33:5e:5b:ad:
0c:e8:4f:ef:79:c1:d7:2f:28:49:e3:79:71:75:f7:49:49:b5:
b6:5f:03:72:1c:47:cd:24:b8:4a:dd:cd:31:00:08:f9:6c:d2:
79:3b:32:97:69:6d:12:24:53:1f:4a:df:68:0e:b8:e6:8b:84:
57:bc:05:78:ee:e1:a3:a5:ae:3a:84:0c:b7:aa:6b:86:86:20:
71:d3:29:ff:dd:2b:7b:b7:6d:b5:7f:86:1d:77:78:b9:b8:30:
68:b5:17:0c:75:95:a6:fe:44:60:22:71:c4:9c:94:4f:c0:d3:
9c:a0:5b:51:7d:8d:15:22:36:8c:4e:01:91:4b:9a:bc:23:71:
ac:8a:77:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 21:36:42 2025 by rpki-client