Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier: eE3wWtjAmmgQi7PG3ovxtV+i8DI1xwCCbyP5SkxnWEM=
Subject key identifier: B9:10:30:08:29:BF:B9:76:32:D8:A7:E1:B8:3D:FA:81:D6:E3:60:82
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial: 019A4DAACFAF7AAC3931DAD41CBF52B68575
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number: 142F
Signing time: Tue 04 Nov 2025 07:00:31 +0000
Manifest this update: Tue 04 Nov 2025 07:00:31 +0000
Manifest next update: Wed 05 Nov 2025 07:00:31 +0000
Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: cyPGkGbO1pRf3RGjJf/RpIbWEqfDib6V9HMIvVNWgDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:aa:cf:af:7a:ac:39:31:da:d4:1c:bf:52:b6:85:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Validity
Not Before: Nov 4 07:00:31 2025 GMT
Not After : Nov 5 07:00:31 2025 GMT
Subject: CN=b910300829bfb97632d8a7e1b83dfa81d6e36082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:80:40:61:13:0d:17:08:cb:26:f7:a9:ef:ed:
29:0f:e1:48:a0:b6:24:3d:8e:d4:65:8f:02:c0:b4:
5b:62:43:bb:8f:1b:96:7b:da:7f:74:a5:78:7c:73:
71:b4:13:8d:a1:78:73:35:0b:4e:f9:32:e6:71:cf:
e8:2c:d3:64:37:2d:37:67:a7:7c:06:6d:c7:13:d9:
94:20:b9:30:ad:8c:b3:f3:06:38:f0:c6:92:54:29:
61:a7:19:17:e6:0e:4d:5d:d1:fd:21:71:48:7f:0d:
d9:cd:42:13:65:4e:28:cd:9d:5b:06:6c:fb:aa:d5:
b6:23:0c:7f:5a:cf:63:9e:f5:f5:e5:c3:9d:28:2c:
0c:ba:e8:98:01:92:bf:f2:39:15:b7:8c:b3:a5:c1:
31:c2:bb:4a:f9:4e:97:9f:c7:17:ed:4f:d3:82:b5:
dc:7d:3d:20:e2:5d:01:5e:a9:a2:82:39:d8:9d:64:
34:b0:05:5d:67:86:43:cd:75:b2:86:28:af:35:3b:
70:ad:7d:d4:d2:42:66:da:a0:09:c0:58:28:d0:cf:
4a:66:20:f5:c9:04:70:96:8b:52:d8:95:5d:8a:2e:
ec:c9:a2:e9:cc:25:ca:89:fd:82:cb:ff:46:67:71:
80:01:3f:f4:db:ca:e7:bd:77:a1:67:ee:6f:5a:df:
2e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:10:30:08:29:BF:B9:76:32:D8:A7:E1:B8:3D:FA:81:D6:E3:60:82
X509v3 Authority Key Identifier:
keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:a2:9c:18:c6:01:69:6d:a8:18:18:36:90:33:a4:a9:76:61:
07:9d:d4:92:6c:9b:fd:3c:0c:20:51:41:31:ed:94:b9:5a:4d:
3f:73:36:f3:29:00:4e:45:38:b1:37:87:e6:75:77:ff:fd:51:
0e:7e:9b:b1:54:63:3c:d5:e0:b7:c3:56:bd:8a:25:97:50:97:
c6:79:6e:38:a5:cb:c3:47:df:65:0e:f4:ea:eb:c0:17:f4:33:
3b:c4:fe:95:2d:1d:6a:49:6b:2f:3b:16:e2:95:3b:8b:02:b1:
a6:c7:61:4b:9e:0b:ed:bf:4f:d4:ce:1b:11:f5:4a:6d:cc:87:
31:6d:cb:86:8f:6e:fd:ff:e8:01:4a:ad:8d:6a:98:2b:9f:19:
d6:fe:e3:da:50:c9:c3:92:4a:01:08:9d:b2:95:79:61:5e:45:
f9:43:a7:79:a7:c7:4e:0e:a7:b2:8a:52:4a:dc:e4:22:61:9e:
8e:9c:0e:18:4b:2c:cc:50:29:d5:a4:10:3a:c6:df:6a:08:43:
ce:bd:39:f0:83:f7:7a:39:3d:9d:8c:2e:31:6d:56:60:f4:d1:
f9:0d:10:8f:ea:e6:33:8f:e6:21:dc:8f:6f:8b:1b:cc:c7:9c:
e8:b0:a8:21:f4:d6:25:1a:59:fd:03:68:ea:42:3e:c2:fb:42:
2c:e9:e7:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:53:33 2025 by rpki-client