Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
File: U1ULI4LgD6ffGU5khf4UJYNiE_8.mft (raw, json)
Hash identifier: Yf588L/GcitsbpoV0LG/rtW5u9Xf6iybe8Yvq3LSLAU=
Subject key identifier: E1:79:DD:3A:92:7F:E8:5A:67:B5:CC:AF:BA:FA:D4:78:58:6D:77:5D
Authority key identifier: 53:55:0B:23:82:E0:0F:A7:DF:19:4E:64:85:FE:14:25:83:62:13:FF
Certificate issuer: /CN=53550b2382e00fa7df194e6485fe1425836213ff
Certificate serial: 019A4D743C03D12AC725B552F3CA00A371C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
Manifest number: 0EA8
Signing time: Tue 04 Nov 2025 06:00:54 +0000
Manifest this update: Tue 04 Nov 2025 06:00:54 +0000
Manifest next update: Wed 05 Nov 2025 06:00:54 +0000
Files and hashes: 1: U1ULI4LgD6ffGU5khf4UJYNiE_8.crl (hash: AICpT1axTwUrM0c1jZo7ORJ4Y1LUqhbDnUGQL3etDq8=)
2: tcKM3LiJKMuWLZy1f452bVGFzLo.roa (hash: Hc3Ss3dEDIlpXBd/8jjQQ9tabdB4wxFhy4soszLApwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:3c:03:d1:2a:c7:25:b5:52:f3:ca:00:a3:71:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53550b2382e00fa7df194e6485fe1425836213ff
Validity
Not Before: Nov 4 06:00:54 2025 GMT
Not After : Nov 5 06:00:54 2025 GMT
Subject: CN=e179dd3a927fe85a67b5ccafbafad478586d775d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:64:47:1b:2e:5a:30:41:f3:15:c1:6e:9c:1c:
c2:73:ce:e8:d5:fd:26:60:82:f5:2f:f4:07:6e:90:
d0:06:9f:86:15:b6:79:f8:c9:7a:5d:a2:b8:d0:3e:
ca:5b:23:a9:0b:ee:15:ac:df:07:51:5f:2b:93:95:
d7:c3:52:8e:4d:dc:4a:4a:2d:ae:68:92:ea:b8:3d:
9b:bb:1b:4b:46:5c:06:f4:3b:e1:e8:9e:fd:1a:43:
ad:50:0d:8c:27:39:37:46:21:5c:d2:0e:7d:4d:15:
f9:b6:b5:5c:fd:b0:56:8f:bb:8f:da:04:68:01:8b:
1c:e3:a6:29:71:69:24:18:77:ce:64:90:49:f4:59:
87:5a:b2:93:7a:74:09:0f:1c:c6:b1:94:f3:a6:02:
75:64:7b:c3:e7:cb:56:16:14:1f:11:14:83:24:e5:
eb:7c:9a:3d:a7:fc:b6:ac:6c:ad:50:60:3d:11:49:
7a:b4:a5:54:00:ff:04:3e:cb:fc:f4:97:cd:90:ec:
0c:e7:d5:42:8b:da:ee:3c:47:cc:2b:c4:82:06:b3:
e9:34:bb:9b:d2:23:83:f3:15:16:3f:bd:6a:20:87:
e6:52:3f:81:b2:6e:1f:e2:3b:65:20:2d:11:c8:12:
e4:20:c4:77:af:cc:2a:35:25:6e:d9:ad:af:af:af:
b8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:79:DD:3A:92:7F:E8:5A:67:B5:CC:AF:BA:FA:D4:78:58:6D:77:5D
X509v3 Authority Key Identifier:
keyid:53:55:0B:23:82:E0:0F:A7:DF:19:4E:64:85:FE:14:25:83:62:13:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1ULI4LgD6ffGU5khf4UJYNiE_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/c5bb6b-6425-453a-b942-89c53d630765/1/U1ULI4LgD6ffGU5khf4UJYNiE_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:45:4c:8a:1b:e9:67:50:0c:24:fc:1f:8b:06:8c:86:06:9b:
a9:bb:39:c5:b9:59:9d:16:20:26:2b:2c:f6:b7:1b:b7:d8:20:
c2:81:38:a8:67:18:a1:f2:29:09:27:56:ae:b7:86:d4:69:24:
35:10:2a:b8:f1:0e:f7:ba:a5:66:95:5f:64:55:84:c0:a2:bf:
dd:c5:96:be:09:58:2e:c0:db:7f:1d:5f:ae:1f:5b:a8:5a:fd:
0f:d1:d1:84:a9:9d:ba:f9:a4:a6:7d:35:3b:18:bc:c7:ca:0a:
c1:50:f1:2b:53:91:94:e3:d3:b7:e8:bc:07:ab:2d:46:6f:21:
55:49:40:11:a8:dc:1e:17:10:ed:64:9f:8b:ca:01:07:2b:04:
b4:77:d3:97:cd:8e:b8:4c:5b:d1:65:09:f6:9b:c2:45:1e:cd:
22:eb:3c:7a:c4:65:9c:73:0b:7e:72:9e:3c:ba:3d:fb:4c:9e:
bf:75:8e:f6:2c:1d:ea:41:7a:5a:0b:96:96:e3:48:90:f3:95:
71:c9:11:50:5e:9a:01:df:13:75:2e:fe:38:7c:b5:1e:48:80:
30:fd:1b:0b:ae:3c:4a:23:93:2b:be:39:6f:52:17:6d:32:46:
23:59:a5:f3:89:34:c6:c8:ee:b9:62:9b:e6:13:9f:9f:ac:8a:
14:16:e2:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:54:53 2025 by rpki-client