Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
File: U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft (raw, json)
Hash identifier: tmF5wadpel3Sgq4lRxsjV5g5JPA19lxkLe4yP0/8/OU=
Subject key identifier: 08:ED:87:C1:66:2C:8F:C3:D0:75:23:1C:9C:28:3A:C1:3B:98:CE:39
Authority key identifier: 53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
Certificate issuer: /CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Certificate serial: 01984407B4A35E5E826A0DC9238DC312218A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
Manifest number: 068B
Signing time: Sat 26 Jul 2025 00:00:12 +0000
Manifest this update: Sat 26 Jul 2025 00:00:12 +0000
Manifest next update: Sun 27 Jul 2025 00:00:12 +0000
Files and hashes: 1: U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl (hash: UfKyrvxXVt7StkGB6/JQMTTm7Fqg5AHH4RMp0nHMcdA=)
2: kDLhfcy8YHG9d7r3ZyKyTCN67dU.roa (hash: FHssmQ805uZ/Wtb94rUn/bLQZUQ10hPffXrOYDXFnpE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 00:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:44:07:b4:a3:5e:5e:82:6a:0d:c9:23:8d:c3:12:21:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5349c2d00ba46be9244b76194baa10f33ce3462c
Validity
Not Before: Jul 26 00:00:12 2025 GMT
Not After : Jul 27 00:00:12 2025 GMT
Subject: CN=08ed87c1662c8fc3d075231c9c283ac13b98ce39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:c7:b8:00:5b:c8:08:7e:75:f9:6d:02:60:ce:
77:af:4d:8f:07:c9:af:c1:e4:c6:82:6b:7b:e6:6f:
d0:93:6f:22:07:a4:47:0d:71:1c:82:97:d2:6a:00:
75:6e:1f:64:19:e7:4d:f3:b6:6d:91:62:86:8a:2f:
92:cd:0e:5e:fd:ff:14:d3:6e:aa:a0:e7:39:c2:53:
65:67:fd:22:97:ef:d0:25:1a:34:4f:21:b6:5c:65:
07:c4:c7:60:9e:54:d2:24:1b:0f:a2:00:77:b6:5b:
b0:05:9a:5e:bf:32:bb:a7:ec:ab:ae:d0:06:12:d2:
2a:6e:4a:f7:5a:d7:bc:71:a5:14:8c:89:93:fc:c4:
0a:6e:ef:d3:21:b4:aa:9a:80:04:09:c1:b9:ce:79:
bb:45:2e:41:ae:e9:78:69:bf:ca:94:f5:9e:67:25:
9c:a2:aa:5e:88:ee:a6:85:bd:23:3f:a2:17:6a:91:
04:a6:f5:f4:31:d8:c5:76:04:ce:07:ac:f1:44:a3:
84:e9:76:32:01:38:bd:4d:47:b5:9f:04:ab:67:8c:
46:1a:3c:4d:54:b2:8c:73:68:20:27:5e:0b:8c:d1:
b0:bc:a0:ab:8b:1a:c9:f4:cc:90:1e:47:cf:2d:06:
4d:1f:a2:6f:24:df:e8:bc:88:2f:b4:58:65:da:d3:
f2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:ED:87:C1:66:2C:8F:C3:D0:75:23:1C:9C:28:3A:C1:3B:98:CE:39
X509v3 Authority Key Identifier:
keyid:53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:fd:f0:01:c3:b6:26:2f:54:2c:1d:0f:ff:93:dd:b6:86:fa:
72:2f:e4:c1:3b:80:59:13:0b:64:9c:42:84:9c:64:a4:a6:d1:
c3:bd:4c:8e:cf:ea:ad:fd:71:96:56:36:ba:8b:6a:f1:fb:84:
d1:bb:b1:49:a8:fb:48:f6:c6:c7:c8:aa:93:5d:2b:07:3f:fa:
d4:60:cb:65:59:86:e0:f9:9a:36:a5:96:e4:07:84:0c:ed:30:
d0:cd:60:aa:06:99:f9:0d:da:d3:06:9a:a4:53:53:a9:a1:fd:
05:4b:1c:1d:cf:08:9f:f0:3f:6c:de:3d:06:d0:16:42:0d:f0:
80:14:05:b4:48:97:41:a3:24:0a:73:44:c6:f2:45:5f:8a:67:
e7:5a:2d:0e:2f:42:16:4d:03:74:27:dc:3a:f7:9f:56:36:d3:
e6:6b:3f:09:fe:bd:c6:e7:2b:87:aa:3e:2e:f5:f6:92:24:3f:
bc:f5:4b:46:84:0d:48:2b:61:4b:91:26:ca:20:6a:6a:84:09:
48:d4:11:27:00:e0:d2:fb:0f:f8:57:20:86:17:3d:09:f3:8e:
81:2a:4d:6b:a2:74:90:c1:bf:52:a9:4e:e6:57:6f:a6:56:2b:
07:0f:fb:a6:76:a7:c6:fc:09:06:58:c1:a5:96:d6:0f:7c:18:
60:4d:71:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 09:36:27 2025 by rpki-client