Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: 7IM0eDxbPXJ8OPv2eQbjm3r7DlHiCGQVLqv4fOtqZDk=
Subject key identifier: 2A:CF:57:98:08:36:79:96:4D:0B:1C:0E:5B:42:0E:47:8D:3E:33:FF
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 019954F8F55D6FC519F4A1E426EA6249583B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 066B
Signing time: Wed 17 Sep 2025 00:00:25 +0000
Manifest this update: Wed 17 Sep 2025 00:00:25 +0000
Manifest next update: Thu 18 Sep 2025 00:00:25 +0000
Files and hashes: 1: AlkZJ5y5SgK5NicIMpQu5G4y-kk.roa (hash: 6pDsa6TgLwnLkjOOWWhXhHFWrv8bvlopmayBUNqycZY=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: lS5CHyHg+HQhxVbGoMdJDDVswkbEtfoLJ8FAYvVeUmM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 22:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:54:f8:f5:5d:6f:c5:19:f4:a1:e4:26:ea:62:49:58:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Sep 17 00:00:25 2025 GMT
Not After : Sep 18 00:00:25 2025 GMT
Subject: CN=2acf5798083679964d0b1c0e5b420e478d3e33ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:11:1f:9d:5c:fc:06:06:18:e9:be:b4:14:f0:
5f:36:61:89:ec:38:07:db:de:ac:e5:fa:2f:1d:2d:
3c:b3:56:ea:a4:fb:ae:e8:8f:16:41:82:72:b5:47:
73:ba:e3:4e:df:1d:cb:d2:8d:f0:a5:67:68:76:ff:
7f:59:42:f7:13:d7:24:60:e3:e5:1c:60:65:4b:15:
8e:29:fc:b3:4e:99:f6:c1:7e:30:62:14:6c:ef:36:
be:11:c8:46:61:63:6b:16:65:4c:0e:c3:9f:8e:8a:
3c:81:ac:a4:c3:4b:b7:05:cc:03:80:41:fe:b8:5c:
d6:78:99:2d:60:a7:83:77:ae:bb:8f:8d:9d:41:77:
cb:ae:ec:98:b8:a2:34:0f:15:d7:ff:a6:26:93:70:
ea:fb:04:60:a6:83:75:c1:2a:2a:83:81:a5:5e:71:
fb:12:f8:d7:39:50:b4:f7:78:a2:dd:61:48:1b:f1:
be:0b:d7:04:c8:ed:4e:9f:97:2b:a8:b5:fe:1a:7e:
94:4e:a5:aa:ff:d9:7f:61:19:36:65:15:71:04:f5:
19:4f:f0:2f:f6:e2:7c:93:ee:d4:30:2c:11:11:83:
45:75:df:63:d8:93:dc:ea:e1:87:98:56:82:96:ee:
b3:e3:71:73:c7:af:6b:fe:59:48:f0:d1:1e:a6:5f:
e0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:CF:57:98:08:36:79:96:4D:0B:1C:0E:5B:42:0E:47:8D:3E:33:FF
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:fc:d7:ea:36:8f:b6:7f:55:e2:4b:02:91:84:26:dd:14:aa:
27:b8:ae:8e:d7:04:dd:49:82:e4:ee:09:1e:e2:81:cf:74:eb:
93:31:37:9c:fe:cc:45:10:25:02:e9:27:c6:5e:ec:af:65:51:
52:cd:da:6e:51:82:6b:81:bc:34:c8:5a:9f:6d:f4:f5:7e:85:
4c:b3:32:35:4a:50:46:2b:35:7a:0f:f1:3a:a0:d1:95:1c:4f:
69:90:c6:21:f8:17:73:1a:a9:b6:26:c4:ed:cc:d5:c6:3d:db:
2e:05:8e:86:76:e2:40:5c:94:90:ea:f4:4d:a3:de:74:f6:04:
df:35:40:71:08:95:ea:a3:c5:81:43:52:c0:55:15:5b:30:e6:
4c:7a:85:31:3e:54:16:eb:f9:c4:78:b4:02:2d:12:c3:6c:6d:
93:c5:a4:d0:95:0e:80:5e:20:9e:2e:d8:e0:d8:3f:f8:a2:a8:
3f:4a:ba:95:f2:7e:e9:6d:5c:0a:c8:fc:6f:8f:09:7d:50:a3:
50:13:a6:7c:f2:fc:74:ef:fe:f7:0a:90:f3:d4:4c:71:77:51:
00:28:2c:8d:15:ad:aa:21:19:9d:d2:b6:0a:3c:15:f2:54:e3:
d2:b1:f4:4d:aa:ee:c3:ca:bb:7c:64:da:54:d8:b8:78:b4:f1:
34:40:87:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 17 07:57:27 2025 by rpki-client