Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json)
Hash identifier: FfeFgTbxpUFJYKrTcxkKyQG+h4kn8LzbkTrnJncSwQ4=
Subject key identifier: 8F:EE:28:95:43:A5:C7:F5:30:F6:0D:B6:66:E1:4D:F2:0D:17:56:24
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: 0198470909C5D10E81F335004EDCC9FD3321
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
Manifest number: 0CD6
Signing time: Sat 26 Jul 2025 14:00:31 +0000
Manifest this update: Sat 26 Jul 2025 14:00:31 +0000
Manifest next update: Sun 27 Jul 2025 14:00:31 +0000
Files and hashes: 1: GZldOEJkrutoTjn3MQnXcf09taM.roa (hash: vlltg4veeHpXkbEneS2WFuhIZv9HwJeSmQM3GzCbD1k=)
2: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: TJQaDXNhXODAKoAeB2Hx4Sgq3XLXpytWPsrgIJd5nWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:09:09:c5:d1:0e:81:f3:35:00:4e:dc:c9:fd:33:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: Jul 26 14:00:31 2025 GMT
Not After : Jul 27 14:00:31 2025 GMT
Subject: CN=8fee289543a5c7f530f60db666e14df20d175624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:20:a2:73:70:ca:47:1c:97:a3:fc:1e:28:ee:
fa:01:f5:39:fd:5a:f7:9d:81:d2:64:51:b4:7d:08:
70:7c:6c:2a:e6:1c:5d:42:bb:64:cd:d2:2c:79:9b:
ba:a1:24:3d:99:3b:b4:15:a7:e5:56:12:ff:53:60:
52:ec:e1:48:d3:c3:91:0f:b5:ae:84:3f:4e:8b:f9:
b2:77:36:39:0c:34:c2:eb:66:96:97:21:f7:17:87:
99:ca:ca:b2:f4:7d:6f:70:f2:52:34:bd:b5:36:2e:
67:62:51:47:69:43:9e:7c:9d:11:e3:d1:14:eb:63:
ce:47:74:ec:0d:9b:46:15:da:a8:38:dd:86:40:81:
9f:88:25:58:71:8e:79:e5:82:8a:c8:e8:5f:74:67:
db:8b:3b:e0:9d:f7:ba:77:cb:43:37:b8:76:18:ff:
ce:c6:41:9b:f7:6a:c2:eb:28:e0:23:9e:c7:4e:bc:
ed:93:36:f4:cb:4b:40:2f:d9:0a:03:93:03:25:b8:
d8:78:c1:46:d4:de:df:cf:86:a2:7e:6c:d1:f5:73:
b4:cb:cb:6a:10:24:f1:fa:d7:ab:91:a6:18:58:54:
80:28:ea:1c:e8:85:6f:6f:0b:76:fd:3f:c6:3c:84:
1a:35:7d:bb:56:37:19:15:9b:22:e9:6c:1a:9c:88:
42:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:EE:28:95:43:A5:C7:F5:30:F6:0D:B6:66:E1:4D:F2:0D:17:56:24
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:10:39:88:6e:81:8c:a8:f7:ac:61:5a:41:ea:74:c6:03:58:
00:45:5b:ac:30:a1:68:0c:57:a4:45:03:a8:9e:f8:a4:b6:f3:
8e:1a:b9:f1:3d:6e:53:1a:42:d1:b6:fa:10:56:5b:37:7f:19:
82:db:6e:85:97:77:cc:4d:1e:b9:24:0c:9e:a9:30:e2:c3:58:
14:d1:e8:82:51:7a:0b:48:44:75:02:cb:0c:36:bd:9f:22:89:
2f:a8:88:df:19:dd:7c:0e:2e:c2:34:bf:aa:e2:c8:ca:ab:ec:
0d:c3:a3:a4:59:67:f8:92:c1:42:9f:fe:b4:68:16:1d:8b:cf:
57:7a:3b:57:b3:f7:e6:9d:42:e5:a4:4a:a8:93:8d:8e:cc:c0:
d6:36:f9:a1:0b:b7:2d:07:f9:89:e3:76:9f:a8:7c:ef:48:29:
30:e1:52:e1:55:2d:7e:a5:88:c6:bb:55:08:07:24:96:8b:e2:
85:9f:15:c5:dd:39:b0:41:29:1c:e5:ef:4a:bf:c9:c2:76:d8:
1b:3e:26:b0:b8:68:2c:b5:e4:ff:23:5f:d5:94:0c:c1:04:36:
41:7a:8f:1a:6e:9a:63:55:ac:35:9f:df:fe:90:15:b4:38:16:
21:ad:af:4e:5f:f2:d4:41:b1:35:bb:9f:75:49:f0:7d:f2:21:
ae:dc:81:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:10:03 2025 by rpki-client