Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
File: U8kSoEEbsBdFBwktDKNaka15kFw.mft (raw, json)
Hash identifier: dIPI21XJTnUN8pnLQSP3fE9MAfjuwDgZ4G3nhvbfIx8=
Subject key identifier: EC:F7:4D:40:C4:08:A9:62:C5:66:54:25:BE:67:AB:96:AB:97:DC:C8
Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c
Certificate serial: 01993424D3D879535E08DA5F38E942811094
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
Manifest number: 1681
Signing time: Wed 10 Sep 2025 15:00:52 +0000
Manifest this update: Wed 10 Sep 2025 15:00:52 +0000
Manifest next update: Thu 11 Sep 2025 15:00:52 +0000
Files and hashes: 1: 4bEGcfHd_w1hv-Zgrf8mtzNQOF8.roa (hash: Yz5lhUK8jG4fxty/HMD7XY7daqUIEiCINpgWbEB+eSk=)
2: U8kSoEEbsBdFBwktDKNaka15kFw.crl (hash: y2y3c3UDhpgacV2Vr1iwy3CT1e2yg1g+r8KsW9hEDUQ=)
3: V2UHD8Ezb4do1e1amF_9bhIjwm0.roa (hash: y2BL9g++y9jPkFQqtQIhZUhynDTSuho7DqIRo/6vN6o=)
4: Xx5AoKMFPro34EMu91UFlynTj2s.roa (hash: NlxbkxLq2MDyD2nlPITsFETHKzu5cELRgwcKIcBnH7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:24:d3:d8:79:53:5e:08:da:5f:38:e9:42:81:10:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c
Validity
Not Before: Sep 10 15:00:52 2025 GMT
Not After : Sep 11 15:00:52 2025 GMT
Subject: CN=ecf74d40c408a962c5665425be67ab96ab97dcc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d2:d3:52:9e:c7:ba:a1:2d:60:52:73:d9:d2:
86:53:51:b7:66:be:3c:bb:63:cc:50:2e:5b:db:8d:
33:15:91:0d:18:a5:7a:ba:0a:2a:a4:3e:11:29:f9:
46:e1:4d:ab:d1:2e:72:1b:95:8a:e1:2c:39:89:23:
a7:9e:4f:c6:1d:c2:6f:f7:3a:01:a2:f3:cd:3e:94:
45:61:44:cc:09:ef:a6:65:7d:f4:3a:5e:4f:d6:37:
9f:d5:61:6b:46:47:5c:bb:76:c1:7b:af:0c:77:96:
04:49:39:e4:ad:36:82:60:a2:26:57:de:1c:da:ee:
4c:57:40:e1:9b:3e:cb:6d:e0:d4:e7:98:dc:ae:47:
a1:f8:f3:a4:aa:31:9c:a1:3d:15:3b:16:4b:1d:fc:
76:cb:dd:2e:7a:f2:4a:a0:b7:67:8b:a7:ab:48:47:
90:04:8b:07:e4:a3:68:28:ae:6c:49:ba:cf:37:a0:
61:df:ff:06:94:5e:70:d5:3b:7a:c7:2b:45:cc:f5:
5e:6c:7c:99:d1:01:44:fb:60:2f:fb:26:1e:a4:2e:
33:16:5f:84:9a:fb:5d:de:cb:ee:45:77:b0:04:94:
66:9c:6e:c7:29:6a:78:53:9f:df:89:b8:e3:a5:64:
71:ff:b8:58:d0:97:13:f3:a9:c3:d9:f5:bd:3c:13:
59:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F7:4D:40:C4:08:A9:62:C5:66:54:25:BE:67:AB:96:AB:97:DC:C8
X509v3 Authority Key Identifier:
keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:3d:1d:fe:19:bc:58:b7:20:36:22:03:58:89:eb:12:2f:87:
24:90:c5:91:74:b6:7e:bb:05:eb:6d:db:9c:93:91:bc:7e:04:
6b:63:cb:00:db:f5:20:d4:55:62:3d:8d:e3:32:86:86:8c:6c:
87:3d:38:a1:04:c7:51:cd:f3:39:14:15:3d:8e:2e:b3:f5:a1:
6d:d9:d8:c7:dd:b7:88:71:f9:da:5b:1c:0e:3e:b0:37:c2:e0:
3d:f5:4f:4c:ae:5c:81:d6:60:83:9d:bd:17:5b:23:88:9e:be:
74:76:52:29:da:bc:63:33:fd:75:97:14:29:c3:4e:11:1c:dc:
33:c8:df:c5:d5:22:ac:af:c1:c7:2c:02:65:35:55:53:8d:5a:
a3:cc:36:e2:ca:7a:51:f0:91:1b:23:17:c3:fc:f6:a1:b4:8f:
13:0e:bb:af:c9:52:b1:5a:a8:eb:bc:73:26:cc:51:e4:76:63:
a6:c6:87:a0:8b:d9:f9:27:68:99:7c:1d:81:f4:65:e0:01:a5:
3a:b1:85:c7:9d:1b:d6:9e:f6:70:b5:c3:cc:89:64:83:38:65:
01:7c:f6:e5:a2:1c:2f:a4:6c:a9:eb:9f:3c:37:16:05:d3:4e:
10:42:22:81:86:59:22:be:1e:88:69:94:b0:87:41:40:7e:3c:
a0:a6:22:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 20:43:20 2025 by rpki-client