Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
File: U8kSoEEbsBdFBwktDKNaka15kFw.mft (raw, json)
Hash identifier: 0TX3drbBC3JEQxxnotn7+V53kDQfbh28J4XE6FtAUOI=
Subject key identifier: AF:A7:40:70:C3:18:B7:E4:75:65:1E:94:B9:0A:FE:02:6E:DE:B7:77
Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c
Certificate serial: 019A21ADDE61444577858084B48D369F315C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
Manifest number: 16FC
Signing time: Sun 26 Oct 2025 18:00:34 +0000
Manifest this update: Sun 26 Oct 2025 18:00:34 +0000
Manifest next update: Mon 27 Oct 2025 18:00:34 +0000
Files and hashes: 1: 4bEGcfHd_w1hv-Zgrf8mtzNQOF8.roa (hash: Yz5lhUK8jG4fxty/HMD7XY7daqUIEiCINpgWbEB+eSk=)
2: U8kSoEEbsBdFBwktDKNaka15kFw.crl (hash: TKLA4YWj/GBmoT+GD76PVjJwz8MLY6nUEhW6Gqk+PW8=)
3: V2UHD8Ezb4do1e1amF_9bhIjwm0.roa (hash: y2BL9g++y9jPkFQqtQIhZUhynDTSuho7DqIRo/6vN6o=)
4: Xx5AoKMFPro34EMu91UFlynTj2s.roa (hash: NlxbkxLq2MDyD2nlPITsFETHKzu5cELRgwcKIcBnH7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 18:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:ad:de:61:44:45:77:85:80:84:b4:8d:36:9f:31:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c
Validity
Not Before: Oct 26 18:00:34 2025 GMT
Not After : Oct 27 18:00:34 2025 GMT
Subject: CN=afa74070c318b7e475651e94b90afe026edeb777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ce:36:67:83:68:c1:70:34:70:3a:f4:76:63:
dc:b4:ca:ec:37:0f:5c:10:e4:6a:04:fd:13:3e:24:
e1:97:25:8c:8e:8a:2e:b0:2b:02:8a:5d:39:18:0e:
43:e1:ad:42:5c:9f:6b:8c:42:5d:29:8d:4f:ec:0c:
4b:af:75:03:4f:0f:5d:53:6d:51:3c:8a:4b:3d:0e:
2f:24:25:97:ce:96:a9:a8:73:8f:a6:ee:06:5e:c1:
42:0c:e2:78:58:dc:47:0d:77:f6:4b:34:ff:f0:e8:
a2:b1:d7:20:ff:8f:c9:87:c8:e6:ca:ae:02:3a:53:
8d:23:fb:74:b9:64:95:fa:c2:42:da:6e:46:27:8c:
f3:06:9e:05:20:39:e2:43:5c:94:85:bc:76:7b:32:
3f:74:ca:9d:6e:7c:43:20:2b:3b:c1:40:9c:5e:56:
35:14:cb:79:18:00:7a:48:18:58:0f:b6:0b:4d:04:
4b:26:e2:34:45:69:35:98:8a:c2:e8:98:2d:ef:80:
29:80:64:c7:47:73:06:8c:44:e0:bc:a0:26:aa:db:
83:86:d4:f2:66:0a:fa:a9:37:68:01:1e:00:f9:94:
fc:cb:93:f4:30:f1:5a:c4:49:75:70:38:da:ba:fd:
77:58:4f:62:cf:6d:22:bd:db:51:e8:fc:60:4c:b8:
35:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A7:40:70:C3:18:B7:E4:75:65:1E:94:B9:0A:FE:02:6E:DE:B7:77
X509v3 Authority Key Identifier:
keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:69:cf:5e:da:d0:a5:ac:9f:20:9c:ca:35:30:eb:8a:75:eb:
23:47:d1:17:38:d5:36:ab:18:a6:b8:a2:b1:1f:27:e1:ec:09:
68:3b:e1:52:b8:f8:c6:bf:31:0c:d7:0f:bd:82:7e:ae:e2:26:
6d:79:40:30:9f:49:5d:bc:bd:36:5a:c1:84:f1:a4:c1:82:23:
e5:ee:22:48:fa:52:ad:a3:99:67:62:b7:2c:14:85:d9:4c:82:
08:dc:fe:e4:a4:74:ff:b4:25:69:04:73:ae:94:0f:48:ba:0f:
85:32:7e:3b:8c:30:b8:74:64:68:7d:12:27:f2:a8:f9:25:44:
30:aa:02:bd:00:12:0e:d2:b9:cf:d5:72:39:23:f0:8f:86:55:
91:30:93:08:ad:70:75:02:d4:63:86:04:23:5d:16:f6:c8:6a:
96:03:57:d0:c1:20:73:15:a7:07:2f:ae:54:ac:92:73:4d:49:
ac:ec:82:c5:ec:0b:4f:76:5a:9a:ab:c1:ec:39:0c:3e:53:6c:
ae:f4:c3:2f:9c:ca:3d:11:1b:1c:ef:d6:d5:a8:db:f9:d4:b0:
f1:41:8c:5c:c4:5b:da:2e:68:2a:3a:34:92:67:2f:0e:4a:02:
c3:73:b6:c1:29:ca:08:16:b4:fa:08:77:63:e2:3d:fe:3c:9a:
83:53:bd:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:38:42 2025 by rpki-client