Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
File: u3zLGm47yrYxnTF_YsdL8eH0FHM.mft (raw, json)
Hash identifier: 8csg0GPD8DmJpsQukEWRKWgupoIQnloNLweLQNAxs8c=
Subject key identifier: 1A:28:D5:56:E0:F8:3F:21:AE:E3:DD:F8:8D:86:8A:3E:6A:A9:55:0B
Authority key identifier: BB:7C:CB:1A:6E:3B:CA:B6:31:9D:31:7F:62:C7:4B:F1:E1:F4:14:73
Certificate issuer: /CN=bb7ccb1a6e3bcab6319d317f62c74bf1e1f41473
Certificate serial: 019A3E015A95B3EC5507DF58074A4D5C81B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
Manifest number: 06D2
Signing time: Sat 01 Nov 2025 06:01:07 +0000
Manifest this update: Sat 01 Nov 2025 06:01:07 +0000
Manifest next update: Sun 02 Nov 2025 06:01:07 +0000
Files and hashes: 1: WziYZQTgG6uYWNEdvqwQxarVou4.roa (hash: K1TtQwXEcoMLvYVaawZdU+KIeSsRtPv5nA+Jxlzh0sU=)
2: u3zLGm47yrYxnTF_YsdL8eH0FHM.crl (hash: DfCMiLFokYFbW1dBLQKVfPWfbhQ+vUi8A+DfxzTXysM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Nov 2025 06:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:3e:01:5a:95:b3:ec:55:07:df:58:07:4a:4d:5c:81:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb7ccb1a6e3bcab6319d317f62c74bf1e1f41473
Validity
Not Before: Nov 1 06:01:07 2025 GMT
Not After : Nov 2 06:01:07 2025 GMT
Subject: CN=1a28d556e0f83f21aee3ddf88d868a3e6aa9550b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:66:62:e0:85:16:cf:b1:35:9c:43:b1:cd:77:
1c:b9:c5:2a:92:4e:c1:80:6f:e3:5e:68:62:3d:d5:
d3:7d:14:7c:77:08:17:76:9b:5a:8b:10:b9:d7:e7:
1c:ef:d4:91:b0:49:3e:f1:0f:9a:6c:ae:c0:9a:3a:
94:6a:73:cb:23:66:2c:11:16:01:93:15:e7:2b:4c:
bb:5d:c2:79:c3:8b:53:7b:f0:02:13:fd:6b:4a:de:
6c:78:6b:52:ef:15:4f:7f:48:6f:1a:b8:f9:69:25:
fc:07:44:f9:43:6d:87:ae:e1:5f:df:4b:e1:38:ce:
21:de:fc:48:a9:2b:98:a6:40:34:1c:35:08:a6:45:
13:ad:e2:a3:0a:39:e6:1b:d3:b6:b2:04:06:75:f7:
00:2f:9b:b6:1f:c4:93:70:a7:81:d4:e4:ba:7f:86:
c2:a3:40:ab:07:5a:ae:66:2e:f8:f4:06:34:6b:e3:
d7:db:8a:60:a3:76:09:dc:7f:67:fd:13:90:b0:e1:
67:4e:77:5c:32:4e:85:97:37:9b:22:0f:80:11:45:
99:a8:dc:7c:0a:86:16:d8:f6:b2:e9:36:d8:c3:69:
df:b6:87:3c:7d:ae:fe:2c:51:69:5d:23:ff:3b:c5:
bc:2b:98:e5:14:43:68:0b:0e:2a:85:4f:eb:53:e8:
cf:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:28:D5:56:E0:F8:3F:21:AE:E3:DD:F8:8D:86:8A:3E:6A:A9:55:0B
X509v3 Authority Key Identifier:
keyid:BB:7C:CB:1A:6E:3B:CA:B6:31:9D:31:7F:62:C7:4B:F1:E1:F4:14:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:86:0f:9c:23:3e:65:6b:35:d6:bb:13:91:b8:41:a5:92:10:
a7:f7:29:f0:b0:22:26:f2:2a:0f:5f:5e:ce:91:98:bb:f4:21:
c4:cc:c5:2f:6d:43:95:60:ca:33:07:60:4f:bb:6a:ef:ed:9b:
dd:d6:18:09:a5:d8:0e:57:f6:7d:fc:2b:50:29:31:bb:28:cd:
66:36:d9:3f:31:44:56:aa:c1:52:85:e0:3d:09:a3:44:21:a6:
8f:2a:c0:3c:7b:8c:80:46:8d:45:c4:03:10:b2:de:c7:15:89:
62:35:f8:47:03:92:7f:79:43:57:3c:a7:b8:39:6c:ac:69:58:
f9:23:b4:d7:95:17:c1:9b:78:5b:97:b5:81:f1:1c:41:60:07:
4a:e5:be:4b:94:b1:a7:bf:da:11:5c:cf:25:17:01:65:37:46:
e5:e9:64:a2:fb:0c:19:16:9b:04:56:1a:50:9b:4d:24:ac:32:
5e:44:4a:0d:b2:9c:ed:10:3d:23:67:46:f6:77:36:6c:5a:64:
e6:91:bd:f1:fd:21:63:8a:b0:fa:91:e5:6a:d6:f0:fe:fb:7e:
7e:00:ae:41:bb:cf:0e:1e:51:54:04:46:bb:61:d9:80:f8:96:
2a:43:53:b4:51:44:41:f0:68:00:02:94:fc:c6:09:6d:71:e2:
80:5d:68:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 1 14:25:18 2025 by rpki-client