Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json)
Hash identifier: E0BV5VF/SQE0uGxyhh8pzQAqA+ZKtXgfO2UVlwsccxg=
Subject key identifier: DA:9B:C3:DE:A2:68:1A:04:F2:9C:E6:0B:97:58:DC:EE:D1:24:A1:32
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: 019A71134D470DC907091CA1C9750A0B46A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
Manifest number: 0DF5
Signing time: Tue 11 Nov 2025 04:01:21 +0000
Manifest this update: Tue 11 Nov 2025 04:01:21 +0000
Manifest next update: Wed 12 Nov 2025 04:01:21 +0000
Files and hashes: 1: GZldOEJkrutoTjn3MQnXcf09taM.roa (hash: vlltg4veeHpXkbEneS2WFuhIZv9HwJeSmQM3GzCbD1k=)
2: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: O2Gr1FywxPVK7hOiG9MFWKSOdMCcJvtaGpw3vOEeg/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:4d:47:0d:c9:07:09:1c:a1:c9:75:0a:0b:46:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: Nov 11 04:01:21 2025 GMT
Not After : Nov 12 04:01:21 2025 GMT
Subject: CN=da9bc3dea2681a04f29ce60b9758dceed124a132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:eb:05:e8:77:99:5f:b5:6b:19:9c:1c:9a:6f:
d2:02:06:c0:7f:c6:ba:5b:5f:f1:33:75:82:6a:ea:
13:fb:b1:c5:23:fa:15:c0:a9:61:b7:da:3e:c3:74:
42:17:5d:11:1d:35:86:a1:68:d3:ab:61:6a:a1:72:
a2:f1:a1:81:42:f5:cf:e8:77:d0:63:5d:d8:6d:b8:
6d:28:d0:a8:02:a5:31:e6:21:4f:1a:2b:4a:dc:7e:
ab:0c:db:ce:2c:a8:9b:8a:7a:62:61:e0:d4:9f:04:
61:ce:41:05:51:5b:98:6c:44:d7:51:f4:44:f9:3d:
3e:25:48:a0:49:2d:b7:eb:5c:ee:db:c0:eb:ec:79:
06:70:ab:4a:8a:d6:a7:9e:99:1b:72:19:96:fe:f3:
4c:1f:57:3a:eb:09:b4:95:1d:e0:3e:b6:f0:ab:38:
9b:09:23:88:e4:24:7f:f8:46:b6:dd:f9:65:cc:bc:
46:01:9f:0e:f4:02:de:d5:2c:88:07:78:a3:4f:cd:
3c:8b:4a:f8:a0:9d:fe:75:4f:78:03:dc:3c:66:ff:
ad:93:fd:b7:e5:f8:4e:6a:8a:56:7b:0d:46:a0:ba:
10:27:d9:db:66:b5:be:15:3c:35:ec:f6:d9:98:e8:
e1:da:39:74:05:45:67:63:e3:fd:69:b1:a2:0a:8a:
c0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:9B:C3:DE:A2:68:1A:04:F2:9C:E6:0B:97:58:DC:EE:D1:24:A1:32
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:99:94:c7:01:3e:33:d7:88:3c:49:36:eb:44:d1:97:79:9b:
9c:e3:1d:74:1b:e3:d3:e6:35:b2:58:ac:78:c4:00:3e:b8:08:
57:21:5a:b4:fb:e8:84:07:27:e2:29:33:e3:41:9c:4e:8e:64:
f8:90:03:01:c9:7f:e6:a4:d6:61:28:d7:c0:50:8b:7b:a3:8d:
75:b4:87:2e:ff:e2:94:d3:d1:f0:8e:a3:29:40:58:a6:70:45:
7e:2f:f3:6a:ce:02:19:d7:1e:30:b1:3d:b9:60:d9:54:ff:60:
77:ee:15:75:00:08:3f:eb:7a:1e:41:dd:e5:5e:f8:b4:00:3c:
4a:64:92:13:e5:49:68:68:24:ba:90:2f:ed:94:3d:52:4a:1e:
1c:84:2d:80:ba:40:11:b8:fd:cc:d5:65:64:6a:07:22:ef:b6:
02:0b:e5:67:7b:5f:42:84:2a:57:86:2c:42:ae:49:39:7d:9c:
41:d0:7a:f0:c5:9f:6e:a8:0f:a9:8b:87:fd:58:a0:d8:8c:5c:
85:14:42:df:50:54:5a:22:1f:20:aa:8d:41:54:84:00:81:79:
fa:ea:a6:69:14:a1:a9:48:8e:54:90:1f:8c:2e:31:7a:0a:64:
3d:31:a0:82:ba:ef:7e:4e:94:dd:ac:9b:20:6c:88:64:13:47:
d2:4d:cb:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxE01HDckHCRyhyXUKC0aiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYTg0YjUyM2RmZTMyYjhhODliOWNkZDMwYTlmODcxMTAw
N2ZkYjkwHhcNMjUxMTExMDQwMTIxWhcNMjUxMTEyMDQwMTIxWjAzMTEwLwYDVQQD
EyhkYTliYzNkZWEyNjgxYTA0ZjI5Y2U2MGI5NzU4ZGNlZWQxMjRhMTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOsF6HeZX7VrGZwcmm/SAgbAf8a6
W1/xM3WCauoT+7HFI/oVwKlht9o+w3RCF10RHTWGoWjTq2FqoXKi8aGBQvXP6HfQ
Y13YbbhtKNCoAqUx5iFPGitK3H6rDNvOLKibinpiYeDUnwRhzkEFUVuYbETXUfRE
+T0+JUigSS2361zu28Dr7HkGcKtKitannpkbchmW/vNMH1c66wm0lR3gPrbwqzib
CSOI5CR/+Ea23fllzLxGAZ8O9ALe1SyIB3ijT808i0r4oJ3+dU94A9w8Zv+tk/23
5fhOaopWew1GoLoQJ9nbZrW+FTw17PbZmOjh2jl0BUVnY+P9abGiCorA5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNqbw96iaBoE8pzmC5dY3O7RJKEyMB8GA1UdIwQY
MBaAFFOoS1I9/jK4qJuc3TCp+HEQB/25MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTZoTFVqMy1NcmlvbTV6ZE1LbjRjUkFIX2JrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8wN2UxMDUtNTY4MC00MGFhLThjOWQt
MGQ2NmM3NWIwMjZkLzEvVTZoTFVqMy1NcmlvbTV6ZE1LbjRjUkFIX2JrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy8wN2UxMDUtNTY4MC00MGFhLThjOWQtMGQ2NmM3NWIwMjZk
LzEvVTZoTFVqMy1NcmlvbTV6ZE1LbjRjUkFIX2JrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOpmUxwE+
M9eIPEk260TRl3mbnOMddBvj0+Y1sliseMQAPrgIVyFatPvohAcn4ikz40GcTo5k
+JADAcl/5qTWYSjXwFCLe6ONdbSHLv/ilNPR8I6jKUBYpnBFfi/zas4CGdceMLE9
uWDZVP9gd+4VdQAIP+t6HkHd5V74tAA8SmSSE+VJaGgkupAv7ZQ9UkoeHIQtgLpA
Ebj9zNVlZGoHIu+2AgvlZ3tfQoQqV4YsQq5JOX2cQdB68MWfbqgPqYuH/Vig2Ixc
hRRC31BUWiIfIKqNQVSEAIF5+uqmaRShqUiOVJAfjC4xegpkPTGggrrvfk6U3ayb
IGyIZBNH0k3Lsg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:10:53 2025 by rpki-client