Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json)
Hash identifier: TUuRuv2rASD0eJBgWBx4ksL82lCqaQSI3pRA4pN3Jd0=
Subject key identifier: 2C:15:E6:70:A1:52:99:2C:06:7A:C3:36:73:DE:08:C6:86:1B:FD:E1
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: 0197481E81FFD44B6FDDC21FB5B605479CAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
Manifest number: 0C52
Signing time: Sat 07 Jun 2025 02:00:48 +0000
Manifest this update: Sat 07 Jun 2025 02:00:48 +0000
Manifest next update: Sun 08 Jun 2025 02:00:48 +0000
Files and hashes: 1: GZldOEJkrutoTjn3MQnXcf09taM.roa (hash: vlltg4veeHpXkbEneS2WFuhIZv9HwJeSmQM3GzCbD1k=)
2: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: gJaIys80V6QSoHcqRhXcidQsz7t1SZV749I3FJU7YbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:81:ff:d4:4b:6f:dd:c2:1f:b5:b6:05:47:9c:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: Jun 7 02:00:48 2025 GMT
Not After : Jun 8 02:00:48 2025 GMT
Subject: CN=2c15e670a152992c067ac33673de08c6861bfde1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:84:b9:f6:0c:69:f6:07:67:44:56:df:66:11:
30:18:94:7a:9d:d3:f0:98:17:c8:31:7e:93:22:8b:
03:1e:19:2e:13:7b:b3:7f:b4:59:47:66:cd:1b:17:
01:ad:8d:d3:a3:2b:dd:3f:ea:4c:28:ec:22:b2:d9:
75:8c:7b:24:a4:55:d5:26:65:e4:20:59:6c:ff:30:
11:0a:85:77:84:4e:9d:89:d1:b4:55:1f:3a:5d:c1:
70:ae:78:01:81:41:2c:82:38:41:88:83:6e:86:10:
9b:16:23:00:f5:15:60:87:31:d4:33:28:ec:21:b4:
41:e3:f1:92:f2:02:ad:1d:26:df:b1:5d:fc:9b:8d:
22:8c:c3:e9:ab:17:57:5c:8e:3c:0e:9d:d2:b4:20:
34:86:d7:aa:77:8e:67:d1:3f:6c:2b:98:ad:d4:12:
5c:d8:ae:a2:22:30:60:86:c0:b2:ab:c8:75:d6:40:
2c:11:23:bd:73:98:af:16:15:74:1e:0f:cd:df:40:
59:fc:1c:a1:8c:09:a4:bc:b6:ca:f3:e9:11:c4:be:
d5:f5:1f:ef:d6:89:ec:72:1c:15:eb:f9:94:13:78:
ac:b6:b3:db:71:dc:36:31:58:6d:d1:db:e9:4c:9b:
ce:d2:c7:d1:ec:6f:9e:60:15:17:9d:71:00:43:aa:
b9:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:15:E6:70:A1:52:99:2C:06:7A:C3:36:73:DE:08:C6:86:1B:FD:E1
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:63:94:1f:1e:6e:c4:11:b0:5e:e9:f6:8d:d8:fb:df:d7:1f:
b2:c2:16:47:97:c0:35:c4:3f:9d:d4:8a:fb:a2:a3:1a:63:b9:
cc:46:f9:c5:82:f6:23:b5:f6:3c:7d:6a:80:53:b9:40:11:4e:
bd:0f:f8:93:cd:27:19:b7:a5:6b:85:68:82:69:5a:32:bb:bf:
b8:c5:e3:23:51:e1:d9:af:50:43:39:2b:b2:c4:bb:c8:f0:26:
6f:50:1f:3c:85:3e:bf:22:3c:0d:f9:f5:91:11:0c:a4:81:0f:
23:cb:87:95:2d:02:d8:c4:9c:70:06:7c:0c:ef:70:0a:6e:fb:
21:46:aa:29:8b:e3:83:5e:22:42:21:6f:79:0a:7e:03:67:ec:
5d:02:99:f6:85:47:c8:cb:35:5f:41:73:da:99:d9:81:2f:eb:
a2:49:fc:ae:1a:4d:b7:a6:a2:6e:37:60:ab:36:6e:b2:04:15:
f6:c6:c1:02:41:22:96:f6:d2:43:53:62:2a:36:2f:8d:5a:90:
21:8f:34:63:55:5b:9a:e6:5b:1e:2f:de:e6:d8:5b:45:31:bc:
8a:fe:b6:e8:90:e0:74:26:a1:b6:af:ec:65:b2:76:7c:37:47:
c3:50:f2:f6:21:f9:92:84:e6:61:ee:24:26:9b:6c:ce:2a:f5:
20:48:d7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:06:33 2025 by rpki-client