Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
File: U4Vcjs6b1vjjlAICISzgmwX1-KA.mft (raw, json)
Hash identifier: 1vTejym35yGSRygilmjkxvASminEyK5bT2TrUq9Quz8=
Subject key identifier: 61:FA:54:41:54:4F:2B:7E:B1:7E:F0:89:75:49:B4:92:55:E6:B0:4F
Authority key identifier: 53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
Certificate issuer: /CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Certificate serial: 01991C8A3A56B457D595ECFEDAF0292B7D71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
Manifest number: 1301
Signing time: Sat 06 Sep 2025 01:00:44 +0000
Manifest this update: Sat 06 Sep 2025 01:00:44 +0000
Manifest next update: Sun 07 Sep 2025 01:00:44 +0000
Files and hashes: 1: F1LbGv2MkXWWefxkT_CtpriNBr4.roa (hash: RRHmy9X/CGJW+TnFMQF3NirLVJyyI3P64OOzvqQr238=)
2: U4Vcjs6b1vjjlAICISzgmwX1-KA.crl (hash: FePedqO0PEwBX6qF6wlB/T1UHFEuJTCl/tV53GM1sLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 01:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1c:8a:3a:56:b4:57:d5:95:ec:fe:da:f0:29:2b:7d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Validity
Not Before: Sep 6 01:00:44 2025 GMT
Not After : Sep 7 01:00:44 2025 GMT
Subject: CN=61fa5441544f2b7eb17ef0897549b49255e6b04f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:36:48:1c:b0:ba:06:d3:64:cb:df:f6:d9:3d:
a0:8b:4f:62:d6:5a:2c:58:25:fc:4a:e5:fa:a5:b8:
46:e4:8c:51:2c:80:f0:84:08:19:63:14:50:e8:a4:
2f:f4:d1:6f:2c:08:9e:83:5f:ea:18:bd:d9:92:ac:
40:c0:66:95:da:d0:1e:16:aa:8e:fe:3f:16:b2:6a:
f2:56:a5:cc:db:c8:da:aa:ad:a9:3b:ba:1f:11:90:
ae:a9:5f:68:ac:5e:6f:80:fd:77:e2:99:40:cd:19:
72:1d:79:9b:54:04:4b:dc:15:e0:3e:47:64:52:74:
11:7e:87:9a:b0:b6:4f:f5:e7:6f:d7:46:05:fe:34:
a2:06:7a:9e:a0:6a:de:47:8d:7b:c2:70:b8:d1:30:
79:c0:2d:d7:98:8a:a5:d6:5c:90:6d:a5:6f:8a:60:
b6:45:ea:d7:d9:db:a6:02:13:b6:26:87:e0:29:a0:
0e:9a:fb:c0:29:2c:87:17:74:ad:ad:b9:ca:18:ab:
a2:3d:56:76:c0:d0:bc:ec:83:d3:8e:7a:ad:67:e7:
f2:3b:a6:a3:58:e7:db:f5:50:cb:80:b1:b3:73:8e:
9b:37:fc:0f:80:06:84:21:7c:c2:4f:1a:3c:5c:7a:
96:b3:ac:56:04:df:d2:04:c5:3d:da:2e:9f:5d:d9:
87:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:FA:54:41:54:4F:2B:7E:B1:7E:F0:89:75:49:B4:92:55:E6:B0:4F
X509v3 Authority Key Identifier:
keyid:53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:34:f4:90:2d:db:ff:12:51:0b:ff:d5:82:e1:cf:dd:54:c7:
01:4e:7e:a5:4c:a4:c9:7e:2d:6c:16:68:cf:3c:50:a0:3c:f5:
66:ca:84:84:87:37:f1:67:8c:16:d3:e4:58:05:22:11:58:34:
d8:f7:d1:5f:87:2e:c3:98:d6:ee:f8:57:9b:a8:99:ea:d6:be:
05:10:78:13:bc:7f:23:b1:2d:37:46:e4:af:4e:cd:07:06:25:
b9:48:ad:39:a1:90:86:e0:84:61:b4:e6:9a:d0:9a:ea:2e:a1:
58:66:dd:08:c9:89:ab:23:2d:12:08:55:68:ad:dd:ad:04:01:
a4:50:03:e5:c5:47:83:d0:f0:9e:9f:c6:4c:29:0e:8a:4f:2f:
99:7a:4c:0e:05:55:f3:0a:6f:21:31:58:ba:6c:03:9c:23:44:
6e:74:80:13:90:39:ff:66:59:63:d3:21:62:b0:74:30:7e:20:
f4:af:df:1e:fa:88:0d:fd:26:6a:6b:45:f1:c4:d3:87:43:9a:
5a:86:40:70:01:d6:47:c0:b5:ae:b1:9e:af:d6:5c:3a:fb:a5:
21:52:4c:db:18:c4:e7:fb:d2:31:dd:9c:f6:2f:53:56:3c:04:
86:db:a0:0b:35:2c:6a:7a:fc:3e:3a:bc:33:81:dd:f9:ce:86:
d1:bb:e4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 05:05:54 2025 by rpki-client