Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
File: U6i3vKixHSeFDpGMpZlmmIAWKSk.mft (raw, json)
Hash identifier: X9wka6iLw88nz5m/etwNh5INCtAwAS2jtqI9xNWpsfM=
Subject key identifier: 7C:A3:03:1A:FA:86:D9:AA:4D:D0:2A:65:B3:80:41:45:BE:A0:09:35
Authority key identifier: 53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
Certificate issuer: /CN=53a8b7bca8b11d27850e918ca599669880162929
Certificate serial: 01988F2250EE847DAB7E764B2DFE3EED39C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
Manifest number: 0235
Signing time: Sat 09 Aug 2025 14:00:47 +0000
Manifest this update: Sat 09 Aug 2025 14:00:47 +0000
Manifest next update: Sun 10 Aug 2025 14:00:47 +0000
Files and hashes: 1: U6i3vKixHSeFDpGMpZlmmIAWKSk.crl (hash: 5mHbrMs3dX3qYLoTbazpXVf92jJrgXb/Z29SoIxYkP4=)
2: qST1YzpfG0Aj9HfkTwxj9U8CUhI.roa (hash: wruCCghr0kJqtbuyZdJFoTZhRH+nhRjwzTxdaCBX4hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:22:50:ee:84:7d:ab:7e:76:4b:2d:fe:3e:ed:39:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a8b7bca8b11d27850e918ca599669880162929
Validity
Not Before: Aug 9 14:00:47 2025 GMT
Not After : Aug 10 14:00:47 2025 GMT
Subject: CN=7ca3031afa86d9aa4dd02a65b3804145bea00935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c4:ec:c3:10:cf:02:3a:c7:91:a6:b9:00:6e:
69:22:eb:b8:f5:41:72:68:7e:d4:92:4e:d4:38:54:
a0:cf:53:2a:6b:0a:b3:4e:8a:31:d8:1e:00:6a:d6:
3b:d9:d2:7f:08:e0:0f:67:af:9a:64:4d:2b:3d:95:
bd:91:f5:04:40:17:28:c0:56:fa:ea:2d:0d:f0:6b:
c5:c6:ae:c1:be:38:37:83:37:af:d6:c5:2d:5a:10:
db:65:d1:ee:74:22:09:9b:e1:ec:0a:81:0f:c2:f4:
e2:84:0d:2a:df:b4:e4:85:c7:3f:93:4f:c1:5f:f9:
49:d9:28:8f:59:04:03:69:1b:60:6e:ad:65:0e:00:
40:1d:55:15:b0:51:20:11:08:2e:13:51:01:4f:c9:
5b:ee:b7:12:65:cc:e9:b4:a9:a1:ea:bf:dd:a3:f4:
69:16:f0:09:95:fb:20:1d:bc:54:a4:98:c5:0b:92:
bd:fe:79:46:6b:1d:07:8c:dc:6a:f9:39:2c:12:c4:
a3:0a:07:c9:22:d3:74:5e:e3:c7:0c:29:71:b2:cf:
bc:b2:c8:57:f5:59:ba:22:a5:1a:9c:13:e2:27:b8:
63:e3:46:5d:7d:47:10:e6:07:06:45:4e:9a:db:e5:
14:f6:66:29:7c:96:0d:a6:c8:60:38:81:37:6d:d2:
8b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A3:03:1A:FA:86:D9:AA:4D:D0:2A:65:B3:80:41:45:BE:A0:09:35
X509v3 Authority Key Identifier:
keyid:53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:ad:72:c6:cb:7c:bc:36:91:a0:c7:4a:77:27:ed:de:1f:7e:
5d:94:dd:d1:ef:22:e4:2d:84:f7:ee:8e:b5:f7:be:75:6b:b4:
9f:47:21:4c:dd:e8:41:89:74:c0:de:d6:7d:06:ee:cd:6f:9b:
a0:9d:c6:de:37:08:10:21:26:5f:1c:18:2b:6e:b4:d2:01:15:
d5:4f:80:90:5f:30:dc:11:fb:02:d5:52:fc:80:97:3a:33:7c:
a2:3b:40:4d:bb:28:14:e1:fc:6e:a0:60:95:79:8d:de:aa:b2:
db:e7:70:8b:87:df:8e:58:ef:15:94:58:b5:72:75:fe:92:4f:
9e:10:ff:b9:03:35:88:45:1e:c9:27:97:70:85:bb:77:6e:17:
0c:8c:a2:4c:07:06:50:50:7f:63:81:56:2f:7c:09:64:13:91:
c8:1e:87:2d:e0:54:cb:dc:0f:b7:a5:82:f8:60:4d:7e:e8:42:
13:38:e8:61:1a:de:da:28:07:7d:11:6e:4e:1a:1c:5a:15:5d:
9a:59:4b:79:9f:3c:4d:42:f5:92:9c:b3:55:b2:60:45:c8:07:
9f:c5:16:f3:84:bb:f6:53:04:ac:cf:78:22:a7:99:17:d9:80:
c3:7f:eb:79:bb:b0:5a:11:f4:02:81:eb:c0:a7:bf:d1:cc:43:
1a:7b:2f:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:48:49 2025 by rpki-client