Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
File: U170D69INDOz4zaY5NHulfPJS-w.mft (raw, json)
Hash identifier: 8PxWb3s41q9FNCGVzdKTHuVl8/0U4iXn1QOL/UKxrWE=
Subject key identifier: 19:C0:63:E9:4C:E2:62:B5:3F:42:9E:E0:F5:7F:35:EA:09:89:AC:EA
Authority key identifier: 53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
Certificate issuer: /CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Certificate serial: 019873E22C4C87FB94397CFC3FEFF6CB6BBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
Manifest number: 1616
Signing time: Mon 04 Aug 2025 07:00:58 +0000
Manifest this update: Mon 04 Aug 2025 07:00:58 +0000
Manifest next update: Tue 05 Aug 2025 07:00:58 +0000
Files and hashes: 1: U170D69INDOz4zaY5NHulfPJS-w.crl (hash: 0cLpHEsxKYfbYHGg5XA2knG3lWcaWT/hfhrowHctncY=)
2: a9R4a72Ce3HtrFyUZj2Jrpn9DLE.roa (hash: lEQCssDpqykyZtTNm3b2/t+M2Xlx2R2hbaDbanTEKE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:2c:4c:87:fb:94:39:7c:fc:3f:ef:f6:cb:6b:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535ef40faf483433b3e33698e4d1ee95f3c94bec
Validity
Not Before: Aug 4 07:00:58 2025 GMT
Not After : Aug 5 07:00:58 2025 GMT
Subject: CN=19c063e94ce262b53f429ee0f57f35ea0989acea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:53:09:56:5e:84:06:0d:7e:28:31:22:ad:21:
85:5b:fe:f6:27:86:4c:d7:ff:c1:31:97:5f:79:77:
14:d7:9b:10:bb:80:28:7d:85:69:e4:ff:28:b8:24:
c9:fa:04:92:93:ed:fd:7d:7f:71:a2:57:9f:43:7c:
87:e0:29:69:f7:87:58:a8:d7:85:e8:44:76:00:5d:
6b:de:93:a3:13:40:b4:22:84:b3:d7:fa:ec:d3:28:
69:9b:b0:ed:1c:ae:67:ae:42:23:49:8d:92:ca:86:
fa:26:5f:39:35:33:00:43:bb:9e:7f:0b:4c:b3:ec:
dc:a5:21:67:e0:bf:a5:78:dd:cb:86:09:5b:1e:de:
5b:c9:d7:c5:95:fd:cd:84:ae:ff:d6:7b:00:a1:a3:
1a:9c:12:b4:d2:2c:fa:47:b7:73:d3:a8:02:b2:4f:
83:37:e0:86:7e:94:5a:8c:33:2f:a0:f8:52:19:0f:
d8:16:cf:50:24:f9:60:91:e6:2b:fe:cf:1c:6d:07:
6e:ae:74:79:4a:ca:09:30:fe:bb:87:23:f8:91:cd:
ce:2f:54:04:ae:ba:3e:f3:a0:f9:00:34:5f:b8:12:
28:83:c6:50:e1:52:4c:2e:cd:9c:bd:2d:b1:47:70:
e1:e3:f4:c7:de:d3:f3:25:ca:34:70:a1:dc:ec:bf:
ec:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:C0:63:E9:4C:E2:62:B5:3F:42:9E:E0:F5:7F:35:EA:09:89:AC:EA
X509v3 Authority Key Identifier:
keyid:53:5E:F4:0F:AF:48:34:33:B3:E3:36:98:E4:D1:EE:95:F3:C9:4B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U170D69INDOz4zaY5NHulfPJS-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/77a9f1-f1fb-485f-923f-7c3789405bd6/1/U170D69INDOz4zaY5NHulfPJS-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:9b:c5:2a:fc:0f:34:9d:87:74:a4:b8:0f:35:26:ee:43:67:
3f:ad:08:e4:eb:bb:91:17:4d:c2:cf:cf:f0:dd:ed:57:97:9d:
c9:4f:71:09:be:fb:af:eb:46:c6:6d:d7:55:14:1c:7a:ba:e7:
66:24:80:52:ef:25:80:d9:6d:4e:d3:b5:f2:4e:d3:da:f9:93:
ca:5d:a3:b8:38:76:6b:8b:17:cd:ac:58:04:e8:46:14:d3:8b:
c6:94:44:a2:4b:38:f0:89:0d:6d:4b:18:78:f9:68:94:c7:76:
52:36:a7:66:ba:48:30:c5:1b:e0:e3:af:28:91:7f:0e:c9:37:
e3:56:14:f3:10:10:31:fb:8a:2f:e6:3e:ba:90:af:44:7b:5f:
67:5d:60:0f:f0:ae:e1:60:52:50:6d:06:e6:4a:35:15:8c:47:
a0:e3:f0:bb:bf:12:10:2b:45:0c:e6:78:82:4f:a3:ca:a2:2a:
94:94:b0:3a:de:96:a4:51:92:84:12:6b:cd:43:9e:e6:56:75:
af:44:bc:a7:dc:d4:d5:9e:cf:57:3e:cf:8a:9a:54:a9:95:4f:
18:61:37:e6:2e:2b:58:66:fa:71:62:57:9e:90:48:54:c0:64:
81:63:0f:36:95:59:16:93:f5:82:78:9c:51:ec:30:67:7c:ff:
b5:41:1d:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:00:29 2025 by rpki-client