Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: /P6U86me0MyoHIWdsa7DJ+zQAQMPUOAbw9SYIp7q1bU=
Subject key identifier: CC:14:48:A1:00:10:FE:68:2A:04:7B:EE:40:1B:36:EC:C9:B5:A4:69
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 01988656424D5ED104E43794C117C01E77EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 0600
Signing time: Thu 07 Aug 2025 21:00:56 +0000
Manifest this update: Thu 07 Aug 2025 21:00:56 +0000
Manifest next update: Fri 08 Aug 2025 21:00:56 +0000
Files and hashes: 1: AlkZJ5y5SgK5NicIMpQu5G4y-kk.roa (hash: 6pDsa6TgLwnLkjOOWWhXhHFWrv8bvlopmayBUNqycZY=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: 8uiKFoopgQNUs8my/Sg0Oyl3SJd3tYdl3QFU6St5KZk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:86:56:42:4d:5e:d1:04:e4:37:94:c1:17:c0:1e:77:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Aug 7 21:00:56 2025 GMT
Not After : Aug 8 21:00:56 2025 GMT
Subject: CN=cc1448a10010fe682a047bee401b36ecc9b5a469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:24:a6:15:a7:27:67:44:f2:91:d7:1a:1c:06:
38:6b:af:99:62:97:c6:98:a8:77:45:71:d1:4b:ae:
ca:0a:98:59:53:8b:33:c1:fe:54:83:6f:77:50:f3:
fb:2e:f4:37:37:d7:c3:98:d4:2a:f0:5f:f0:c5:01:
9b:4c:48:09:cb:86:3f:bb:c8:74:c2:1e:2b:94:98:
1f:91:e0:61:4b:8d:4b:ff:0f:87:af:8c:9a:52:49:
dc:8f:46:77:d1:83:ee:b4:fc:cc:b9:a2:ce:23:d7:
98:eb:31:34:bb:7d:cd:fc:78:bb:a5:47:39:b7:5f:
4a:82:6e:4d:77:eb:a6:09:6e:08:64:ef:72:9e:ac:
f6:cd:49:26:c5:53:ee:1a:a0:e4:d3:66:20:6a:5d:
67:e3:89:a9:a1:ff:21:3c:7a:c9:47:5c:d7:59:92:
c6:b4:63:64:ca:9f:44:3e:4a:e2:9a:fd:79:97:cc:
ce:31:68:31:0b:4f:09:1c:bf:85:2e:42:42:48:6b:
44:3f:fd:5f:38:50:c4:9f:66:c8:b4:2a:01:53:de:
21:e2:a9:34:ee:66:85:ea:e1:64:b3:92:db:dc:2c:
dd:b6:90:eb:a5:1f:a2:67:bd:d1:c8:22:c6:be:ef:
47:a0:d7:45:46:dd:23:9c:25:e6:47:08:ea:2e:97:
e6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:14:48:A1:00:10:FE:68:2A:04:7B:EE:40:1B:36:EC:C9:B5:A4:69
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:ff:3a:4a:09:9c:a5:21:ac:43:c0:e8:07:dd:34:cd:bf:e7:
c1:ee:a5:b4:dd:be:4a:c5:b0:90:53:ef:40:3e:ab:ae:b9:e7:
ea:de:51:42:3e:64:99:49:29:14:84:6a:90:bd:ba:89:4c:89:
92:4b:1e:e2:b7:2c:f0:a8:57:d4:0f:5e:30:a3:53:78:e2:e4:
64:e6:41:63:5d:a2:1c:1b:f4:17:53:da:c8:d1:ed:5b:1d:f4:
1c:90:42:31:34:ed:12:98:c1:49:f3:99:bf:6a:22:9b:11:6d:
3d:fa:04:af:71:71:3b:28:07:29:82:80:34:3c:9e:11:7f:c0:
ad:1e:08:f5:96:3c:26:69:26:1b:10:a5:e6:a5:2b:18:a9:c3:
d8:28:fc:f9:80:01:49:c4:fd:d4:e2:69:62:27:0f:f0:7c:52:
e1:32:6b:4e:e4:6c:58:52:f5:ad:7c:99:7c:a0:32:1d:53:67:
b6:69:fd:0e:0b:83:db:ee:67:0f:a1:01:b0:a0:3d:4c:eb:de:
27:5b:17:39:1c:04:0b:4a:6e:47:9f:4d:3d:ab:92:bf:f8:e3:
81:b8:f4:70:f6:e4:b4:60:ae:b6:62:cf:ed:d9:92:57:07:be:
9f:88:af:78:c2:34:04:a2:e9:96:a7:4a:a0:47:e9:1b:db:7b:
be:e4:c5:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:34:28 2025 by rpki-client