Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: RGnKDyHkorsep7psun7gf5sJ1r5K/ISVeChlaHYS/fI=
Subject key identifier: 63:FE:4D:31:25:84:DF:43:E9:74:59:90:60:92:16:A6:F8:87:7E:9C
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 019A50070CA77891043FD4C5DB1CB85B35F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 06ED
Signing time: Tue 04 Nov 2025 18:00:30 +0000
Manifest this update: Tue 04 Nov 2025 18:00:30 +0000
Manifest next update: Wed 05 Nov 2025 18:00:30 +0000
Files and hashes: 1: AlkZJ5y5SgK5NicIMpQu5G4y-kk.roa (hash: 6pDsa6TgLwnLkjOOWWhXhHFWrv8bvlopmayBUNqycZY=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: cThLYzJ6UWiFg8aUi7jMuMiYpb1G20DtDokBdv4o/Rc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:07:0c:a7:78:91:04:3f:d4:c5:db:1c:b8:5b:35:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Nov 4 18:00:30 2025 GMT
Not After : Nov 5 18:00:30 2025 GMT
Subject: CN=63fe4d312584df43e9745990609216a6f8877e9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:65:98:ec:ea:32:ad:6a:8f:62:14:94:b0:b5:
52:07:26:a5:8c:dd:a0:bf:ae:37:ef:0c:9d:87:67:
d9:b9:86:8d:42:7a:04:9b:4c:fa:36:c1:cd:ea:1a:
af:67:fc:31:e0:05:78:c0:54:3a:7f:00:11:2d:18:
09:ab:3e:62:68:13:1f:e9:58:0e:05:c6:5c:d0:41:
97:fc:1a:39:82:5d:33:55:2c:3b:a5:b0:f0:41:8d:
05:65:f9:25:72:bb:86:db:14:92:b9:97:15:5d:54:
be:31:b6:fc:62:0a:2a:e6:be:72:b0:0c:9a:0c:c5:
4c:3c:97:ad:de:e9:3f:16:10:8c:96:30:fe:04:28:
b6:8b:88:3a:38:3f:1e:2b:7e:b6:4f:5e:51:85:fa:
07:3a:4b:9b:6a:75:43:37:8a:8b:cd:39:dd:fd:8a:
e8:0e:2d:ae:c1:26:55:76:cf:4c:4f:24:c1:d9:bf:
c2:6e:24:04:bd:b3:f1:b5:80:08:06:7f:7d:5d:71:
fa:76:57:2f:87:bf:c0:07:11:5b:dc:2f:ae:2f:82:
f7:38:e1:6e:24:4c:c7:15:13:dc:d6:fc:af:74:3e:
5f:8b:df:e3:ad:7d:81:37:2e:45:2e:42:90:9f:42:
73:4c:e0:af:d2:b0:b4:1f:b4:d0:d4:d2:43:81:76:
2c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:FE:4D:31:25:84:DF:43:E9:74:59:90:60:92:16:A6:F8:87:7E:9C
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:a2:7b:50:a9:51:01:81:e2:ad:04:b4:dd:3c:25:94:69:d5:
c4:7c:71:81:3f:cc:ed:e9:c5:3e:b8:b3:11:d9:58:20:f7:61:
e4:40:41:26:d3:03:a2:20:8f:a3:1d:73:44:99:af:44:fd:72:
03:b3:59:72:64:a3:d9:d4:14:72:07:e3:ed:99:84:b0:92:91:
cc:be:78:f9:9c:86:72:72:11:f7:33:e6:7f:6c:b4:56:13:1d:
13:ab:84:b6:6d:cd:ea:19:ab:48:c3:76:1f:81:98:27:ed:9a:
1f:99:90:8f:94:8d:20:de:82:dd:94:95:f6:4e:15:27:56:c5:
bc:65:72:31:c3:64:86:54:a9:f1:ad:ca:29:29:15:4e:b7:d6:
95:e7:5e:18:80:d8:92:d9:5e:be:37:cf:8d:9d:db:3a:36:bf:
f5:14:b9:a5:7e:76:73:c4:75:e2:32:21:15:dc:44:db:86:88:
fe:ff:6f:d8:bd:28:1c:b7:cb:4c:e4:48:ad:89:b9:ba:b6:1d:
ef:e7:66:7d:b4:2f:94:2b:ee:d4:9a:22:a5:03:16:dd:d0:db:
36:e4:2d:e0:28:9c:a3:7d:17:13:e3:33:99:7d:46:76:c4:fb:
0c:f8:d0:15:88:0d:2a:64:05:80:74:c8:0d:68:6f:81:ef:51:
e1:51:39:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:54:37 2025 by rpki-client