Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json)
Hash identifier: suKZr0gBJXkESqjbQYqt5hyWCSm6E6L3uRz2WagJf3w=
Subject key identifier: 11:D7:7F:DA:DD:55:CF:AB:DB:C8:7F:12:F6:66:A1:EE:E5:19:1D:90
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 01987B2DCFD2B09AB47402CEA9F6A900E167
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
Manifest number: 161B
Signing time: Tue 05 Aug 2025 17:00:56 +0000
Manifest this update: Tue 05 Aug 2025 17:00:56 +0000
Manifest next update: Wed 06 Aug 2025 17:00:56 +0000
Files and hashes: 1: 8hWTGCLXxSwODB2tKv40DFwDRSA.roa (hash: LnqtzTwP6Z/uj/Pahytsa4k9TTsa7E1q6xNsCMwJ/r4=)
2: KdlAk3dh27bShWAn4-0kWb61hVQ.roa (hash: ATJYV8SWOcnAG9fqVBljwxaiv5XnfJ4U40CX0lPgLrE=)
3: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: nHRm8o8xJ8aDq4OQUr35tVPoSh8AI/ttS99a93JTGiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:2d:cf:d2:b0:9a:b4:74:02:ce:a9:f6:a9:00:e1:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: Aug 5 17:00:56 2025 GMT
Not After : Aug 6 17:00:56 2025 GMT
Subject: CN=11d77fdadd55cfabdbc87f12f666a1eee5191d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:79:67:83:47:e7:a6:e5:b6:9c:d3:fd:cb:f7:
99:05:88:d9:26:78:8d:7e:95:5f:82:3f:41:1e:ce:
69:ee:ae:ff:8a:7c:e7:98:76:ad:4d:41:d2:67:6e:
64:ac:e8:3e:46:0f:c9:c3:53:84:db:a8:69:63:1d:
00:bc:81:67:ea:ee:22:3a:96:02:77:fb:85:15:30:
8d:70:39:4e:1a:44:18:f9:76:2f:f7:3a:9c:61:0e:
95:4b:fb:17:b2:f8:26:98:1d:66:68:c4:38:d7:03:
de:cf:66:66:89:04:b0:0d:89:6f:0b:92:7c:85:5c:
47:7f:7e:f5:31:b1:0c:b9:55:3a:22:13:37:a8:d2:
3e:a6:22:ec:ab:05:60:fb:73:b0:7c:78:6e:71:14:
93:4f:f2:7a:fb:b7:8e:3e:3b:1c:fc:76:ef:c0:d2:
50:ac:bc:38:f8:ea:38:d3:2b:6e:2b:2a:ee:d9:70:
dc:23:0e:3b:dd:89:70:f5:de:45:c8:4b:15:56:55:
7e:64:82:97:ae:84:22:c3:91:cf:34:27:45:de:62:
54:a7:04:32:5c:a1:e6:b2:b6:90:6f:d5:c9:91:02:
c4:5f:0e:d5:d8:39:39:67:8a:4b:28:80:05:dc:4d:
e6:22:a8:15:75:c7:3c:82:20:9c:dd:9c:69:1b:7a:
ee:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D7:7F:DA:DD:55:CF:AB:DB:C8:7F:12:F6:66:A1:EE:E5:19:1D:90
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:da:12:1b:75:b2:49:00:55:ad:03:c1:26:60:7e:bc:f0:24:
ba:35:5e:e4:03:c2:03:4a:e6:67:dd:eb:1e:f8:2a:6e:86:57:
38:0a:c2:25:57:96:39:3e:8f:5a:2c:ac:dd:f0:97:bf:44:de:
58:03:90:5e:f0:bb:6e:5f:63:14:8a:a5:da:6c:e8:1c:27:5e:
0b:15:34:65:ce:6f:40:4b:0e:e5:c0:bd:d5:bc:e4:90:ae:9e:
a7:15:4c:60:e5:8c:e6:6f:93:03:39:e1:f3:e6:e9:a2:a9:63:
6d:bd:9a:c8:ff:13:e3:11:65:46:e3:54:3b:de:b3:e6:47:96:
4e:e1:10:66:14:b4:46:11:7b:e6:ab:52:51:ca:0a:8f:0e:4f:
21:29:34:5b:66:46:a5:98:10:37:b9:8e:6c:70:e9:8c:b0:0e:
aa:22:ef:18:26:cf:ff:a7:cf:ad:9d:ca:5e:38:11:54:a1:bd:
f5:12:16:5a:48:1c:5c:0c:52:3d:db:58:7e:4e:b7:8a:1a:e1:
6c:b2:2f:2c:dc:dd:1f:49:76:a1:83:0a:61:21:e0:73:83:a7:
06:22:8c:0c:b2:f2:dc:65:a0:7a:79:fd:a7:a2:86:ea:b1:46:
65:df:b6:f6:0a:5d:bf:ff:bf:d3:4b:6c:7f:ca:2b:ff:92:d6:
9e:98:2b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 23:01:45 2025 by rpki-client