Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json)
Hash identifier: 5b4WaRKKxtrIEpw5lNjih3VbWW78TapSSKok3+rqzgs=
Subject key identifier: 0B:38:0E:F9:45:EE:FD:A0:BA:C1:99:60:88:58:BA:A8:D2:37:02:01
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 01976CCFE515C4272B3A65BED79A0B52A32B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 05:00:53 +0000
Manifest this update: Sat 14 Jun 2025 05:00:53 +0000
Manifest next update: Sun 15 Jun 2025 05:00:53 +0000
Files and hashes: 1: 8hWTGCLXxSwODB2tKv40DFwDRSA.roa (hash: LnqtzTwP6Z/uj/Pahytsa4k9TTsa7E1q6xNsCMwJ/r4=)
2: KdlAk3dh27bShWAn4-0kWb61hVQ.roa (hash: ATJYV8SWOcnAG9fqVBljwxaiv5XnfJ4U40CX0lPgLrE=)
3: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: nlvyT8si9hCdP2Zxwv/zPjcMkxiuHPX6e3VTnXyroj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:e5:15:c4:27:2b:3a:65:be:d7:9a:0b:52:a3:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: Jun 14 05:00:53 2025 GMT
Not After : Jun 15 05:00:53 2025 GMT
Subject: CN=0b380ef945eefda0bac199608858baa8d2370201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:a6:97:58:41:02:3f:67:8b:a2:37:ef:07:a8:
3c:90:25:78:6f:e4:fb:f1:71:a4:f5:7d:9c:50:2a:
76:f7:68:9e:99:8f:b5:5b:c2:67:e5:61:e1:34:f0:
17:1b:c5:46:1b:d5:44:65:f6:8b:f4:cc:b5:39:8d:
5a:c8:87:01:fa:45:ec:a2:32:df:01:eb:62:38:23:
7d:cc:1b:96:d7:0c:3e:f6:5a:45:b9:d2:49:fc:5a:
a1:74:10:17:41:8b:cb:20:6c:ec:65:0c:32:43:98:
ea:6e:9f:63:d4:ae:89:03:91:7b:c9:15:a7:ca:ac:
64:39:fd:39:3e:bd:35:d1:d5:8d:5f:4e:88:4c:70:
bc:1b:b8:fe:fd:d4:ae:46:d1:ef:36:c7:4d:ae:35:
37:af:7f:ae:1d:73:81:22:f9:b5:60:88:f5:30:d6:
e1:35:d7:d5:6c:1a:b2:d0:d1:43:45:32:00:4c:54:
84:b4:7e:5e:42:8f:c0:57:c3:7f:96:84:f7:ac:61:
33:e8:7f:d6:2f:22:5a:e2:31:4c:27:37:45:6a:e9:
2e:93:87:2a:73:72:03:f8:4f:ac:5c:89:c7:8e:94:
04:ad:e6:fc:d0:09:f8:15:85:c9:93:3c:07:3b:02:
7b:54:27:73:cb:00:29:3b:0f:b4:d2:97:f7:01:36:
3e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:38:0E:F9:45:EE:FD:A0:BA:C1:99:60:88:58:BA:A8:D2:37:02:01
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:b1:4c:15:17:ce:f5:14:53:8c:f7:51:b4:99:5d:c1:dd:21:
09:06:fa:0e:b9:b3:23:03:6d:62:5b:06:7d:7e:ac:c0:d3:38:
f1:0a:68:c1:10:6b:d9:db:29:52:61:ce:1a:3e:6f:48:8b:1b:
69:a1:8d:6a:58:e8:18:bf:6a:e2:59:9c:54:ae:68:57:5e:46:
d2:bc:2b:08:58:e1:eb:4c:14:97:8f:32:0f:7c:ac:44:41:b5:
66:33:81:ab:b0:3f:a9:fa:80:5c:de:4d:55:50:b7:61:24:50:
55:c5:fc:9d:ec:39:0b:41:d9:34:4c:eb:ae:17:b6:48:d7:ef:
75:b9:01:e4:58:80:43:e5:5b:f5:d1:da:3e:c8:e4:8e:c9:45:
81:53:67:45:39:f3:1a:b4:1b:d9:b6:7a:df:2b:e6:7b:3e:87:
2a:ef:0e:14:40:23:2b:b2:f1:d7:cb:07:35:e7:2f:ad:99:25:
d7:fc:bb:b4:88:c9:60:d8:98:d2:34:42:1b:21:5f:55:c8:25:
96:11:4a:8d:bb:cd:2c:a7:8d:8e:7e:09:49:ed:5e:ad:4f:5f:
fa:34:d4:ce:91:e6:9e:2d:d3:1f:7f:53:f3:46:95:e3:f3:8f:
f4:2e:25:a0:28:b0:7a:66:e5:4c:14:a4:4e:ed:1f:f5:8e:3f:
28:4d:72:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:46:56 2025 by rpki-client