Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json)
Hash identifier: KV+oG+pA4SNuVAuPB6w6sHzKbFCPlCs6TmBLbaPbLRA=
Subject key identifier: AF:6C:8C:F7:B4:52:A9:1C:15:CC:BB:24:57:E5:8B:2D:AA:66:64:16
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: 019A4E4F473804CBA0DFE8CA13135D8E0D49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
Manifest number: 0DE3
Signing time: Tue 04 Nov 2025 10:00:09 +0000
Manifest this update: Tue 04 Nov 2025 10:00:09 +0000
Manifest next update: Wed 05 Nov 2025 10:00:09 +0000
Files and hashes: 1: GZldOEJkrutoTjn3MQnXcf09taM.roa (hash: vlltg4veeHpXkbEneS2WFuhIZv9HwJeSmQM3GzCbD1k=)
2: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: Sp2qVBuy2RsFMVaVm8gOqQ19uvCsLrUo0k5+Xt+PABM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:47:38:04:cb:a0:df:e8:ca:13:13:5d:8e:0d:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: Nov 4 10:00:09 2025 GMT
Not After : Nov 5 10:00:09 2025 GMT
Subject: CN=af6c8cf7b452a91c15ccbb2457e58b2daa666416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:00:4d:2b:a4:23:43:55:f2:39:71:43:dc:cf:
09:26:10:87:33:44:53:43:0b:81:da:d9:4b:af:1c:
b1:63:f5:77:b9:b7:2e:8b:76:eb:64:36:a1:f7:b4:
30:aa:a8:a4:7e:b1:c0:1e:83:cf:6c:9c:6e:0c:4d:
78:61:65:b9:09:8f:11:e6:cf:f0:79:a1:d7:e5:e6:
04:ae:92:06:ec:4c:12:b9:f2:15:6f:a1:10:fe:cb:
2f:c5:df:87:3b:7a:d8:81:9c:e5:fa:72:3b:10:4c:
f3:cc:70:74:0c:83:86:00:1e:fe:ff:eb:b9:5a:ba:
54:03:e9:2b:40:c6:59:91:7d:e0:1a:59:4d:90:9c:
f8:15:22:3e:da:01:a2:5f:c9:98:70:2b:5c:ff:8c:
37:44:72:c3:89:20:da:5b:f1:99:1a:ec:d0:f7:82:
60:8b:3d:7c:ac:de:c2:ff:b0:d3:83:19:5a:7b:b8:
f0:54:ae:64:ae:95:0d:53:8e:8c:05:07:6d:12:a8:
20:ac:57:32:59:8b:21:a8:12:e0:d8:52:4d:d1:b5:
23:30:fd:04:e8:b1:f7:b4:6d:b1:59:b4:90:fc:b8:
58:35:c4:65:e5:9b:d1:ae:18:7e:5a:5a:d2:ea:d2:
d6:ac:c6:66:f7:25:ac:ab:02:72:8c:69:1f:e1:35:
1a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6C:8C:F7:B4:52:A9:1C:15:CC:BB:24:57:E5:8B:2D:AA:66:64:16
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:07:ca:5f:61:ba:df:2a:1a:2b:9e:bb:50:c1:3e:62:af:77:
59:85:0f:43:d3:f2:4d:ec:2b:11:fa:4f:af:42:6d:4c:4f:19:
d1:0a:9b:38:04:fc:f3:2b:b4:26:92:0e:0a:eb:04:94:d9:fd:
25:09:f7:e9:fe:26:3c:e8:1b:51:b1:06:76:b5:c8:b4:05:bf:
e6:69:19:ba:c9:50:3b:4b:ca:9c:10:cf:2e:30:f5:e6:2c:a5:
11:e7:c9:d8:3e:f6:63:64:3c:0e:2a:b5:55:20:10:6c:43:9d:
b6:68:22:c7:d9:d0:dc:60:70:bf:a4:9d:61:a0:f0:74:b0:6c:
a2:c9:dd:a8:8f:64:88:d0:9e:c6:e5:e3:72:e0:0f:c2:8e:f8:
13:94:b9:c2:97:eb:27:20:6f:c3:21:a4:87:a9:69:d3:3c:af:
c3:3e:75:35:94:09:36:7c:c7:62:29:b1:83:61:d9:84:49:c8:
18:73:68:4f:ba:db:18:c9:79:b6:37:e9:48:a1:fb:25:9a:78:
03:51:5c:f8:38:80:ce:d9:9d:61:53:83:c0:41:81:a9:00:08:
7d:a4:5b:c3:c0:1f:99:c2:20:fb:94:9d:f2:ac:f5:43:8e:bb:
19:b7:f7:0c:1a:a8:15:08:2c:0e:18:e0:e1:4b:1b:e0:e9:d7:
7a:a1:59:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:21:22 2025 by rpki-client