Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json)
Hash identifier: oIWnQwApyMh5JlQxrs9uYSbvdNY/MTGbBDP0Imvy1tw=
Subject key identifier: 17:44:E3:20:A3:CA:B4:05:72:DA:26:A9:65:C0:82:4E:88:51:B3:61
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: 0197729AD229EA65C75C4DDB4EF0DF8F023C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
Manifest number: 0C68
Signing time: Sun 15 Jun 2025 08:00:38 +0000
Manifest this update: Sun 15 Jun 2025 08:00:38 +0000
Manifest next update: Mon 16 Jun 2025 08:00:38 +0000
Files and hashes: 1: GZldOEJkrutoTjn3MQnXcf09taM.roa (hash: vlltg4veeHpXkbEneS2WFuhIZv9HwJeSmQM3GzCbD1k=)
2: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: oIEKZMSluE51lDl9NX7k060GcESy1Urw+ERHfPyYBMc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:9a:d2:29:ea:65:c7:5c:4d:db:4e:f0:df:8f:02:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: Jun 15 08:00:38 2025 GMT
Not After : Jun 16 08:00:38 2025 GMT
Subject: CN=1744e320a3cab40572da26a965c0824e8851b361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d3:02:af:e3:d7:41:76:d6:a2:8c:09:44:49:
0b:2d:1f:ef:4c:88:14:e9:e0:25:a4:b1:f9:74:e1:
7d:55:fe:87:6c:bd:49:6f:4c:e7:c6:c8:b3:ae:6e:
55:4f:d5:b2:08:93:05:34:b6:8a:fb:b3:71:a5:05:
c0:72:cf:c8:3f:e2:96:02:ae:1b:69:fc:70:6a:6b:
c7:60:58:d0:95:f0:2f:5f:e8:76:5f:d9:7b:a9:6b:
b4:cc:cb:e2:1f:19:9c:4d:94:52:f0:57:28:fb:5c:
97:ee:ee:e8:09:cb:03:86:ec:57:01:e5:9f:49:91:
49:f6:5c:5b:ed:25:56:13:4f:28:b1:40:09:1d:8d:
b8:e7:af:76:66:78:37:86:59:16:31:32:f2:77:47:
7b:d6:80:e2:d2:51:99:67:d6:02:ab:dd:b8:56:a1:
fc:ee:22:0f:7f:41:66:ff:3d:50:37:d1:9d:37:a5:
b7:7a:17:21:06:a9:67:43:8b:83:c2:72:07:be:0e:
00:26:2e:7a:a3:ea:0b:d4:b1:29:75:9c:eb:ac:59:
33:b2:dd:da:31:3c:f7:e0:6e:10:e6:9f:1d:25:44:
e4:40:59:4d:c2:8b:4a:4a:23:55:13:bb:78:0c:2e:
4c:c7:db:6a:ef:69:16:05:1f:bd:31:0d:5e:8a:e2:
d8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:44:E3:20:A3:CA:B4:05:72:DA:26:A9:65:C0:82:4E:88:51:B3:61
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:58:8e:40:5d:ab:ad:c8:3f:f4:4a:0b:d7:5d:df:cd:32:41:
44:06:c0:f9:37:a4:0a:3e:b1:00:89:c6:60:07:c7:f8:d2:63:
93:35:df:73:1b:21:ec:a3:c4:55:16:c2:a4:7d:c7:5f:2f:af:
22:49:40:6d:2f:7d:70:5c:d1:0b:0a:6f:63:09:05:12:f3:63:
dc:79:74:7e:12:5c:38:de:a0:53:59:c7:e2:20:ca:8c:b0:62:
56:61:77:a5:77:f9:fa:38:63:5f:b4:36:02:8e:6a:2d:d9:4a:
e1:5c:e1:9b:46:e9:f8:91:21:f2:ca:de:b6:72:43:aa:a5:47:
47:c4:ba:85:4e:f4:87:65:bb:f1:d6:fa:bd:51:f7:f4:61:c9:
cc:c5:9b:fe:81:4a:c3:06:57:64:f4:f9:3c:f5:8a:de:32:d9:
24:4b:80:34:e7:2a:f9:fe:00:e5:4c:88:75:60:05:14:8e:e9:
4a:4b:40:e4:ac:4a:18:ff:46:b1:30:b6:13:9d:c7:6b:e4:d3:
d8:2e:8d:aa:a4:a8:fb:7b:00:fc:b6:09:26:94:f4:ed:e7:06:
2d:71:39:65:0a:6d:04:d9:6e:17:de:ed:b5:fe:a3:23:7f:c3:
e3:12:4a:f7:14:95:27:1e:6f:07:ab:e9:3c:b3:89:79:ed:fa:
89:e2:f0:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 13:24:42 2025 by rpki-client