Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
File: U6hLUj3-Mriom5zdMKn4cRAH_bk.mft (raw, json)
Hash identifier: 6dx9IlnKS031QWnzT8U9ZrOezllHd/7SaaN56S2TEZI=
Subject key identifier: 6A:CC:B8:18:48:DE:3C:83:AC:7A:A6:C9:36:49:9C:78:3B:93:AB:9D
Authority key identifier: 53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
Certificate issuer: /CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Certificate serial: 01988AA08B3226E36D05613F14B1B291A759
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
Manifest number: 0CF9
Signing time: Fri 08 Aug 2025 17:00:33 +0000
Manifest this update: Fri 08 Aug 2025 17:00:33 +0000
Manifest next update: Sat 09 Aug 2025 17:00:33 +0000
Files and hashes: 1: GZldOEJkrutoTjn3MQnXcf09taM.roa (hash: vlltg4veeHpXkbEneS2WFuhIZv9HwJeSmQM3GzCbD1k=)
2: U6hLUj3-Mriom5zdMKn4cRAH_bk.crl (hash: lDcpnvYTjgAsZnOl7aRxY5bbPA2g7TbaRwASS92pZ6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 17:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:a0:8b:32:26:e3:6d:05:61:3f:14:b1:b2:91:a7:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a84b523dfe32b8a89b9cdd30a9f8711007fdb9
Validity
Not Before: Aug 8 17:00:33 2025 GMT
Not After : Aug 9 17:00:33 2025 GMT
Subject: CN=6accb81848de3c83ac7aa6c936499c783b93ab9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:12:c6:08:aa:a7:13:c5:ea:ba:3a:85:82:3a:
57:fb:0d:68:e8:55:8c:9c:15:c2:c4:b7:21:e9:14:
de:09:29:9f:ae:4e:c4:76:ce:e1:ea:ba:6c:ff:0e:
b2:a7:bc:5c:2a:c9:ee:30:8f:f8:d8:82:a0:b8:8e:
f7:e3:b3:14:30:93:ab:6c:05:aa:78:6d:ea:bf:84:
72:12:a2:34:3a:5e:b5:6f:4c:4b:81:f6:58:3d:e2:
ab:ed:ba:02:17:16:89:2d:0c:3b:e4:97:3e:65:a8:
04:36:ae:4d:18:7d:f2:33:cd:83:d8:19:c3:e2:24:
7a:52:5d:46:f2:21:e6:f8:cc:be:b5:44:ad:6d:47:
41:bb:95:3a:c7:de:b7:13:37:a6:3b:de:4a:72:0e:
3a:bb:81:e6:e4:ce:76:d1:e3:b3:70:79:6e:f0:ff:
9e:51:d9:3a:03:9b:43:a8:8a:65:30:0a:b7:c2:33:
81:ad:32:23:c4:55:34:e1:a7:8a:c3:d0:a9:61:69:
12:14:96:92:03:f3:cb:00:19:a0:9e:bf:d2:64:36:
34:00:43:5e:d6:99:b4:c1:77:6a:85:e8:a7:55:cd:
d9:dc:ae:2e:b3:40:1d:c4:cf:f6:26:88:bf:fa:23:
78:25:ea:78:34:ae:ec:c3:e7:d0:0b:03:d3:20:ea:
da:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:CC:B8:18:48:DE:3C:83:AC:7A:A6:C9:36:49:9C:78:3B:93:AB:9D
X509v3 Authority Key Identifier:
keyid:53:A8:4B:52:3D:FE:32:B8:A8:9B:9C:DD:30:A9:F8:71:10:07:FD:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6hLUj3-Mriom5zdMKn4cRAH_bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/07e105-5680-40aa-8c9d-0d66c75b026d/1/U6hLUj3-Mriom5zdMKn4cRAH_bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:f4:bb:f4:32:fb:01:15:4b:43:49:9c:35:95:66:91:64:e1:
b3:a2:a9:4b:1b:8d:bb:a8:88:98:68:aa:a4:7b:f9:4f:55:83:
a3:8a:c2:a5:15:e1:1d:4e:a8:44:32:d7:5b:f8:cc:ed:b6:9c:
dd:69:fa:58:c0:de:e1:5a:75:60:b7:be:c8:65:78:0a:22:9b:
53:7a:59:24:5d:4d:a7:41:e7:80:64:13:6c:7b:e4:00:1f:98:
56:0a:25:50:69:91:0d:54:0d:d5:94:c1:5a:76:98:e8:a4:9b:
bc:c8:f4:28:48:02:44:bf:80:b8:fa:b7:13:98:aa:b4:09:99:
21:55:d5:0d:67:9b:a3:eb:a9:89:6b:e8:7d:41:77:36:61:31:
09:55:d9:d1:3a:a6:fb:50:c9:64:c8:ac:25:fe:e1:79:94:8a:
9a:6e:38:02:6c:f8:9e:c9:1d:29:2e:4c:e4:86:02:ab:a8:b8:
3d:d2:26:b0:0a:cf:45:19:50:a0:24:24:d7:62:7d:36:0d:99:
14:61:29:09:b2:d6:e7:b6:fc:6a:3f:2a:73:92:da:7f:f7:f2:
d8:1d:86:a6:13:9b:56:9a:c0:cf:74:5b:bf:19:f2:cf:34:49:
93:79:8d:63:f2:be:76:1b:fe:1c:79:89:7a:d1:72:b6:da:5d:
ed:a0:b8:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:06 2025 by rpki-client