Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: 6QtLMtHJmrwNKcnrx9z8Avt9JfFBIKFv3ut8usibZWU=
Subject key identifier: 4A:B7:F6:1B:D0:54:04:6C:B3:1F:97:D3:8C:09:41:F4:D0:A5:43:FF
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 0199FB0EF33A629DA9FAE708E9E5A822BFFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 06C1
Signing time: Sun 19 Oct 2025 06:01:24 +0000
Manifest this update: Sun 19 Oct 2025 06:01:24 +0000
Manifest next update: Mon 20 Oct 2025 06:01:24 +0000
Files and hashes: 1: AlkZJ5y5SgK5NicIMpQu5G4y-kk.roa (hash: 6pDsa6TgLwnLkjOOWWhXhHFWrv8bvlopmayBUNqycZY=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: tkznDMznpgkLEUFOcmmy+pc4HfPey8HpsQtXuz/0EIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:f3:3a:62:9d:a9:fa:e7:08:e9:e5:a8:22:bf:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Oct 19 06:01:24 2025 GMT
Not After : Oct 20 06:01:24 2025 GMT
Subject: CN=4ab7f61bd054046cb31f97d38c0941f4d0a543ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e9:ae:ad:c9:6b:93:be:c5:57:4f:6d:c7:36:
af:67:6f:b2:f9:b6:65:38:fb:6f:f7:c3:b9:c8:29:
53:6e:93:a5:ae:0e:52:e7:a1:9e:63:72:d6:27:dc:
a2:04:52:62:1c:39:04:e3:49:69:9c:fa:bd:1a:53:
b9:90:98:6d:57:f4:40:b5:9b:ca:15:40:41:ec:84:
13:00:e2:21:76:87:76:94:9b:11:0a:e0:2c:e4:78:
19:06:5a:1d:9f:e5:b8:e1:37:b3:37:6d:fb:81:46:
a6:dd:4f:07:5b:af:40:47:c7:fc:96:7e:76:e6:14:
de:35:f9:c4:5c:b2:70:05:33:56:6a:80:ad:e7:ff:
6d:60:0a:7b:57:a5:75:77:f4:a5:3c:53:43:49:58:
c1:15:48:5d:a5:62:f9:32:91:aa:c4:4b:93:2c:bc:
0c:13:d3:ec:df:84:bb:d6:0c:15:a0:dd:d6:b5:05:
45:f1:dd:ee:19:63:70:ba:47:c2:e6:76:4a:15:ee:
91:6a:6d:7f:5f:3a:b4:ac:d4:0a:9f:81:50:25:f0:
3b:ae:50:53:fd:fb:79:2d:d0:1f:59:fa:b0:0f:09:
a4:6b:8b:9d:06:26:c3:f2:2e:29:d3:9d:92:aa:1a:
45:59:58:20:75:fa:7c:e2:d9:5d:3e:3e:5a:d5:cd:
6e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B7:F6:1B:D0:54:04:6C:B3:1F:97:D3:8C:09:41:F4:D0:A5:43:FF
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:52:2d:25:61:95:7c:52:8d:1c:1c:28:8c:9c:66:84:5c:e9:
0a:f9:d7:47:a1:ec:48:8e:b9:67:8e:f7:20:0e:7d:ea:9a:e7:
db:e9:0a:1f:24:8e:ad:76:34:bd:8d:2f:81:5d:78:0e:d0:c4:
ad:43:a2:b6:01:26:2f:d7:36:16:3a:60:63:83:56:4b:bc:8a:
40:36:c7:72:11:5f:c4:38:59:68:6e:54:f1:32:f1:99:8a:b6:
d2:9e:cc:5a:b5:1a:f0:1c:4c:95:cb:13:3c:c8:df:14:eb:35:
62:ca:30:69:19:76:af:e7:2e:c8:17:92:06:3c:1d:05:0d:e4:
1d:ad:eb:36:15:91:01:db:fd:c2:37:37:dc:a5:1c:65:3e:8f:
76:f0:16:a9:26:62:45:ee:b6:5f:b7:dc:46:35:3c:87:c0:fb:
e5:d4:e6:f0:8c:62:fd:8e:cd:2d:dd:38:e3:0e:ba:46:67:5c:
64:34:90:d4:e6:bd:93:64:c6:09:9c:7c:59:1e:38:58:33:ee:
b6:3d:d5:16:b1:cd:56:34:fc:bc:12:fc:a8:53:db:7e:da:c3:
73:a1:15:71:ea:e0:19:6d:7c:1b:4d:1f:30:88:46:8e:df:f5:
ac:54:f2:22:29:a8:ab:17:73:b2:c2:31:9b:fd:d6:44:b7:9c:
a9:71:24:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:43 2025 by rpki-client