Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier: zqjimANM2BGvHBDc3YDyUvsWsR8DFGYTEAN4Z/81wmc=
Subject key identifier: 05:6E:4F:AB:19:C8:BB:93:B1:68:42:BF:41:74:3D:0F:76:D7:67:58
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial: 0198D58358A960A16F64344D6C831954CE2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number: 0629
Signing time: Sat 23 Aug 2025 06:00:11 +0000
Manifest this update: Sat 23 Aug 2025 06:00:11 +0000
Manifest next update: Sun 24 Aug 2025 06:00:11 +0000
Files and hashes: 1: AlkZJ5y5SgK5NicIMpQu5G4y-kk.roa (hash: 6pDsa6TgLwnLkjOOWWhXhHFWrv8bvlopmayBUNqycZY=)
2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: apxz8j1dATZACn05PJhH8NLio/QQHfBBWYMAeTe8FCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:58:a9:60:a1:6f:64:34:4d:6c:83:19:54:ce:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Validity
Not Before: Aug 23 06:00:11 2025 GMT
Not After : Aug 24 06:00:11 2025 GMT
Subject: CN=056e4fab19c8bb93b16842bf41743d0f76d76758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e3:7d:f0:c0:5f:4d:1a:06:8d:d5:c4:b4:74:
42:34:05:db:4b:9b:2f:67:b7:47:2d:4b:7a:2a:97:
f2:d6:61:80:66:ba:44:66:9a:2b:de:ac:30:02:13:
dd:88:13:3c:38:60:4f:88:0a:b7:63:e4:58:80:93:
a5:ae:9f:8b:91:cf:a1:b3:55:08:56:6d:3c:79:52:
3b:62:2f:95:b2:f5:ae:16:9f:88:51:5c:c7:fe:41:
78:c5:08:2e:c0:5f:4b:99:74:4e:ed:9b:c0:e7:ba:
13:37:4f:1b:31:25:0c:63:81:7d:c2:96:5e:c3:6f:
fc:cd:48:9c:09:4f:96:a6:0c:4f:a9:a1:f1:c4:5d:
32:bc:13:5a:dc:94:ce:c0:30:da:6f:ae:48:35:05:
e7:b0:55:aa:0c:86:e1:ae:fd:ed:5a:74:a6:b4:04:
78:0b:98:95:74:6c:2e:56:b4:44:77:0d:3f:8f:db:
05:60:22:e8:17:a0:bb:0e:fc:54:6c:0b:f6:6a:23:
4a:58:39:b0:41:91:d0:cf:62:de:0b:dd:09:40:a7:
f9:63:67:a9:4a:cb:01:d8:95:3f:c4:9d:73:56:98:
53:0b:cd:58:ce:86:fc:29:03:de:96:f8:7c:b9:b9:
cd:56:a1:09:e8:15:4f:99:f7:d4:06:bb:7b:56:e5:
97:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:6E:4F:AB:19:C8:BB:93:B1:68:42:BF:41:74:3D:0F:76:D7:67:58
X509v3 Authority Key Identifier:
keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:3a:23:23:0f:19:fd:d8:54:47:01:8a:86:af:10:c3:1d:57:
cc:62:b8:d7:0b:a2:4d:64:ea:6d:68:14:01:e3:2a:27:51:1d:
28:30:32:4c:fd:c4:f6:6e:09:b5:3f:97:c9:81:37:3d:fb:34:
8e:b8:5f:42:52:5b:94:23:dc:3f:d5:9f:30:7c:c8:0f:be:e3:
89:39:22:68:a2:b5:e3:72:02:4b:94:f0:9b:ff:c9:91:d8:11:
cb:70:7c:2a:5b:08:87:53:03:bc:6b:9e:ef:85:3e:05:cf:a4:
e9:4e:be:8d:db:b7:d3:88:44:2c:8c:26:7f:93:48:05:fc:de:
4a:74:68:48:c3:28:c0:0b:8a:29:7d:61:52:4f:68:c3:d0:ce:
d5:55:3c:11:ce:b6:0e:bc:9b:1b:d9:54:28:83:b1:3f:64:05:
e2:f6:b6:29:bd:c4:22:9f:a9:c3:47:fd:a2:9d:b1:a5:f7:9b:
03:2e:90:73:ef:11:c0:b1:55:ee:58:19:52:7e:b6:f7:cb:83:
f0:52:6f:c0:7c:43:42:75:c4:78:b4:01:c0:20:4b:9e:9b:4f:
28:80:d9:0b:6d:48:40:17:a4:d1:71:1b:ae:fb:7d:33:a1:e9:
bf:b9:b3:a4:02:ba:91:2b:10:48:09:42:95:8f:f4:5f:c5:7a:
2d:71:c4:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:28:48 2025 by rpki-client