Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
File: U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft (raw, json)
Hash identifier: 5qPJyu/z5AYfZeGexbWalaZzDqoJRXps+zE8yybIE9o=
Subject key identifier: 06:CC:E2:9E:34:AB:6E:7A:41:0D:7B:41:A5:7E:B8:2F:7F:8B:29:87
Authority key identifier: 53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
Certificate issuer: /CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Certificate serial: 0198D65F9B7159627A710999CEAAFF2CE3F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
Manifest number: 0A7E
Signing time: Sat 23 Aug 2025 10:00:46 +0000
Manifest this update: Sat 23 Aug 2025 10:00:46 +0000
Manifest next update: Sun 24 Aug 2025 10:00:46 +0000
Files and hashes: 1: GPBna_IoKKdQyaNksGJT2yWTCj4.roa (hash: TAihNlvs0SdUgl2vxovWMBnyUqa0RWqHLKo09+4ZR88=)
2: U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl (hash: mR2JoHx2d/38Vf0VqVFUajZqjndm4I9w3u7pT3mPqXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:9b:71:59:62:7a:71:09:99:ce:aa:ff:2c:e3:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Validity
Not Before: Aug 23 10:00:46 2025 GMT
Not After : Aug 24 10:00:46 2025 GMT
Subject: CN=06cce29e34ab6e7a410d7b41a57eb82f7f8b2987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:81:60:df:fe:58:ed:c9:2b:fc:c7:56:d6:04:
40:65:0b:bb:5b:60:c4:bf:22:f8:d5:1f:2e:60:44:
1a:c0:8d:8b:59:ed:9e:9e:31:13:a0:d8:9d:86:a0:
f6:32:25:01:be:d1:8b:7d:15:2c:4d:9a:8e:32:72:
2d:ae:02:55:af:ad:3c:19:3f:ea:6e:51:1c:1a:ce:
3b:27:7c:0b:5c:8f:8e:97:16:2c:42:12:35:09:e3:
5a:ad:28:43:71:89:2d:f4:8b:89:68:00:8e:e3:77:
6a:b6:09:86:13:42:3e:ff:01:50:f5:5c:35:e0:db:
8d:03:3c:fa:cc:91:ee:98:b4:91:f9:7a:ca:09:00:
8a:9d:8e:a1:a0:d7:2a:ed:96:87:e9:25:47:fa:dc:
48:24:08:5a:ce:a1:32:b7:02:09:47:ea:19:25:f7:
2c:11:a2:d0:b3:b6:91:31:27:6a:78:f0:2a:37:b4:
00:8f:fa:c5:f7:30:39:86:1b:58:1f:c5:2e:59:95:
29:55:53:4c:36:70:ca:d6:7d:95:99:4d:63:14:b6:
87:06:09:49:12:6b:6c:98:ad:48:14:38:4d:9a:e9:
f5:87:86:9f:ea:73:af:ba:fa:23:8e:94:eb:6e:9e:
f1:af:51:1b:83:99:59:4c:b2:e7:14:76:75:7b:bd:
67:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:CC:E2:9E:34:AB:6E:7A:41:0D:7B:41:A5:7E:B8:2F:7F:8B:29:87
X509v3 Authority Key Identifier:
keyid:53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:79:a7:a7:16:7d:b4:8d:8a:33:e8:25:20:67:03:cf:34:36:
4d:86:c6:36:5c:74:25:c2:d6:80:89:b9:98:92:56:07:07:df:
83:8d:fd:82:80:bb:54:42:d3:84:2b:bf:a2:ea:a4:81:bc:80:
35:07:c9:a5:63:9f:f9:8b:a3:3b:6b:99:bb:26:16:d4:d4:1b:
5b:1b:8c:75:47:1c:db:1b:ac:fd:91:76:3f:ab:ce:df:66:1b:
75:bd:0b:61:cb:24:c3:c9:3a:fa:14:5d:73:5f:83:cb:47:50:
60:e7:3c:43:21:55:f1:4d:fa:7e:49:22:b3:b0:a4:dd:06:bc:
a3:28:0e:93:34:d8:00:fe:fc:53:e3:49:14:1c:f7:16:84:f0:
48:5b:cc:4e:12:27:0a:b6:5e:91:ce:b3:03:58:38:ca:96:83:
db:76:cb:49:50:15:9b:26:55:c1:ff:4f:42:6f:26:54:e6:f0:
a4:52:24:e2:cd:eb:3a:d7:9e:53:7b:5f:04:0d:55:54:6e:a3:
14:ab:97:d0:27:e2:77:a1:51:c1:ce:95:b9:60:77:cb:87:23:
a4:f6:04:79:af:46:2c:6a:58:fd:25:fa:0c:06:85:3f:47:2b:
4e:2f:92:5c:5c:8e:49:48:ac:b9:41:ba:2e:50:f1:b1:bb:ef:
c9:b2:5f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:43:22 2025 by rpki-client