Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
File: U1vkU3bViYdFK9Bka5p0z562yy0.mft (raw, json)
Hash identifier: 2U2MjR2gUlZ8rrc8wNhlKCdOVOVI74dzXTYTpiEKyQk=
Subject key identifier: 60:B3:96:29:6D:3D:19:CD:0E:7F:4D:CB:29:F7:A3:92:5B:A8:95:22
Authority key identifier: 53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
Certificate issuer: /CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Certificate serial: 0197B7B377AAAB46587D0A1456213EE690F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 18:01:21 +0000
Manifest this update: Sat 28 Jun 2025 18:01:21 +0000
Manifest next update: Sun 29 Jun 2025 18:01:21 +0000
Files and hashes: 1: U1vkU3bViYdFK9Bka5p0z562yy0.crl (hash: jcHAT1ihJ9Yfr06QYehHtN47qh98ZoGajcDlX5RWymY=)
2: bldtfvyuIcb6nqjUAl8Ak0zMF30.roa (hash: dx6ZT1WJQ+QEzva9Bd5tv/adJVLszcwVSLKhJy+UO24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:77:aa:ab:46:58:7d:0a:14:56:21:3e:e6:90:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535be45376d58987452bd0646b9a74cf9eb6cb2d
Validity
Not Before: Jun 28 18:01:21 2025 GMT
Not After : Jun 29 18:01:21 2025 GMT
Subject: CN=60b396296d3d19cd0e7f4dcb29f7a3925ba89522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6f:24:f2:db:0f:7d:f3:c6:af:29:da:6c:9b:
d6:e8:94:dd:d3:eb:38:78:69:13:15:ab:2c:1b:a2:
1d:45:fc:77:5f:94:2f:97:d2:21:a1:39:47:6f:ff:
51:38:ef:86:13:47:d3:1e:6d:b0:21:97:ef:5f:f9:
5a:05:7f:85:2f:aa:0c:cc:a1:1c:5f:de:96:23:ac:
24:98:ed:39:fd:2f:42:1f:0b:ca:ea:af:61:1c:9f:
1d:9a:3b:36:f0:f1:60:01:06:65:04:f0:18:d5:1f:
f4:40:67:15:71:22:95:34:70:52:9c:a3:86:be:68:
b8:9b:8c:e6:a8:23:4d:74:8f:f8:a0:b6:32:62:9b:
76:45:3c:5f:27:5f:ae:e9:4c:5b:42:e9:66:89:1e:
e0:24:fa:58:4c:6b:bb:d1:01:a3:b6:98:90:13:ca:
46:48:c9:2f:b2:05:a0:a0:7f:94:2a:98:c7:d3:d9:
8c:bf:6f:4b:5d:b5:e0:59:00:32:f9:cd:a5:75:01:
10:67:c0:7d:b5:b3:e3:7b:4a:c0:8c:64:fe:d2:90:
1b:fe:6b:78:9c:4a:6b:91:c2:eb:b6:61:1c:4d:bf:
62:c2:cc:45:68:1f:26:0a:18:d7:8c:af:60:da:89:
b7:f1:b9:8f:b5:d8:74:9d:1d:6e:ab:5e:d8:d7:be:
f2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B3:96:29:6D:3D:19:CD:0E:7F:4D:CB:29:F7:A3:92:5B:A8:95:22
X509v3 Authority Key Identifier:
keyid:53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:60:c0:ff:96:6c:0a:ba:7a:77:c5:f7:d1:48:69:c1:d1:85:
72:64:1b:b5:0f:37:cf:e3:5e:35:a1:ff:c4:92:34:2e:bd:f2:
5c:a0:6a:cc:d5:ac:c5:99:48:60:df:89:36:44:bc:49:c0:93:
c9:af:d8:c5:3f:fa:90:e2:dd:1b:d5:5d:20:ba:17:1b:fe:74:
8f:d0:69:24:f9:a1:1a:ab:76:d6:f4:2e:e3:6f:fe:21:d5:43:
24:32:55:95:76:c5:bc:70:d6:cd:41:cc:8a:f8:95:6a:e7:63:
c3:c1:ea:a4:fe:e5:83:53:d8:e9:54:c0:9d:77:94:fe:cb:7b:
85:a9:1e:d2:08:f0:bc:00:03:9d:30:54:a0:bf:0c:4e:ba:d1:
3c:2b:4a:56:16:74:a4:a5:f5:e7:13:e3:ed:b1:ba:ea:56:61:
e7:25:9d:dc:50:22:9b:a6:a3:38:8f:78:bc:dc:ec:4d:72:1c:
74:2a:5e:c5:e6:82:be:8c:fb:bf:f7:cf:c5:f5:15:35:72:82:
fb:24:ff:5e:58:2c:a7:6e:a7:e6:83:e8:61:1a:17:d7:df:2f:
2c:e0:c9:96:c1:25:72:f0:ca:86:36:74:3e:77:9b:4c:47:36:
54:ae:05:ac:ad:00:77:c8:68:d9:4c:72:7e:01:7e:b0:ca:f0:
19:51:85:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:37 2025 by rpki-client