Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
File: U8NcqD_N9xskTtgDrEaOFFPYJo8.mft (raw, json)
Hash identifier: 4B1Dk47iLju+pLy6clOY8VCIdWYayCQlcmuv/BdYFUo=
Subject key identifier: BB:3B:FF:13:69:94:8D:9D:6A:D8:7C:68:6E:1F:77:FF:CA:AD:6D:F4
Authority key identifier: 53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F
Certificate issuer: /CN=53c35ca83fcdf71b244ed803ac468e1453d8268f
Certificate serial: 0198D4A801215129BA08E2ED78AE5074DA91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
Manifest number: 088E
Signing time: Sat 23 Aug 2025 02:00:36 +0000
Manifest this update: Sat 23 Aug 2025 02:00:36 +0000
Manifest next update: Sun 24 Aug 2025 02:00:36 +0000
Files and hashes: 1: H-gKJ0jecc_epGWL1KeKZGljJsk.roa (hash: DugijbjySOcyT+ldEPL+0Bc6mUPT5+rGRZ55YajcPYw=)
2: U8NcqD_N9xskTtgDrEaOFFPYJo8.crl (hash: o/SSnKC5Ko7Dul5R6tINCxHm/E8nnkmLCJ3FqgDudoo=)
3: jMo_zU9oPYD4-ORBa0HOxz6ElxQ.roa (hash: B6xq/IGkR0N1YUdtA/OK7mLlIr8yn5LM2g8dHTL3gUI=)
4: qy2YkDqljayW8L1eKrjgUU5sPyQ.roa (hash: AsWZRC0AXC3FY0BmIha8yHFLeU4GKo6EqdCK1jqHGe4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:01:21:51:29:ba:08:e2:ed:78:ae:50:74:da:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c35ca83fcdf71b244ed803ac468e1453d8268f
Validity
Not Before: Aug 23 02:00:36 2025 GMT
Not After : Aug 24 02:00:36 2025 GMT
Subject: CN=bb3bff1369948d9d6ad87c686e1f77ffcaad6df4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a2:10:6e:50:6b:ec:09:61:37:ec:e4:f3:10:
b3:59:e8:51:d4:bf:f4:6a:57:1b:24:1a:79:c6:f1:
7a:3d:4c:12:fc:66:53:2d:52:a5:01:23:f7:46:be:
7c:9b:e6:cb:af:c5:96:9d:b0:98:e8:37:a2:57:d9:
87:00:be:3b:0c:45:42:d2:ed:bb:2c:47:66:96:56:
c0:e5:c6:00:6a:a9:26:38:15:94:77:de:70:78:3f:
1e:f3:d6:be:99:87:36:d7:d7:5c:f3:2d:33:c0:54:
2c:b1:9d:5f:5a:e5:e8:ce:e4:60:f4:65:19:b8:98:
89:3c:06:d8:31:42:37:ac:de:22:04:7c:8e:58:3d:
45:ff:b8:7e:a3:1d:7a:a7:7f:08:e3:0b:b8:8e:6d:
6b:e7:aa:eb:65:4e:68:75:80:6d:a4:ad:df:0a:e4:
96:0e:00:39:f3:d1:f0:95:40:62:f2:68:40:b4:49:
03:25:87:86:2d:39:22:53:35:6a:f9:3d:b0:23:38:
cd:6d:3d:17:ba:f7:1e:37:87:3e:9d:74:56:15:e7:
9f:7a:d3:9b:94:e4:b7:0a:c6:51:9f:77:bc:26:c3:
77:c6:84:18:02:83:18:a2:3f:dd:82:be:7f:99:3a:
7b:14:c1:4e:1d:46:11:14:c9:f2:ba:42:07:66:4a:
6e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3B:FF:13:69:94:8D:9D:6A:D8:7C:68:6E:1F:77:FF:CA:AD:6D:F4
X509v3 Authority Key Identifier:
keyid:53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:46:4b:ba:51:8d:70:28:dc:48:bf:7e:9d:f7:0a:0c:36:40:
4b:72:2e:5c:45:1c:ea:e5:05:ec:76:88:83:ad:11:59:06:c4:
2e:71:70:1e:f3:10:eb:17:4b:d8:0a:e8:8c:9e:41:f4:e4:2c:
e1:ff:3e:f1:14:e1:42:94:db:eb:02:23:4f:c6:16:c5:0e:50:
0c:45:7c:e2:71:4c:4a:8b:d7:61:47:a0:d8:7c:28:45:ed:de:
2e:16:19:37:dc:7e:55:c6:73:b6:0f:b8:f8:e6:00:ee:61:8e:
b7:3e:d2:54:41:d3:f0:c1:7f:00:19:76:9a:1a:95:b9:21:b7:
81:9f:2a:fb:d1:bd:e8:99:d4:b8:d8:a3:92:ca:76:8f:fc:41:
46:c9:c3:c6:fa:3c:b5:93:19:ab:6b:84:5c:52:0f:3a:35:68:
20:a3:7b:2b:e3:d1:cf:d2:1b:32:ae:4e:b1:65:f6:0b:eb:b3:
31:9c:39:0b:61:7f:c5:a3:10:5a:0c:59:6c:fe:bc:fc:65:60:
43:25:14:85:53:1e:9e:bd:bb:aa:5d:7b:a9:44:86:c1:6e:f3:
0b:02:aa:5c:ad:ab:a0:59:3c:03:05:67:e7:75:66:23:5b:58:
e0:e7:c7:96:c2:73:9a:1f:38:f7:ea:dc:b0:d8:e4:e4:8c:b9:
24:d2:94:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:56:34 2025 by rpki-client