Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
File: U8NcqD_N9xskTtgDrEaOFFPYJo8.mft (raw, json)
Hash identifier: hym6B8/jsVjqsDFRBXaqjPY2yGmRhGVELh1cxmEpONY=
Subject key identifier: A1:7B:63:80:FC:CA:D8:5F:E6:25:FC:DE:C9:2F:8E:45:FE:5A:3F:8E
Authority key identifier: 53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F
Certificate issuer: /CN=53c35ca83fcdf71b244ed803ac468e1453d8268f
Certificate serial: 0197CFF2BC907163569983EF857EB8EA1E6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
Manifest number: 0807
Signing time: Thu 03 Jul 2025 11:01:21 +0000
Manifest this update: Thu 03 Jul 2025 11:01:21 +0000
Manifest next update: Fri 04 Jul 2025 11:01:21 +0000
Files and hashes: 1: H-gKJ0jecc_epGWL1KeKZGljJsk.roa (hash: DugijbjySOcyT+ldEPL+0Bc6mUPT5+rGRZ55YajcPYw=)
2: U8NcqD_N9xskTtgDrEaOFFPYJo8.crl (hash: mDrAYCpSKJzMHT3h0izDLeJXBTsbGMZC1qxLDPq8azE=)
3: jMo_zU9oPYD4-ORBa0HOxz6ElxQ.roa (hash: B6xq/IGkR0N1YUdtA/OK7mLlIr8yn5LM2g8dHTL3gUI=)
4: qy2YkDqljayW8L1eKrjgUU5sPyQ.roa (hash: AsWZRC0AXC3FY0BmIha8yHFLeU4GKo6EqdCK1jqHGe4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 11:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cf:f2:bc:90:71:63:56:99:83:ef:85:7e:b8:ea:1e:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c35ca83fcdf71b244ed803ac468e1453d8268f
Validity
Not Before: Jul 3 11:01:21 2025 GMT
Not After : Jul 4 11:01:21 2025 GMT
Subject: CN=a17b6380fccad85fe625fcdec92f8e45fe5a3f8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fa:19:be:e0:7f:00:8a:6d:be:1d:93:c6:90:
85:95:ce:db:67:b0:3d:3c:1d:09:7d:22:81:81:2e:
19:e8:63:9e:1c:63:cc:b8:b9:9d:ba:4e:32:99:ca:
1d:2c:d1:a7:23:ba:c0:f3:b8:d3:3e:f0:b3:54:95:
d7:a4:28:01:5a:bf:05:18:76:34:70:42:a0:0d:5e:
fa:e0:61:53:7b:01:e0:23:be:4a:72:48:20:35:c3:
45:99:d4:77:b1:46:4e:ed:35:e7:f4:2c:1e:08:ce:
be:0a:0e:d3:8b:98:ca:d4:ca:58:f1:f8:9a:2b:23:
61:dd:a7:7d:86:be:d1:72:b6:34:44:02:ba:33:a0:
49:8d:69:03:f4:e9:c6:8f:24:e1:dc:96:2b:05:32:
41:e4:26:32:e8:f2:19:c1:2e:c3:86:63:bc:3d:a7:
1b:0a:54:51:2c:aa:02:ff:b6:7b:8c:47:6b:e1:63:
a2:d6:86:73:eb:5a:c5:9d:37:c1:3e:aa:1a:b6:51:
ea:75:87:b5:f7:cb:e0:87:18:a1:49:0c:37:3a:07:
cc:24:48:e9:f4:b3:84:29:8d:0e:c5:7f:7c:18:44:
8a:a4:d7:6e:9c:eb:03:c9:44:f1:67:67:e4:aa:48:
f5:1e:6d:65:3a:08:f6:57:cb:55:a5:20:fe:d0:ba:
93:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:7B:63:80:FC:CA:D8:5F:E6:25:FC:DE:C9:2F:8E:45:FE:5A:3F:8E
X509v3 Authority Key Identifier:
keyid:53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:91:ee:90:b1:07:4f:e3:e0:c6:94:66:4b:8d:c3:1f:de:30:
b9:db:da:82:37:e4:f8:22:16:28:49:0d:e0:ab:3a:8e:05:1a:
db:a4:ac:e6:d8:d9:45:02:8a:df:a9:08:da:6c:d3:54:4e:c9:
ad:dc:38:69:94:d1:2c:4c:9c:25:46:f6:74:e6:82:32:91:77:
4d:cb:78:d2:5e:48:cf:e0:6f:b2:d3:2a:06:4f:5a:5a:16:f8:
a3:13:7e:fa:59:08:33:3b:fc:43:ea:aa:1b:38:01:09:88:bf:
bc:86:01:bf:b4:1b:85:2e:6a:75:cd:2e:8e:34:b7:ab:7e:ab:
d1:3a:fd:e5:f7:5a:c4:95:c2:41:f4:e4:25:6c:c9:91:fc:a1:
d2:22:00:94:08:b0:43:55:a5:6c:87:3e:9a:ae:5d:8b:08:2d:
64:02:51:f9:87:34:5c:48:8a:48:df:87:f2:7a:98:df:f5:37:
70:ac:04:02:47:ca:57:b4:6c:2b:a2:bd:57:95:90:df:3d:b4:
a3:8a:24:bd:ee:90:3a:75:07:53:fa:d4:d5:d0:86:81:29:bc:
9c:5d:32:27:9f:0b:a4:c6:58:ba:c9:ef:75:dd:37:7c:67:23:
1f:a0:9f:ab:e7:45:9c:72:d9:1a:27:60:84:86:42:c1:b8:c7:
7c:c7:33:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfP8ryQcWNWmYPvhX646h5vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzYzM1Y2E4M2ZjZGY3MWIyNDRlZDgwM2FjNDY4ZTE0NTNk
ODI2OGYwHhcNMjUwNzAzMTEwMTIxWhcNMjUwNzA0MTEwMTIxWjAzMTEwLwYDVQQD
EyhhMTdiNjM4MGZjY2FkODVmZTYyNWZjZGVjOTJmOGU0NWZlNWEzZjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/oZvuB/AIptvh2TxpCFlc7bZ7A9
PB0JfSKBgS4Z6GOeHGPMuLmduk4ymcodLNGnI7rA87jTPvCzVJXXpCgBWr8FGHY0
cEKgDV764GFTewHgI75KckggNcNFmdR3sUZO7TXn9CweCM6+Cg7Ti5jK1MpY8fia
KyNh3ad9hr7RcrY0RAK6M6BJjWkD9OnGjyTh3JYrBTJB5CYy6PIZwS7DhmO8Pacb
ClRRLKoC/7Z7jEdr4WOi1oZz61rFnTfBPqoatlHqdYe198vghxihSQw3OgfMJEjp
9LOEKY0OxX98GESKpNdunOsDyUTxZ2fkqkj1Hm1lOgj2V8tVpSD+0LqT5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKF7Y4D8ythf5iX83skvjkX+Wj+OMB8GA1UdIwQY
MBaAFFPDXKg/zfcbJE7YA6xGjhRT2CaPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVThOY3FEX045eHNrVHRnRHJFYU9GRlBZSm84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9mZWYyZTAtYmEzNy00ODEyLTk1YWQt
NDExYTI3MTIxNjRkLzEvVThOY3FEX045eHNrVHRnRHJFYU9GRlBZSm84Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy9mZWYyZTAtYmEzNy00ODEyLTk1YWQtNDExYTI3MTIxNjRk
LzEvVThOY3FEX045eHNrVHRnRHJFYU9GRlBZSm84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJZHukLEH
T+PgxpRmS43DH94wudvagjfk+CIWKEkN4Ks6jgUa26Ss5tjZRQKK36kI2mzTVE7J
rdw4aZTRLEycJUb2dOaCMpF3Tct40l5Iz+BvstMqBk9aWhb4oxN++lkIMzv8Q+qq
GzgBCYi/vIYBv7QbhS5qdc0ujjS3q36r0Tr95fdaxJXCQfTkJWzJkfyh0iIAlAiw
Q1WlbIc+mq5diwgtZAJR+Yc0XEiKSN+H8nqY3/U3cKwEAkfKV7RsK6K9V5WQ3z20
o4okve6QOnUHU/rU1dCGgSm8nF0yJ58LpMZYusnvdd03fGcjH6Cfq+dFnHLZGidg
hIZCwbjHfMczkw==
-----END CERTIFICATE-----
Generated at Thu Jul 3 18:09:46 2025 by rpki-client