Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json)
Hash identifier: IXUDNXzZk7DA/02C5yL5HGZ1Uh10XrYabmstivQfyC4=
Subject key identifier: CF:5B:B9:36:D7:02:07:B7:40:3E:BC:D2:89:0E:70:66:37:03:8A:11
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 0198D404AD730452CA32CE28CC3DFEC2DEC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
Manifest number: 1649
Signing time: Fri 22 Aug 2025 23:02:12 +0000
Manifest this update: Fri 22 Aug 2025 23:02:12 +0000
Manifest next update: Sat 23 Aug 2025 23:02:12 +0000
Files and hashes: 1: 8hWTGCLXxSwODB2tKv40DFwDRSA.roa (hash: LnqtzTwP6Z/uj/Pahytsa4k9TTsa7E1q6xNsCMwJ/r4=)
2: KdlAk3dh27bShWAn4-0kWb61hVQ.roa (hash: ATJYV8SWOcnAG9fqVBljwxaiv5XnfJ4U40CX0lPgLrE=)
3: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: pBtmHqHTnpqGOKfHzlHkRT8btSA2v6zp/xn/hvaShhs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:ad:73:04:52:ca:32:ce:28:cc:3d:fe:c2:de:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: Aug 22 23:02:12 2025 GMT
Not After : Aug 23 23:02:12 2025 GMT
Subject: CN=cf5bb936d70207b7403ebcd2890e706637038a11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0f:34:94:f9:d4:74:92:46:79:00:29:28:bb:
82:3e:45:4d:ef:93:b0:cc:12:16:fd:48:56:23:51:
7c:38:12:41:dd:81:d3:bf:a0:59:33:62:a4:e1:bc:
9e:51:71:69:d4:a7:3b:33:30:3f:40:25:13:12:7a:
f6:eb:2c:87:2c:d0:0b:45:b4:ed:43:4c:43:57:57:
53:0a:f0:45:9b:f0:61:59:8b:b3:30:ec:f8:6e:2b:
6b:45:56:da:75:d6:25:cc:df:eb:1c:f1:86:1e:0a:
76:15:7e:b4:66:4e:f9:6e:72:ab:41:71:63:fc:60:
77:8f:90:fa:e6:9d:35:db:7d:cf:c9:70:61:93:1a:
92:e0:0c:f1:58:8b:2d:0c:42:d8:7e:7f:55:65:70:
5d:56:45:56:7d:30:a4:77:c7:a2:74:8a:2c:4a:1b:
f1:83:87:f0:a2:e8:18:c4:68:d6:4c:c9:af:43:c2:
ba:74:7a:a8:54:54:80:12:ef:16:95:81:ad:8f:99:
3f:2f:fe:2e:b7:5a:a9:7c:15:57:57:a8:56:b9:75:
41:f2:62:2d:81:5e:20:35:55:6d:61:c6:47:28:a9:
fc:ec:50:5a:1a:e7:94:16:ac:df:a7:6e:a4:b8:39:
fb:8e:ea:ce:c3:ee:92:6c:94:85:bc:fa:b3:78:4d:
b5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5B:B9:36:D7:02:07:B7:40:3E:BC:D2:89:0E:70:66:37:03:8A:11
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:63:63:00:4f:58:09:df:18:06:ef:01:e1:c4:eb:02:56:d1:
d3:aa:78:e0:6e:b5:b4:56:65:4e:d5:b4:a5:c6:0c:8d:d2:9b:
8d:77:f1:cf:32:a6:af:48:48:4d:19:c6:90:16:11:3c:d2:26:
de:19:55:0a:59:db:08:f6:4b:f8:7a:5d:da:19:b1:1b:06:d5:
44:74:40:6c:67:c7:45:20:67:d3:62:10:9f:ac:2a:12:98:a4:
2c:62:25:62:f0:88:ac:11:97:bb:ef:0f:f3:9a:78:9a:10:87:
05:7e:64:cb:8c:48:b3:10:7c:43:64:00:e3:af:7b:5b:e2:df:
24:2f:ec:b5:48:ef:11:78:be:7f:28:cf:40:33:e4:6d:01:2f:
14:8d:43:3e:a5:7d:17:7c:f1:3c:17:b7:ec:22:b7:f0:67:ba:
8d:f2:02:c0:05:4e:de:5f:6f:12:ba:91:72:2a:f1:b1:60:fc:
95:d7:54:32:a7:61:07:30:4d:c5:02:5c:ea:95:2a:ff:ca:fd:
ab:51:fe:5d:65:5d:e0:89:b2:9c:06:07:6f:56:0e:b8:33:10:
cf:1d:a5:cb:5a:05:9b:c9:3d:07:33:c6:33:e8:5a:2f:4a:98:
7d:41:a4:8b:38:0e:74:4a:48:34:5d:64:78:56:29:74:34:f6:
d7:c6:f7:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:16:30 2025 by rpki-client