Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json)
Hash identifier: NBVtXtrOjltWHtVEgNnIR7JK/IrUU02xUf5pP/cxuxc=
Subject key identifier: F4:6D:3A:94:50:C1:85:79:3B:B0:D6:44:4E:62:6D:24:52:1D:F9:75
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial: 019A54C0AC61C1878DE27DEA6E081EFBA5E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
Manifest number: 14C9
Signing time: Wed 05 Nov 2025 16:01:44 +0000
Manifest this update: Wed 05 Nov 2025 16:01:44 +0000
Manifest next update: Thu 06 Nov 2025 16:01:44 +0000
Files and hashes: 1: ELPDypl8AO7yu9Qb_T04CJHIAmc.roa (hash: uMxQfCf54KpZ6vXVJrK4LBRwbGjKGq0Ym1Kz/m5o7Z0=)
2: h7jotg4RS-yoMxmLNwMHtqMIvTo.roa (hash: 0RvIPvSKfKKYiob3W8lnsFljStCAR/IAjli0EYtRtIQ=)
3: iRTljilS88fdbTnqXefNcD2KdQw.roa (hash: SYC9aJR60HZt276fl/3G18s2lWN51c7daVgQyb0yCnk=)
4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: lX+S+mCgAquBCYQk/NVxPxrm7eK+2MMmL9JNUceM03o=)
5: vEwnUG1RajWkcLEBWJPnIiLLgBM.roa (hash: sSHl9JnRfzO2J5TGzVLlmHvYGgd6KK351LDclJH6UZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 16:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:c0:ac:61:c1:87:8d:e2:7d:ea:6e:08:1e:fb:a5:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Validity
Not Before: Nov 5 16:01:44 2025 GMT
Not After : Nov 6 16:01:44 2025 GMT
Subject: CN=f46d3a9450c185793bb0d6444e626d24521df975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1a:be:08:f6:ad:11:e1:ae:c4:f6:b9:cc:29:
b9:ef:eb:04:67:1f:16:0b:41:0a:33:e4:83:8b:58:
f9:df:c6:9b:65:da:65:f6:53:de:27:84:50:a6:ea:
de:d4:2a:2e:b0:7e:e8:4d:fd:1f:7e:b5:70:d3:f7:
70:78:70:fb:11:24:75:eb:f7:9e:9a:6a:3d:17:fe:
14:06:ee:0a:bd:dd:98:20:60:87:bc:d4:74:31:5c:
50:f5:71:00:00:e2:8b:49:67:93:61:cf:fb:33:5b:
e9:04:37:dd:74:b9:33:ee:e1:11:4d:46:6b:02:da:
ea:22:e5:e6:3c:3e:18:e2:ae:4e:d6:38:2e:02:08:
4d:74:bc:8e:bd:94:64:44:b9:0c:ff:22:a8:5f:92:
6a:13:ff:72:9e:b7:95:62:34:44:df:04:ee:e0:f7:
d7:0b:1d:84:a8:5a:f7:a4:a5:ed:e2:a8:f2:b1:42:
8f:26:a0:46:33:f7:79:bd:7b:7f:e0:90:30:71:16:
1b:7c:5c:82:43:07:c6:7a:0c:37:cd:7d:c4:4d:6b:
4c:85:3f:06:d8:d5:96:da:61:9e:1b:0c:e5:89:57:
8e:8a:57:11:44:7a:f2:71:74:66:ab:03:82:72:67:
17:05:6f:b5:af:5e:02:86:64:0f:07:d7:85:00:fe:
60:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:6D:3A:94:50:C1:85:79:3B:B0:D6:44:4E:62:6D:24:52:1D:F9:75
X509v3 Authority Key Identifier:
keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:5c:9c:c5:06:12:2c:b2:3c:00:ee:de:6e:53:8f:05:d4:2e:
84:61:f5:01:3e:98:f4:db:85:be:f6:4c:c3:44:e8:0f:99:6b:
70:cd:6e:20:5f:86:55:a1:8b:55:58:9f:54:00:77:d9:93:ec:
7b:58:11:66:2a:27:d5:62:b6:f2:d8:b5:5b:c7:f3:14:4d:7b:
f8:20:34:b0:43:77:0b:59:3d:8d:0c:56:f8:be:6b:cb:54:5a:
91:94:c8:4c:5c:8d:87:9e:cd:b7:55:aa:5d:4e:e9:3b:c2:6a:
f2:95:cb:5f:eb:02:69:63:f9:3d:0d:28:b8:1c:1d:c0:d3:fa:
2f:11:82:eb:d0:12:a7:a7:7f:16:fc:ab:b5:63:76:ca:e9:1f:
1e:25:58:0e:57:06:13:52:f8:40:99:22:59:d8:ad:9a:1a:19:
b4:75:ff:09:2a:fa:d0:f9:e5:ed:ec:a7:fd:ca:5a:c7:1c:e9:
e5:fc:d4:7d:a0:58:a4:cc:8e:fd:54:7b:0d:32:db:34:8c:61:
22:f3:6a:f1:a6:0e:32:f8:67:ca:2f:d3:fe:e6:a5:f8:9e:a3:
03:ab:59:67:53:2d:d1:89:e9:8e:cc:be:4f:11:05:e1:8d:af:
18:7e:47:3a:42:3e:0f:19:29:18:e1:b8:c2:ed:e7:5b:77:c1:
11:a7:10:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 22:31:42 2025 by rpki-client