Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json)
Hash identifier: HByNk2wJL/JtveV/a2Oww3ndpiRtpkmIeR0YYU+5VUU=
Subject key identifier: B9:40:C5:A1:B1:A4:D3:BB:2F:E0:D3:98:B9:14:BF:B3:45:DC:36:BF
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial: 01988B105C52330BC5802F91103EA86454D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
Manifest number: 13DC
Signing time: Fri 08 Aug 2025 19:02:41 +0000
Manifest this update: Fri 08 Aug 2025 19:02:41 +0000
Manifest next update: Sat 09 Aug 2025 19:02:41 +0000
Files and hashes: 1: ELPDypl8AO7yu9Qb_T04CJHIAmc.roa (hash: uMxQfCf54KpZ6vXVJrK4LBRwbGjKGq0Ym1Kz/m5o7Z0=)
2: h7jotg4RS-yoMxmLNwMHtqMIvTo.roa (hash: 0RvIPvSKfKKYiob3W8lnsFljStCAR/IAjli0EYtRtIQ=)
3: iRTljilS88fdbTnqXefNcD2KdQw.roa (hash: SYC9aJR60HZt276fl/3G18s2lWN51c7daVgQyb0yCnk=)
4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: ffPSCC7bmbu82ByTpw/95Tsh+LbePg+kiPUbdpwqeZg=)
5: vEwnUG1RajWkcLEBWJPnIiLLgBM.roa (hash: sSHl9JnRfzO2J5TGzVLlmHvYGgd6KK351LDclJH6UZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:10:5c:52:33:0b:c5:80:2f:91:10:3e:a8:64:54:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Validity
Not Before: Aug 8 19:02:41 2025 GMT
Not After : Aug 9 19:02:41 2025 GMT
Subject: CN=b940c5a1b1a4d3bb2fe0d398b914bfb345dc36bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:31:fd:e4:e5:cc:2f:17:ec:30:0b:4a:c0:9e:
a5:ee:ea:1b:c0:8d:1e:82:73:32:a5:5d:20:01:60:
b5:6c:79:e4:89:9b:bf:3b:64:15:54:fb:d1:4a:40:
19:5f:0e:15:ff:61:dd:ea:31:61:bd:4b:ac:02:5f:
8f:aa:ac:4d:a7:40:97:2d:55:64:43:c6:5c:fb:d9:
45:ff:04:df:fd:b7:fe:8c:f8:ae:ac:22:4d:ba:0c:
f0:1c:c9:94:e4:16:4f:0e:23:7b:12:de:17:37:44:
29:10:b1:27:f9:41:09:c1:8f:f0:3b:2a:d1:d4:46:
d3:a0:cd:ea:61:81:51:16:d4:41:c2:28:6a:0a:8a:
5c:7b:12:ac:ad:d7:9e:e2:39:79:af:83:49:95:84:
e9:6e:87:e9:c7:78:45:4a:55:8f:14:08:cc:d5:26:
c1:27:17:25:c6:03:1e:bc:ef:0c:c9:91:79:85:bf:
9c:d5:5e:7e:09:54:30:7d:2d:90:07:3c:43:ac:b6:
2d:da:00:2f:e2:99:7a:7e:10:56:65:2d:d8:5e:ec:
c7:ba:7f:d9:bb:5a:89:05:c1:1b:eb:74:26:58:52:
b7:96:99:fc:92:ed:43:ff:c3:fd:02:ae:59:c5:64:
72:47:12:af:4a:2a:48:8e:2c:39:a7:73:53:19:d1:
34:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:40:C5:A1:B1:A4:D3:BB:2F:E0:D3:98:B9:14:BF:B3:45:DC:36:BF
X509v3 Authority Key Identifier:
keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:9d:51:42:ea:71:87:3c:3b:a4:ca:94:64:01:87:97:3b:47:
86:d1:d6:db:68:0e:5d:bd:a3:49:4e:3c:10:9c:3d:1c:a7:bb:
0e:64:32:4c:d9:16:98:ee:b2:7e:37:dd:7d:f5:3b:63:e5:49:
e8:48:57:47:92:07:d4:bf:43:4f:49:f3:c3:1c:ac:db:96:26:
4f:c8:38:3b:70:43:02:1d:4a:d1:6c:14:ff:bc:58:97:74:6f:
c9:4d:38:ad:73:2f:91:51:d8:1c:f0:5b:b3:58:c0:ad:ee:d4:
2d:87:45:d1:89:a6:eb:db:59:54:8f:55:57:a9:24:29:04:65:
2a:e0:10:de:e4:83:d2:35:73:9f:5a:2b:a0:f6:d2:4e:39:84:
78:ec:99:98:00:35:8b:13:4f:41:f5:5b:73:b7:92:57:17:62:
ba:7e:b4:1d:c8:76:d1:6b:19:b2:87:0e:d4:79:9d:6e:5e:e6:
5c:f3:b9:3f:8e:ad:a6:c6:d3:9e:f6:c1:49:d4:be:94:e6:1c:
48:f7:d8:66:75:8f:ba:f6:d7:e6:60:ed:7d:05:de:46:35:a6:
d5:a4:a6:0a:fc:7f:0d:8d:af:33:20:7e:c5:32:5f:f1:34:45:
a8:a2:fd:79:42:92:0e:d3:68:e8:07:98:70:6b:9b:d3:8f:4c:
b0:61:c8:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 21:00:55 2025 by rpki-client