Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: Re51V/sZtmdPaf44G74eEnFkOcISmKhf+lHCBe2Lkls=
Subject key identifier: 4C:B2:D8:83:E2:0E:8D:3B:D0:0D:AA:9D:26:0A:A2:D2:0E:7A:9B:D6
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 019A522C644D0AD03E3131AB05B7CFD40C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 021A
Signing time: Wed 05 Nov 2025 04:00:32 +0000
Manifest this update: Wed 05 Nov 2025 04:00:32 +0000
Manifest next update: Thu 06 Nov 2025 04:00:32 +0000
Files and hashes: 1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: CXITZ0NHInaNeF1VcQeISIHspcK1Did/qtjasPoajyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:64:4d:0a:d0:3e:31:31:ab:05:b7:cf:d4:0c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Nov 5 04:00:32 2025 GMT
Not After : Nov 6 04:00:32 2025 GMT
Subject: CN=4cb2d883e20e8d3bd00daa9d260aa2d20e7a9bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4e:87:08:cf:f0:25:cb:1e:a6:42:15:cb:f8:
ad:6b:c3:85:84:e1:e6:63:c4:d9:f7:69:78:67:ec:
6f:f3:cf:0e:5e:0f:19:32:56:f9:dc:b1:7b:d7:2f:
d9:c6:4c:32:4f:c3:5f:5e:5d:aa:de:9e:99:77:70:
d0:3c:08:00:cc:8c:ec:09:79:15:95:cc:e7:ab:58:
2c:e7:dc:d7:3f:41:2f:8d:a3:60:1b:87:8b:d0:71:
b4:7e:07:ef:1f:31:92:dd:4e:99:3f:e0:ee:28:db:
a3:bb:c0:66:8f:48:2f:f8:3a:d3:3a:73:a4:50:a9:
33:d7:d8:84:9f:fa:3b:17:d5:eb:59:23:53:fe:63:
11:9a:c4:0f:9d:4b:62:6e:94:b0:cc:bf:cb:29:f6:
44:cc:43:0b:b9:f9:b9:de:49:0f:30:5a:87:3a:05:
26:03:bf:bf:39:6d:9c:00:43:85:d4:42:ef:d7:71:
c5:1f:8d:5e:71:c6:18:c7:e2:a2:53:8a:e8:73:b5:
33:fe:1f:15:7d:83:59:da:8e:6f:ad:41:88:61:d9:
d1:f6:59:df:b3:8d:17:27:df:85:f0:56:46:0a:50:
8f:57:05:bb:e3:d3:f4:46:05:11:f3:cd:57:7a:e2:
19:38:94:87:12:44:0f:ac:d0:05:16:2c:8e:2f:fd:
06:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B2:D8:83:E2:0E:8D:3B:D0:0D:AA:9D:26:0A:A2:D2:0E:7A:9B:D6
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:56:eb:1e:9e:08:19:2f:1d:c7:56:80:8f:08:ca:11:ba:5d:
12:9e:52:30:28:7f:15:2c:4e:45:3f:e0:d4:a7:1e:6c:c4:f0:
fd:66:70:f5:a5:2c:6e:ca:1c:46:95:0d:41:1e:aa:ef:78:c4:
af:bf:bd:fe:e4:5f:13:42:96:97:52:d2:f2:22:96:56:95:48:
f5:31:6a:d2:a6:b1:f0:57:06:33:be:4a:cb:07:e0:06:70:7d:
80:74:bd:8e:ef:b8:b7:cd:f6:10:3b:24:66:ea:64:d3:88:33:
0c:93:d3:7f:e1:d1:76:21:2f:82:11:8e:76:89:cf:00:c2:36:
b5:16:db:28:87:ac:e1:53:3c:27:55:87:a9:57:08:cd:eb:4a:
06:c4:02:05:16:bd:b2:63:35:ee:02:ea:93:95:48:53:23:a3:
f7:b9:01:4f:25:75:92:84:aa:4d:82:33:e0:c2:0a:c6:7d:3f:
fc:99:08:69:1b:77:8b:ec:16:7e:71:cb:90:14:36:35:c2:a4:
3e:71:fe:6b:36:c1:85:26:d5:b8:69:66:34:ce:5f:34:e9:8d:
c2:3d:95:26:f7:00:80:b0:e7:ef:c0:98:b7:b0:4e:26:0b:cb:
6b:26:26:a9:79:3e:a3:57:fb:bd:6a:f0:cf:45:8d:4d:5b:2a:
7b:79:29:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:15:24 2025 by rpki-client