Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json)
Hash identifier: 75jd2IxCfwr8etUN5rgcH1+VsVhuP69to8GQMd8nkYc=
Subject key identifier: 76:54:B4:6D:C8:53:D8:29:1B:B5:67:36:0B:BF:89:06:84:E2:A7:BA
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial: 019A71B7FD0A3814488852A578EC49C29266
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
Manifest number: 14D8
Signing time: Tue 11 Nov 2025 07:01:14 +0000
Manifest this update: Tue 11 Nov 2025 07:01:14 +0000
Manifest next update: Wed 12 Nov 2025 07:01:14 +0000
Files and hashes: 1: ELPDypl8AO7yu9Qb_T04CJHIAmc.roa (hash: uMxQfCf54KpZ6vXVJrK4LBRwbGjKGq0Ym1Kz/m5o7Z0=)
2: h7jotg4RS-yoMxmLNwMHtqMIvTo.roa (hash: 0RvIPvSKfKKYiob3W8lnsFljStCAR/IAjli0EYtRtIQ=)
3: iRTljilS88fdbTnqXefNcD2KdQw.roa (hash: SYC9aJR60HZt276fl/3G18s2lWN51c7daVgQyb0yCnk=)
4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: iX6ypdnT4E8yMtDOolxIUGsWj9AmsAyLy0fqKMShhhQ=)
5: vEwnUG1RajWkcLEBWJPnIiLLgBM.roa (hash: sSHl9JnRfzO2J5TGzVLlmHvYGgd6KK351LDclJH6UZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:fd:0a:38:14:48:88:52:a5:78:ec:49:c2:92:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Validity
Not Before: Nov 11 07:01:14 2025 GMT
Not After : Nov 12 07:01:14 2025 GMT
Subject: CN=7654b46dc853d8291bb567360bbf890684e2a7ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d4:30:d5:71:dd:58:a2:93:35:df:0b:89:cb:
b1:d1:05:c2:04:f5:3e:70:85:3f:4e:04:cc:1a:bc:
18:a9:e5:15:5a:09:a7:b8:a9:5e:75:a1:2a:8b:71:
8a:e9:3b:27:f3:b9:61:3d:53:cc:b4:a2:a1:5f:e8:
ef:e6:ab:77:59:4e:df:a3:a5:b1:b0:6f:c7:1d:bc:
09:d5:bc:11:fc:ca:c4:9f:0c:46:1a:5c:ea:15:94:
37:a3:67:5b:53:97:e4:ad:46:72:22:a2:b5:83:c0:
a9:7f:02:c5:91:da:20:1d:e9:57:28:9c:d5:21:1c:
ff:52:99:ff:09:52:2f:c9:d7:44:df:71:7b:30:60:
ad:3f:4a:66:c3:6e:fa:e8:20:df:5a:7d:fe:40:75:
50:4f:da:a4:98:99:89:ef:50:e0:0e:68:64:92:3c:
d9:d5:f9:b3:34:a3:8f:36:c4:14:0d:19:db:6e:77:
c9:e2:99:80:19:8a:50:5e:28:de:bc:be:0b:89:46:
99:cf:90:fa:f0:ec:3b:1d:55:42:57:ba:2d:b0:bd:
f8:5c:41:53:0b:a5:30:ff:4d:5d:e4:95:f8:ea:41:
d7:56:a8:68:13:4c:77:a7:86:9c:c4:f5:8f:18:b3:
74:35:5c:c5:91:62:c4:0a:37:11:fe:7c:28:d6:57:
38:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:54:B4:6D:C8:53:D8:29:1B:B5:67:36:0B:BF:89:06:84:E2:A7:BA
X509v3 Authority Key Identifier:
keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:03:a0:cb:50:e7:e4:d0:3f:95:64:3b:74:0e:e0:60:6d:d4:
8e:d9:02:7c:ca:bc:b2:be:50:25:11:46:b5:93:4f:bd:f4:3b:
61:79:f7:2d:a6:d5:b1:06:90:07:f0:4a:dc:27:49:43:54:42:
7f:47:35:5d:58:c7:57:61:87:01:d3:b1:03:b9:2c:91:8a:e1:
a0:27:27:88:5b:04:12:ec:34:dd:69:ac:e4:39:e1:af:1d:d2:
c6:8b:93:65:5a:0a:57:a2:69:97:cd:57:20:29:cb:2c:26:86:
bc:f7:02:51:16:a7:34:30:50:83:d6:fe:db:d6:cc:8d:cb:4f:
17:65:5b:0a:9b:42:42:a3:82:49:1e:92:0c:f6:c6:4a:f8:1c:
94:54:2f:66:b1:7b:30:da:46:13:e5:09:13:f9:ca:d3:ff:f8:
19:61:58:48:12:f2:c7:60:77:a5:52:23:41:a7:59:8f:d0:49:
06:d2:e8:01:48:10:21:c2:ee:35:bd:22:fc:6c:86:6a:13:f9:
12:e5:3c:53:86:40:fd:3c:62:79:f5:03:f4:5a:8e:11:50:13:
37:a4:0f:a0:6b:8d:6f:a0:71:8d:b3:3e:a0:ff:8e:10:77:45:
bd:ff:3b:32:d8:db:d3:dd:95:53:2b:b1:32:04:c7:94:60:1e:
cd:0f:39:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt/0KOBRIiFKleOxJwpJmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxNDVlYWQ4ZDNmMTI4NDQwMmI2Zjc1NjE0YTg3MjU3NTAz
Y2UxYmMwHhcNMjUxMTExMDcwMTE0WhcNMjUxMTEyMDcwMTE0WjAzMTEwLwYDVQQD
Eyg3NjU0YjQ2ZGM4NTNkODI5MWJiNTY3MzYwYmJmODkwNjg0ZTJhN2JhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2dQw1XHdWKKTNd8Licux0QXCBPU+
cIU/TgTMGrwYqeUVWgmnuKledaEqi3GK6Tsn87lhPVPMtKKhX+jv5qt3WU7fo6Wx
sG/HHbwJ1bwR/MrEnwxGGlzqFZQ3o2dbU5fkrUZyIqK1g8CpfwLFkdogHelXKJzV
IRz/Upn/CVIvyddE33F7MGCtP0pmw2766CDfWn3+QHVQT9qkmJmJ71DgDmhkkjzZ
1fmzNKOPNsQUDRnbbnfJ4pmAGYpQXijevL4LiUaZz5D68Ow7HVVCV7otsL34XEFT
C6Uw/01d5JX46kHXVqhoE0x3p4acxPWPGLN0NVzFkWLECjcR/nwo1lc4SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHZUtG3IU9gpG7VnNgu/iQaE4qe6MB8GA1UdIwQY
MBaAFJFF6tjT8ShEArb3VhSocldQPOG8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzct
MmFkMTk1MjY0YzcyLzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzctMmFkMTk1MjY0Yzcy
LzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlwOgy1Dn
5NA/lWQ7dA7gYG3UjtkCfMq8sr5QJRFGtZNPvfQ7YXn3LabVsQaQB/BK3CdJQ1RC
f0c1XVjHV2GHAdOxA7kskYrhoCcniFsEEuw03Wms5Dnhrx3SxouTZVoKV6Jpl81X
ICnLLCaGvPcCURanNDBQg9b+29bMjctPF2VbCptCQqOCSR6SDPbGSvgclFQvZrF7
MNpGE+UJE/nK0//4GWFYSBLyx2B3pVIjQadZj9BJBtLoAUgQIcLuNb0i/GyGahP5
EuU8U4ZA/TxiefUD9FqOEVATN6QPoGuNb6BxjbM+oP+OEHdFvf87Mtjb092VUyux
MgTHlGAezQ85xA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:50:34 2025 by rpki-client