Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
File: RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft (raw, json)
Hash identifier: rntrbA42+dxPuT53AeWFeApCT51ZGRI13uK6eoQtTEw=
Subject key identifier: F1:37:D3:71:B8:F5:32:A3:FB:7D:6F:E7:B0:24:CA:7F:23:2F:0A:4D
Authority key identifier: 46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
Certificate issuer: /CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Certificate serial: 019A7293E81C2F4B73DD2C95BD1D162DA332
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
Manifest number: 1722
Signing time: Tue 11 Nov 2025 11:01:27 +0000
Manifest this update: Tue 11 Nov 2025 11:01:27 +0000
Manifest next update: Wed 12 Nov 2025 11:01:27 +0000
Files and hashes: 1: RO-2xcQ-C0WrDSJ7Eu00WY23rS4.roa (hash: Avrv1nDidaSbZAK1I64G61mkaNMT6r8igSyRsacO8hw=)
2: RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl (hash: 7+hsf0t9AdNL102XONTUgE0sd1cEs9Ot+JQmfA7CmIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:e8:1c:2f:4b:73:dd:2c:95:bd:1d:16:2d:a3:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Validity
Not Before: Nov 11 11:01:27 2025 GMT
Not After : Nov 12 11:01:27 2025 GMT
Subject: CN=f137d371b8f532a3fb7d6fe7b024ca7f232f0a4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d0:2f:9d:f0:04:38:40:ff:ee:46:6a:f2:e8:
00:65:0f:a6:2c:ab:e1:bc:92:63:2e:b3:e4:8a:c7:
65:01:d1:66:d3:c0:9a:a7:72:b0:67:d7:db:6b:6f:
ae:84:24:33:35:c6:e3:f8:d4:1e:b9:c1:ad:c3:b6:
92:9c:1d:c4:69:5d:7f:14:f9:18:4d:5e:3b:00:67:
c5:17:1a:3b:e2:b2:ab:c5:3b:76:36:92:6f:70:cf:
d2:c4:a2:9a:6f:62:b8:48:2a:63:7a:20:e8:99:fe:
8d:1d:7e:68:68:e3:e3:a3:74:f0:6f:c1:cb:e7:c5:
06:60:99:66:de:03:58:48:e8:92:9b:95:e4:18:79:
2f:d1:80:70:60:3e:5a:29:b8:d4:dd:18:5c:7a:cb:
eb:31:61:c5:39:da:7c:d3:a0:b8:c3:73:09:5b:01:
11:f5:8c:22:73:b2:ad:5b:44:9b:41:8b:5b:04:97:
df:4c:cd:e2:27:97:8a:c2:08:a2:8f:aa:ef:1f:93:
3d:5d:81:78:f7:e3:1d:7e:45:fd:fd:f0:aa:7e:ff:
98:17:d1:7c:24:cd:fa:b9:24:cf:af:4c:c2:85:d5:
5e:ee:fb:c4:3b:8d:8d:b3:38:d5:03:25:01:92:1f:
0b:94:65:ae:ce:46:85:08:d3:60:7e:70:92:1f:5c:
e9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:37:D3:71:B8:F5:32:A3:FB:7D:6F:E7:B0:24:CA:7F:23:2F:0A:4D
X509v3 Authority Key Identifier:
keyid:46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:e9:d6:57:f3:30:84:80:8e:81:d2:7a:b7:86:31:0a:3d:4a:
e6:18:1b:7a:c4:2b:de:4a:8d:ff:c9:7e:c5:f7:98:78:e7:75:
74:ff:3e:78:e7:df:e8:b9:ba:f9:73:fc:b8:3f:cd:36:b5:0b:
ee:75:7e:e2:84:01:61:27:f7:b5:61:17:82:4b:88:20:ff:f0:
f7:89:31:d9:bc:1c:2b:7d:a2:e1:c3:f2:e9:ac:d0:33:a1:21:
6a:13:0d:39:34:15:5a:5e:fd:70:5d:51:6e:54:2b:72:de:0c:
f5:f4:89:a2:b4:2b:fa:0b:43:6a:92:65:19:b3:58:74:51:13:
6e:f2:15:a5:26:06:5d:86:c0:4a:39:f9:be:1b:ae:0b:ac:ab:
ac:b7:27:c6:cb:23:bd:a4:db:59:b1:95:5c:23:48:b4:e0:3e:
20:08:ca:eb:8b:23:46:f7:8a:73:31:c2:9f:b0:29:f3:18:be:
d8:c4:4b:c8:61:26:d1:be:03:51:04:3b:de:7a:78:7a:96:16:
0d:c6:1b:e6:87:81:25:8d:8c:17:4a:3d:ff:5d:67:ea:90:27:
08:da:1e:70:62:54:53:c2:bf:87:a4:b8:30:92:ed:04:1c:bd:
e1:59:e4:1e:e2:95:0a:56:34:0c:d2:64:6b:a9:f9:c5:de:6a:
c3:bf:8d:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:17:50 2025 by rpki-client