Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
File: mKUzMIdAu70he_adzpCz9UEghFc.mft (raw, json)
Hash identifier: dwWHHhaAGcylIgqHiTUlbzKEjKB+V7kMHodsU0LOhbo=
Subject key identifier: 0B:B6:50:FD:6B:09:74:EC:0F:01:28:71:EE:5B:64:91:89:BC:E6:3B
Authority key identifier: 98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
Certificate issuer: /CN=98a533308740bbbd217bf69dce90b3f541208457
Certificate serial: 019A608D7680115C293F28B0FA53D635CDFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
Manifest number: 1719
Signing time: Fri 07 Nov 2025 23:01:14 +0000
Manifest this update: Fri 07 Nov 2025 23:01:14 +0000
Manifest next update: Sat 08 Nov 2025 23:01:14 +0000
Files and hashes: 1: 4hnUUt9Ys_eQWvU2fA6JemX65dw.roa (hash: ntUnKbzWvKshnrPe1olGFJu/nCj9Xb/2m4Wf2hJLEss=)
2: mKUzMIdAu70he_adzpCz9UEghFc.crl (hash: XG3Rs2M8+ah3L0x0Gi9dYS/TI6TabKJHdX99fgd3wLY=)
3: sfQ3GEtYzhBBWxqpfOQ0GcKpsbY.roa (hash: wrk4xF0OxGaC9MkY6FPvwbKzU+JxYtuzUOz5b0tcuxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Nov 2025 21:37:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:60:8d:76:80:11:5c:29:3f:28:b0:fa:53:d6:35:cd:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a533308740bbbd217bf69dce90b3f541208457
Validity
Not Before: Nov 7 23:01:14 2025 GMT
Not After : Nov 8 23:01:14 2025 GMT
Subject: CN=0bb650fd6b0974ec0f012871ee5b649189bce63b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:76:ef:8f:82:20:1c:75:7c:4c:ea:3f:47:3c:
6e:9b:94:d4:81:c9:db:83:fa:f5:24:3d:84:6c:a0:
54:c4:46:3c:b2:99:eb:ab:84:5a:66:9a:0a:ba:b6:
25:54:9a:d9:dc:2b:26:9f:d5:52:e8:97:ae:dd:ab:
73:d7:64:00:35:86:e9:90:4b:fe:0e:44:56:4f:42:
31:b9:45:20:7f:79:b0:b9:5e:94:ad:07:32:1c:9a:
9a:0e:42:c9:2b:18:eb:52:1e:bf:4d:6a:cc:6f:d3:
7b:a9:e5:22:de:83:05:9c:a0:94:2f:5a:4e:cf:55:
79:41:73:f7:cc:3b:37:9c:bf:7c:82:a9:0a:06:eb:
b9:67:a4:be:34:91:33:39:ca:b8:bd:23:08:81:6c:
92:15:a6:44:4d:00:93:9d:0d:3a:b9:92:39:26:0f:
eb:3f:a8:80:76:ef:23:6e:8f:27:d4:07:2d:66:78:
d2:48:54:13:0b:f1:5c:30:c3:03:13:87:24:81:14:
49:3f:de:e1:71:dc:17:a9:63:38:43:0f:76:7d:e9:
26:2d:73:89:67:bb:13:ac:81:17:44:67:36:c0:21:
ac:4b:9d:5c:45:c4:88:b2:7c:33:2e:35:ea:c9:29:
bd:8a:b2:11:b6:73:d6:0c:f9:45:b7:97:4d:c1:71:
14:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:B6:50:FD:6B:09:74:EC:0F:01:28:71:EE:5B:64:91:89:BC:E6:3B
X509v3 Authority Key Identifier:
keyid:98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:58:52:1f:7a:dd:2c:b1:45:23:b3:65:e5:36:68:a4:e9:7b:
0f:fb:9a:22:c3:97:65:8a:4c:25:65:3d:de:b2:15:b2:3b:a5:
64:20:2d:6a:d0:10:bf:f9:7f:da:69:bf:aa:ec:b4:7f:ff:ac:
0a:e0:c1:4f:7a:de:55:a6:b9:72:de:73:66:30:dc:8f:10:71:
5b:22:4d:b5:4e:d3:a7:a5:df:2e:38:f4:a3:34:4a:88:76:9c:
00:3f:d5:13:d7:70:83:d8:58:c6:df:82:54:ba:a2:27:23:dc:
55:3c:de:89:d1:6e:00:88:fc:f4:f3:ba:7f:45:1c:11:97:37:
47:ed:76:ee:78:d6:47:d2:75:59:22:92:c7:ed:ec:c5:fe:94:
49:d3:f2:3c:be:d2:81:f6:7d:6c:bf:eb:a2:aa:5f:5b:04:9a:
28:69:56:bf:27:d1:bc:f3:46:ce:69:43:ff:c2:8d:a0:9b:c5:
05:4a:4d:7c:36:ea:22:c4:e8:a1:10:fe:76:10:e3:e8:a3:d1:
4a:4e:7a:e5:88:43:af:39:58:5d:3e:33:39:c6:34:cb:63:b6:
8f:fe:af:36:81:e5:69:d6:5e:28:10:c6:d7:f7:24:ab:53:4f:
1b:de:0d:d4:02:d1:b0:0a:fa:ac:8f:07:24:70:cd:0e:65:ce:
ea:ec:e3:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 8 06:09:44 2025 by rpki-client