Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
File: tUcxKN5Ul222LZvRYU53xD3uObU.mft (raw, json)
Hash identifier: bgbYwsy7tnG3aHpXgvRP7HBnFnQhEw0RAwlgI/b1ucM=
Subject key identifier: A2:6F:83:88:90:EC:3E:0F:CB:B8:C8:63:CA:93:1A:0B:16:86:57:17
Authority key identifier: B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5
Certificate issuer: /CN=b5473128de54976db62d9bd1614e77c43dee39b5
Certificate serial: 019A71B7B3093B89A869585A0CEEEE133DFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
Manifest number: 13F6
Signing time: Tue 11 Nov 2025 07:00:55 +0000
Manifest this update: Tue 11 Nov 2025 07:00:55 +0000
Manifest next update: Wed 12 Nov 2025 07:00:55 +0000
Files and hashes: 1: WT51Xxp6wSpnMPjyEAyyUhxOXPk.roa (hash: GG3W3sv/8g51OizpERxg8YmbMm76mWXeFGoFM/wpQ9M=)
2: tUcxKN5Ul222LZvRYU53xD3uObU.crl (hash: Dj5RoIJyJQy6wn34eeBuqyCW5EmxFEGtB1AAq4KJdYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:b3:09:3b:89:a8:69:58:5a:0c:ee:ee:13:3d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5473128de54976db62d9bd1614e77c43dee39b5
Validity
Not Before: Nov 11 07:00:55 2025 GMT
Not After : Nov 12 07:00:55 2025 GMT
Subject: CN=a26f838890ec3e0fcbb8c863ca931a0b16865717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:11:5b:81:dc:40:5d:2b:c2:3b:48:c2:4d:a2:
56:ba:82:7b:92:a8:47:b6:b3:f1:d1:b3:8c:42:11:
fd:44:79:7d:a9:61:d2:99:f2:5f:c8:ae:35:35:44:
32:8b:0a:aa:27:f1:b6:0c:11:33:b5:01:ff:40:9b:
dc:21:e1:c7:2d:ba:0c:91:56:d6:a1:f1:ff:8b:96:
7e:8d:cc:e6:1f:c3:a4:6e:12:dd:fc:fc:57:b8:94:
08:16:ad:fd:f3:6d:d0:02:80:a4:b2:9e:8f:87:18:
69:81:e6:8c:8f:7b:4c:70:0d:01:c9:d7:82:7c:49:
fa:70:ce:34:b4:eb:8c:d8:93:b8:81:ff:b7:48:c6:
2d:d1:8d:f2:06:df:d4:eb:69:2d:2e:ba:af:18:a0:
25:32:37:06:1a:10:3a:fc:20:c0:58:99:fd:62:cc:
83:52:95:99:e0:32:da:71:97:65:72:c7:bd:1b:ea:
49:87:9b:d7:96:fd:20:02:3d:2b:68:8d:52:35:7d:
91:25:09:5f:ed:04:e8:ef:fb:05:e0:ea:6b:21:a2:
c5:93:73:96:1d:0d:b4:7b:0a:b8:d7:65:64:d0:b6:
9f:bd:ce:01:b6:69:6e:5c:72:f7:b2:2f:c8:27:0f:
0c:53:45:90:49:11:a3:a8:8c:55:da:32:73:1b:13:
49:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6F:83:88:90:EC:3E:0F:CB:B8:C8:63:CA:93:1A:0B:16:86:57:17
X509v3 Authority Key Identifier:
keyid:B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:bb:bc:65:41:52:7d:78:05:ee:d1:b8:5f:c4:a7:ca:af:d3:
5b:a7:4d:1c:9a:83:0b:6a:9c:18:89:26:cb:60:c3:a6:e8:23:
76:f8:17:dd:db:da:a4:c0:00:98:89:63:38:11:c4:a9:0b:27:
fb:d9:90:dd:2e:64:9b:5d:bb:92:cd:2f:07:75:d6:6e:89:32:
e9:99:cb:99:7c:19:71:53:13:f0:e6:b7:71:a3:b0:c5:51:d3:
7f:46:00:ae:bc:2f:ad:7f:71:ae:be:1f:0a:55:1b:f3:9b:fe:
f2:6a:74:6b:ca:3d:8f:85:1a:c0:dc:47:a3:0e:25:a6:90:dc:
c4:ae:ab:7b:46:5e:4f:9a:68:9c:0e:ca:05:21:71:3c:1d:26:
df:92:72:38:32:39:7d:51:52:c3:ab:af:4d:4b:77:5e:0c:be:
d3:4c:51:3c:02:5d:c3:b2:d4:5b:22:53:5d:ca:22:ed:0c:ec:
76:44:7e:09:a5:ed:5f:13:fa:cf:ce:37:c4:e5:8c:75:55:ec:
71:bd:7f:c0:62:94:64:f2:71:d7:0a:8a:fd:ec:e5:96:09:d4:
56:5e:32:d5:fd:ff:75:e3:7c:b0:4e:be:48:ff:f9:56:fc:c5:
3d:54:34:53:01:84:ab:2d:82:18:0c:c8:26:1c:91:51:de:92:
5d:35:58:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:47:31 2025 by rpki-client