Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
File: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft (raw, json)
Hash identifier: v9wJjA4sUoa7M+Zk0Z15XRnXKGkAQJKSP2hymWYUR1w=
Subject key identifier: 5E:68:95:3D:B3:C7:98:42:E8:A8:C7:6D:F0:F0:F2:C2:E1:8E:43:A5
Authority key identifier: D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9
Certificate issuer: /CN=d94284b94325f5060f8a0e87c1be2827788f18f9
Certificate serial: 019A725D06E7868CC0B1562083CE13B94760
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
Manifest number: 1462
Signing time: Tue 11 Nov 2025 10:01:30 +0000
Manifest this update: Tue 11 Nov 2025 10:01:30 +0000
Manifest next update: Wed 12 Nov 2025 10:01:30 +0000
Files and hashes: 1: 2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl (hash: d3z9GDIgXTNVtRyzOIK59GzEYXJ16JOfMWnOPahYSlU=)
2: ysJps6pTqYBp8hRsJvvn2nSnB6Y.roa (hash: xFEzrUJlVVBWEtFecNObcV0TMloS/XizxOFPtUYtswE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5d:06:e7:86:8c:c0:b1:56:20:83:ce:13:b9:47:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d94284b94325f5060f8a0e87c1be2827788f18f9
Validity
Not Before: Nov 11 10:01:30 2025 GMT
Not After : Nov 12 10:01:30 2025 GMT
Subject: CN=5e68953db3c79842e8a8c76df0f0f2c2e18e43a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4e:18:a7:dc:a5:d3:32:6c:e9:02:68:5d:9d:
87:9b:49:b4:f9:cc:88:8a:9b:d2:f6:4e:e0:74:fa:
47:6e:8a:08:5a:95:83:11:3b:36:98:48:31:4b:77:
8c:73:12:cb:53:8c:d3:06:6b:79:51:91:6d:6c:11:
52:fd:85:f4:eb:e7:e1:1a:b0:c9:49:a0:cd:e3:0e:
fc:f7:38:9a:6c:48:8d:2a:21:37:de:94:3b:f7:ef:
70:6a:1d:57:52:8c:85:03:0a:dc:06:5d:ec:ff:fd:
8a:93:82:4c:49:71:e0:c8:67:11:a7:f2:8b:19:11:
37:b2:f3:b6:5f:e3:8b:52:ed:66:2e:40:8e:bd:13:
c8:75:2b:15:e1:58:d7:90:d6:34:12:9f:ce:e0:bb:
78:e4:e5:d9:fa:44:92:f6:27:3b:d2:a3:a3:72:0f:
b2:72:ec:5c:e0:8a:62:18:01:c2:36:f2:46:bd:56:
53:8a:7a:4d:40:48:ec:f4:77:06:6f:d7:df:12:ae:
02:4f:41:0f:83:2a:a5:1b:ea:d9:15:c8:e6:57:6c:
7d:d2:a1:c4:fa:c7:bc:71:11:bd:39:d1:db:dc:b1:
de:81:b5:34:3e:ac:d7:b9:19:5b:87:05:d4:58:33:
80:e2:0e:69:04:d5:3a:2a:21:c6:9c:3f:af:39:d1:
ad:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:68:95:3D:B3:C7:98:42:E8:A8:C7:6D:F0:F0:F2:C2:E1:8E:43:A5
X509v3 Authority Key Identifier:
keyid:D9:42:84:B9:43:25:F5:06:0F:8A:0E:87:C1:BE:28:27:78:8F:18:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a24095-0908-4884-9244-95d59465e9a8/1/2UKEuUMl9QYPig6Hwb4oJ3iPGPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:c9:c4:04:c5:8f:7a:73:9a:9c:c9:a6:55:76:fa:28:84:2a:
95:1b:8e:21:42:0e:96:f8:b6:cc:e6:e4:2b:45:e5:c4:7e:2a:
83:ff:c9:d6:cf:36:02:cd:d6:5c:4d:92:dc:37:c5:df:01:3a:
1a:5f:4a:11:c1:a5:d2:98:12:31:e3:ec:fe:a8:d2:6b:ed:2a:
15:ed:28:d1:36:03:d6:e9:94:21:c4:05:f3:8a:fc:f3:fb:7d:
36:30:ce:f5:3c:1f:07:9d:c3:dd:5d:fb:97:e1:f0:a4:4a:ea:
8f:e1:50:c0:d6:2b:10:63:a1:a9:ef:8d:aa:29:a8:90:42:6e:
21:ec:2f:2b:8f:77:61:8f:68:99:17:e9:a1:df:03:7d:8c:1b:
c1:16:db:db:3e:96:f9:45:78:af:14:65:bb:b3:cf:28:f0:e2:
98:c8:ef:10:a2:1a:8c:ef:7f:95:19:0f:e1:c3:53:d1:b7:ce:
b8:2a:af:69:e9:67:bb:74:24:98:81:c1:a4:f4:92:11:af:7d:
e3:61:6e:70:8e:8d:38:53:9e:bb:b0:c2:20:c2:0f:18:27:a4:
91:fe:11:1c:96:0d:be:1c:89:68:08:10:7e:4c:d5:2e:4e:af:
5d:6e:45:9f:0f:a0:d4:94:e8:cb:50:23:6c:75:1a:4a:93:a6:
b1:6c:22:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:16:12 2025 by rpki-client