Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft
File: U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft (raw, json)
Hash identifier: Tq/tdqn3PEhxVWVcCUvvjUhmGEjiZQtuG2ITL4igXMo=
Subject key identifier: 8B:D8:20:8A:28:2B:4A:0A:64:0B:8D:A9:37:8A:A7:ED:4F:BB:6B:13
Authority key identifier: 53:65:D0:3F:D8:52:26:74:EB:17:AC:76:72:94:CD:11:F7:29:39:D1
Certificate issuer: /CN=5365d03fd8522674eb17ac767294cd11f72939d1
Certificate serial: 019A7225ABEA00F98EA0EF9DEB80A2D9A4A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2XQP9hSJnTrF6x2cpTNEfcpOdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft
Manifest number: 63
Signing time: Tue 11 Nov 2025 09:01:02 +0000
Manifest this update: Tue 11 Nov 2025 09:01:02 +0000
Manifest next update: Wed 12 Nov 2025 09:01:02 +0000
Files and hashes: 1: U2XQP9hSJnTrF6x2cpTNEfcpOdE.crl (hash: okS2NWb28F8FAEoMoyuhsyMtpfTWQ4ClYdf570tZDc8=)
2: tfiH7BWA2nR2OChCX9UjtDlYY3Q.roa (hash: Nf7Xdo8U+iMEgw4lw6H1GywUDmKoW0FTEplT8uPlZJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft
rsync://rpki.ripe.net/repository/DEFAULT/U2XQP9hSJnTrF6x2cpTNEfcpOdE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:ab:ea:00:f9:8e:a0:ef:9d:eb:80:a2:d9:a4:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5365d03fd8522674eb17ac767294cd11f72939d1
Validity
Not Before: Nov 11 09:01:02 2025 GMT
Not After : Nov 12 09:01:02 2025 GMT
Subject: CN=8bd8208a282b4a0a640b8da9378aa7ed4fbb6b13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3a:cf:23:22:26:3d:2f:df:19:83:d3:14:ea:
ee:44:1e:ca:33:95:aa:2e:a0:0d:02:20:bd:12:9e:
15:fe:93:8b:bf:59:33:a0:56:73:de:8e:f4:62:a5:
37:e8:5b:a9:dc:d5:5a:4c:b5:96:da:4d:20:61:6a:
98:ab:5c:92:bc:4b:e0:ab:a5:56:55:bf:fc:d2:c8:
59:bd:d1:85:fc:ff:8e:1d:ce:47:2e:a7:1c:a0:24:
70:51:53:7c:85:78:c2:30:1e:57:4a:4a:83:18:9a:
ec:89:be:b2:d9:91:af:e8:f9:43:dd:90:4d:d1:d4:
c7:d0:58:33:8b:99:80:7a:39:0a:6f:f3:4b:6c:97:
39:3a:40:bb:95:85:85:f9:3e:a4:3a:98:f8:41:71:
57:30:72:7e:43:b9:7a:3b:8b:34:3d:48:47:ee:e7:
a0:e5:9d:47:df:44:ca:0e:d7:2c:20:0b:72:90:aa:
5d:79:76:48:9b:61:aa:6b:13:36:82:53:55:a3:57:
a1:e1:a0:4f:67:82:d2:46:15:57:b3:c1:4b:da:34:
8e:b0:9b:73:f6:10:78:dd:30:5f:fb:2d:27:84:14:
50:20:7d:73:b3:60:30:e8:4b:ed:d9:7e:6b:5b:e2:
3b:68:03:26:e1:93:e4:dc:46:90:f4:44:de:52:fe:
7d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D8:20:8A:28:2B:4A:0A:64:0B:8D:A9:37:8A:A7:ED:4F:BB:6B:13
X509v3 Authority Key Identifier:
keyid:53:65:D0:3F:D8:52:26:74:EB:17:AC:76:72:94:CD:11:F7:29:39:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2XQP9hSJnTrF6x2cpTNEfcpOdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d0b571-3276-4177-8163-0069030763db/1/U2XQP9hSJnTrF6x2cpTNEfcpOdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:7e:ab:9b:ff:9d:2e:f8:07:be:97:47:6a:0a:1e:a8:64:91:
0e:54:7d:ef:79:d8:89:18:8d:51:0b:d8:a5:7f:69:af:ef:bc:
cb:06:4a:bf:7c:ff:bf:33:8b:20:d1:5c:d7:d1:c6:05:e2:75:
ad:d4:be:0f:c9:ea:6b:43:18:7e:52:dd:27:a2:06:2c:96:b2:
e1:e1:94:8a:b2:7c:7f:9c:33:d8:fd:3f:13:6c:a7:01:f7:45:
ac:55:76:d7:20:c2:d5:07:98:85:40:75:9b:e6:48:99:da:a4:
93:3c:a2:6c:3b:8f:34:5e:bc:ac:e5:08:a6:97:80:bd:be:0e:
23:98:c8:68:41:55:9a:37:98:df:56:cc:57:82:93:a3:3d:c6:
5c:c4:d6:70:ef:cd:db:4f:fa:89:aa:ab:61:bc:4c:bf:ea:41:
ee:2e:13:6a:60:e1:0b:da:89:42:0c:18:b1:33:16:ff:f3:2a:
93:f7:c8:f3:9e:97:0e:87:a7:be:ea:2a:29:70:ca:b9:2a:2f:
06:9b:7f:43:50:05:45:51:a4:8e:c5:51:02:a0:30:73:ea:db:
01:92:1e:65:a1:89:a9:47:91:67:ac:d8:d7:5b:78:ae:f0:20:
7b:b9:d8:74:05:53:bd:7e:c0:6e:f8:69:8d:ad:87:91:2d:91:
45:d5:9f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:24:37 2025 by rpki-client