Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.mft
File: CeKvCM9uEuIwT7O97GTPvO2qhSI.mft (raw, json)
Hash identifier: uJSKtqffVcjbUVUpmEQoI86eJEwFgfhQW+xT9MCqbPE=
Subject key identifier: 04:33:2B:14:04:00:8F:26:B6:88:B2:33:B9:8E:14:27:99:AC:02:F5
Authority key identifier: 09:E2:AF:08:CF:6E:12:E2:30:4F:B3:BD:EC:64:CF:BC:ED:AA:85:22
Certificate issuer: /CN=09e2af08cf6e12e2304fb3bdec64cfbcedaa8522
Certificate serial: 019A4DE1B12F93216BA55DC430571CCA8FAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeKvCM9uEuIwT7O97GTPvO2qhSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.mft
Manifest number: 1182
Signing time: Tue 04 Nov 2025 08:00:27 +0000
Manifest this update: Tue 04 Nov 2025 08:00:27 +0000
Manifest next update: Wed 05 Nov 2025 08:00:27 +0000
Files and hashes: 1: 9BZlV5u49Gak3QK5oEuLPOBSnn0.roa (hash: FmzCgS4aXNRr8JerLZUsfQlHdIEA6EKm/rMgvtNymy8=)
2: B6wSZJvSGeybR7CPqtyVhXyylu0.roa (hash: JHvST/m8T4zGrW1YqRbxakpRITmsR241Cez8p9x2uaE=)
3: CeKvCM9uEuIwT7O97GTPvO2qhSI.crl (hash: tXPSeeQHQh11vohPCCOUf+6Z1Q3aSmBCCY2AO9+Gznc=)
4: HoNzXhT8lx7vw7JlMXDLD2qJC4o.roa (hash: cNxTbsYhGJbBaA5KX6zTYu/tMB/8NFnmb2pRJ5AhFSg=)
5: ao-pH_2txkXRm36Fqqb0zfVnxeQ.roa (hash: PbN0VPyFR+E4wVcHf4vZ5OY6UiGEFVo+Jh+vf+hGjQM=)
6: mEa7ci9GxscmRsk-oNcnX_tH1Ws.roa (hash: ooLE+dfj0M2cSMZSDMJWC5DsnnWyEmz/3Hgg0yiBDWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CeKvCM9uEuIwT7O97GTPvO2qhSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:b1:2f:93:21:6b:a5:5d:c4:30:57:1c:ca:8f:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09e2af08cf6e12e2304fb3bdec64cfbcedaa8522
Validity
Not Before: Nov 4 08:00:27 2025 GMT
Not After : Nov 5 08:00:27 2025 GMT
Subject: CN=04332b1404008f26b688b233b98e142799ac02f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:54:49:64:f6:ce:f0:a4:2f:f1:02:d4:8a:0e:
76:54:2f:21:95:18:8b:e9:5d:ef:ec:ed:c1:8d:e2:
79:e3:17:cd:bc:29:dc:20:e3:84:92:a7:7f:ce:24:
29:3c:49:36:51:ad:ba:14:94:97:2c:df:c1:fa:7e:
00:ce:d2:de:ff:02:4f:30:64:10:be:d3:52:de:8f:
9c:09:24:4a:6b:00:92:70:b6:54:41:40:a2:31:79:
fd:01:64:bc:05:a1:2e:3c:de:68:b5:f6:0d:49:1e:
bd:59:65:37:26:51:a1:bc:e0:ef:a8:1f:af:da:53:
a9:c4:c7:fd:73:1b:af:af:8a:c9:af:29:98:cd:67:
25:87:d5:b2:bd:ad:ae:bf:6a:17:26:94:68:4e:e4:
93:74:08:ec:ae:fd:e0:52:f0:05:25:b2:f7:99:87:
47:c3:c2:93:dc:d8:68:70:44:0c:5c:80:26:20:5e:
95:b5:12:cb:f4:44:99:15:cb:6f:4a:e8:2b:3a:6f:
b3:51:23:c4:8a:e1:f7:23:b4:c7:a4:5a:01:8a:0c:
5f:66:45:44:7a:ea:7b:a7:70:e5:a4:af:1b:47:0f:
74:ca:0e:15:de:8e:43:72:83:65:c9:b1:e7:23:a0:
28:29:0d:c5:98:bf:60:a5:24:20:aa:d7:13:98:2f:
8f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:33:2B:14:04:00:8F:26:B6:88:B2:33:B9:8E:14:27:99:AC:02:F5
X509v3 Authority Key Identifier:
keyid:09:E2:AF:08:CF:6E:12:E2:30:4F:B3:BD:EC:64:CF:BC:ED:AA:85:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeKvCM9uEuIwT7O97GTPvO2qhSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/19d3cd-6610-43f0-83eb-70a1af51dfbe/1/CeKvCM9uEuIwT7O97GTPvO2qhSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:17:37:7f:a0:ff:0a:8a:0d:6f:de:0b:34:95:22:ec:9f:d5:
5f:fe:41:e2:8a:ae:c5:f3:bc:5f:c1:7c:2c:96:af:44:bc:ff:
f6:ea:c0:91:70:d8:d4:db:39:49:e9:5c:60:91:73:e8:57:31:
eb:22:c2:94:bb:e5:d1:ff:e8:3e:cd:f6:6e:6a:56:a7:52:03:
e5:7d:cf:6d:60:ba:0c:cb:23:42:82:85:44:b8:4e:3b:00:4b:
f6:f1:ab:a5:28:c7:79:16:c6:d0:6d:d6:74:ff:81:38:49:f2:
28:c1:3a:f7:07:66:1f:69:c9:41:df:91:ae:e6:a5:97:11:11:
62:17:f5:bd:fa:91:d1:60:51:2c:99:3a:a4:49:3a:f1:8d:4e:
ac:1d:7b:f1:99:46:05:c9:9a:a7:b7:3c:61:d1:d0:c0:a3:11:
6f:2b:64:bc:ac:72:ed:fc:0f:87:8c:cb:d6:3a:65:6f:06:cd:
2a:38:5a:f0:f0:ed:e1:28:b3:4b:b3:0a:88:0f:11:dc:38:97:
91:f1:7e:92:6d:6c:2f:fb:3c:4c:e9:71:75:3d:77:bc:d2:c9:
d1:aa:77:13:43:9c:ab:c2:fa:4c:c4:44:c8:2c:6e:7f:cb:c6:
3f:de:08:dc:1d:e9:b8:37:87:8e:72:36:e7:d6:c7:18:c4:16:
d3:95:6e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 09:07:34 2025 by rpki-client