Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
File: UiezboKeTYVl7WV0jhsck8zQDO4.mft (raw, json)
Hash identifier: PR4vml5+LKbmqEON88heV1iw1mvqZdFzxjGgoMe1M6s=
Subject key identifier: 45:9E:0F:B8:41:EB:89:2E:C7:77:A5:B3:AB:5B:B6:4F:B9:6F:C6:B4
Authority key identifier: 52:27:B3:6E:82:9E:4D:85:65:ED:65:74:8E:1B:1C:93:CC:D0:0C:EE
Certificate issuer: /CN=5227b36e829e4d8565ed65748e1b1c93ccd00cee
Certificate serial: 019A725CC5470E14B8BE82A165D5EB76E668
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
Manifest number: 1132
Signing time: Tue 11 Nov 2025 10:01:13 +0000
Manifest this update: Tue 11 Nov 2025 10:01:13 +0000
Manifest next update: Wed 12 Nov 2025 10:01:13 +0000
Files and hashes: 1: RL9-61LJ-xL7UGImuGRdOdgZP1M.roa (hash: W3jLVStcHUC/Po0Yzh+5aEEvdCfFtCnTP/kBctED3eg=)
2: UiezboKeTYVl7WV0jhsck8zQDO4.crl (hash: 0BahS89YDfSqAEGFJxLR8Xl0JPx9IrbrxKssAYl72rQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:c5:47:0e:14:b8:be:82:a1:65:d5:eb:76:e6:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5227b36e829e4d8565ed65748e1b1c93ccd00cee
Validity
Not Before: Nov 11 10:01:13 2025 GMT
Not After : Nov 12 10:01:13 2025 GMT
Subject: CN=459e0fb841eb892ec777a5b3ab5bb64fb96fc6b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0b:9a:67:2a:b9:c5:ed:35:07:40:d2:a5:d7:
36:73:c2:1f:73:90:3d:f3:5f:01:67:f6:ec:94:87:
f5:4f:c5:a0:32:ab:18:fc:9c:fa:a0:17:a2:3b:4f:
7c:42:21:af:a7:c5:5e:98:0f:7f:ab:4a:ae:5f:7d:
f1:17:50:f5:88:1a:1e:ee:86:2b:c8:76:52:f5:00:
9d:35:1c:58:6c:e7:c8:ed:12:22:08:71:ad:64:b3:
76:b2:e6:97:5d:e0:e5:fb:e2:62:d6:5e:92:59:f4:
5a:16:0b:73:6d:38:ac:63:0d:04:9f:d6:3a:7d:c6:
46:b5:4e:4f:00:01:89:53:ca:42:da:dd:ed:20:7e:
1b:e5:95:f1:59:80:98:97:93:94:c4:d6:b6:b0:84:
83:ac:a8:53:2f:08:c6:56:46:11:5c:44:da:f6:09:
b1:5a:6b:c9:04:0c:7f:f4:48:e9:be:f3:cd:6f:0a:
18:da:2e:f2:86:1b:b0:d9:cc:c3:5a:21:06:54:80:
5a:89:95:05:10:98:4a:0c:31:0e:40:95:3a:cd:cf:
67:2c:81:b6:ca:b2:32:74:cc:e9:82:e7:e0:3b:38:
73:64:d2:de:bb:e1:17:b8:d5:4f:b8:f0:da:1a:22:
74:4a:5c:b6:d7:03:99:a1:89:23:ea:7d:c8:2c:a6:
17:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9E:0F:B8:41:EB:89:2E:C7:77:A5:B3:AB:5B:B6:4F:B9:6F:C6:B4
X509v3 Authority Key Identifier:
keyid:52:27:B3:6E:82:9E:4D:85:65:ED:65:74:8E:1B:1C:93:CC:D0:0C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UiezboKeTYVl7WV0jhsck8zQDO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a7ae11-121a-4f22-be3f-e907af07ff11/1/UiezboKeTYVl7WV0jhsck8zQDO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:d7:bb:9c:22:04:95:db:43:cd:eb:60:ad:6f:ca:8f:54:c6:
0a:42:08:4d:77:04:9d:6f:0d:cd:25:cf:d3:ec:b6:b9:81:b9:
b1:06:83:37:a0:1f:5f:c4:60:90:bb:87:22:7e:cd:56:25:8f:
97:0e:3b:0b:53:71:40:fa:0f:2d:4b:cb:19:96:52:32:27:1e:
b5:57:4d:8f:b9:35:73:47:69:c1:e8:1a:85:36:67:2d:d1:6f:
76:68:12:74:6c:a3:6e:65:2b:63:68:1e:45:9d:f6:a7:a2:3c:
b0:9e:89:df:4e:ad:84:ed:64:c8:c5:98:87:50:53:b4:bf:d3:
85:3a:17:68:29:93:99:48:22:f6:e1:a6:51:82:2f:f3:c6:ec:
00:6a:4f:b2:68:51:1e:50:d4:df:d4:85:10:5b:1a:50:4b:b1:
04:b3:21:8e:de:1a:31:54:52:de:52:f4:e7:76:08:08:a8:a5:
5b:5b:9d:49:3b:e7:78:76:71:b9:75:13:a7:78:43:41:7a:90:
74:2d:d3:96:30:a4:ab:b5:85:17:02:2c:bc:6d:bd:45:2e:2b:
89:68:26:3f:73:98:3e:a4:a4:0b:12:e5:08:c7:6f:7e:9e:68:
20:ff:e8:73:92:8a:67:f1:07:7f:8e:81:f1:fa:00:82:54:58:
2e:c0:d1:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:37:34 2025 by rpki-client