Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
File: UxUwA3N9ePci25oo4iBD412Nhx4.mft (raw, json)
Hash identifier: j7qL173l8dkVokhM6GE816+kTaEbtm2fbFnqOcF9y10=
Subject key identifier: 9C:11:3B:7E:8D:AD:44:8A:F8:DC:56:50:ED:85:5E:53:98:AB:D3:C0
Authority key identifier: 53:15:30:03:73:7D:78:F7:22:DB:9A:28:E2:20:43:E3:5D:8D:87:1E
Certificate issuer: /CN=53153003737d78f722db9a28e22043e35d8d871e
Certificate serial: 019A71EEA09D25100B902C861C51CC268C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 08:00:55 +0000
Manifest this update: Tue 11 Nov 2025 08:00:55 +0000
Manifest next update: Wed 12 Nov 2025 08:00:55 +0000
Files and hashes: 1: UxUwA3N9ePci25oo4iBD412Nhx4.crl (hash: KrhwJeLuLqNikE2zBadY6YDN2G4PuLeQ7y1u2Y0VmJw=)
2: vffye4B_maKGCuAE9ICWvmcHW6I.roa (hash: VaColu6D/X0DZ0KpxU1etnd04XXSodxmzmHPWI2Hjvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:a0:9d:25:10:0b:90:2c:86:1c:51:cc:26:8c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53153003737d78f722db9a28e22043e35d8d871e
Validity
Not Before: Nov 11 08:00:55 2025 GMT
Not After : Nov 12 08:00:55 2025 GMT
Subject: CN=9c113b7e8dad448af8dc5650ed855e5398abd3c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:31:d2:e8:5d:29:c4:68:42:b2:c6:dd:ea:e6:
7b:c4:2b:ea:4c:54:ae:b1:ad:2d:0a:c9:dd:84:6a:
c9:33:b5:d6:cd:c7:2b:95:d8:09:b0:7a:94:8a:b4:
40:f8:3f:c0:e4:ba:b9:c0:3c:18:7f:5c:7d:96:07:
a2:2c:91:12:a9:b8:f3:fb:be:17:2b:27:79:68:05:
d0:d9:9a:63:be:2e:b5:7d:79:67:40:1e:82:40:31:
93:4f:da:2f:a9:23:97:22:70:74:2f:5f:8f:68:01:
c1:78:31:91:25:5d:b1:ef:90:60:45:c3:17:fc:2f:
f5:de:44:a0:6d:fc:21:d2:02:8b:1b:1e:33:92:72:
5e:9c:fd:46:2f:d5:b7:7c:e0:fa:1b:02:04:24:82:
7e:be:55:64:f2:2c:52:b7:cb:ed:19:d7:5a:bd:a5:
ce:ed:15:8b:97:5c:88:a5:3d:8e:01:41:60:d7:f4:
9e:52:d6:dd:47:b5:a6:bd:ac:fa:fc:6f:d1:03:50:
ff:7b:98:36:e0:b8:e9:67:cf:50:6a:13:67:d1:09:
97:7b:ed:95:ba:c2:30:f7:91:a2:b2:37:4f:65:07:
99:25:cd:9a:27:36:d5:92:40:78:c3:15:10:91:bf:
41:b4:e8:be:80:8e:fb:be:19:40:32:62:01:d6:a3:
9a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:11:3B:7E:8D:AD:44:8A:F8:DC:56:50:ED:85:5E:53:98:AB:D3:C0
X509v3 Authority Key Identifier:
keyid:53:15:30:03:73:7D:78:F7:22:DB:9A:28:E2:20:43:E3:5D:8D:87:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UxUwA3N9ePci25oo4iBD412Nhx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8f7148-236d-4088-89e6-665995c62838/1/UxUwA3N9ePci25oo4iBD412Nhx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:77:38:af:f6:23:71:d3:8d:46:ac:ce:9b:e9:17:0d:18:f6:
ac:aa:f7:37:39:3f:d2:9c:af:11:62:64:61:0f:d3:fc:18:66:
d7:a6:c7:7c:19:8e:bb:56:f0:56:d3:29:97:23:58:99:0b:5d:
33:9f:8e:b8:d9:33:c3:47:7e:ef:74:cd:96:2c:0e:f8:c2:19:
b9:d2:37:0c:11:4c:2e:f7:a0:aa:aa:21:d7:f4:26:e4:16:97:
21:01:88:26:d1:1e:97:f2:75:3f:9e:85:e1:60:25:28:c4:76:
7d:8c:23:fa:2f:ba:3a:b9:9d:c2:73:55:bc:e9:d3:e0:90:4a:
f4:7d:16:e4:be:a8:be:e1:8f:5d:f8:6f:a4:41:8a:d8:29:ad:
dc:4f:ff:80:f4:bd:cd:21:bb:c3:64:a1:28:2e:c6:20:1c:b2:
fb:af:37:07:e6:51:02:81:a3:13:ca:0d:50:6a:90:25:2b:09:
9c:5f:4b:4d:cb:0a:43:fb:34:3b:8e:06:0a:4f:a9:c4:c8:14:
50:03:06:fa:1e:42:93:79:69:bc:b5:4c:78:03:ca:01:66:87:
fa:17:6c:a5:81:0b:c9:69:d9:62:79:32:2c:10:5b:a1:5a:17:
a4:ba:7f:6b:2a:d4:a3:48:d2:c7:61:40:7a:d6:d7:cf:e2:e0:
98:f7:01:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:01:31 2025 by rpki-client