Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: euUEJJfg7d8yaKZf4D76MSwkkGFEIEZEkhv5GCFw3bU=
Subject key identifier: F1:F8:71:26:D9:56:75:8E:F9:76:BF:B1:AA:44:ED:74:09:FC:86:8D
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 0199FD340C4682861143033FAA1AD380D851
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 01EE
Signing time: Sun 19 Oct 2025 16:01:10 +0000
Manifest this update: Sun 19 Oct 2025 16:01:10 +0000
Manifest next update: Mon 20 Oct 2025 16:01:10 +0000
Files and hashes: 1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: eomqfY72i1MrF0oh3ga9aNVjJR92G79Rgf88sc0zX3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:0c:46:82:86:11:43:03:3f:aa:1a:d3:80:d8:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Oct 19 16:01:10 2025 GMT
Not After : Oct 20 16:01:10 2025 GMT
Subject: CN=f1f87126d956758ef976bfb1aa44ed7409fc868d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e7:2c:3a:d0:f8:43:72:aa:67:5a:05:bc:f4:
cb:a3:a3:91:18:d0:d0:27:45:8b:eb:d8:76:5b:ce:
fc:9f:6c:7b:87:98:1a:8c:a3:8d:91:eb:fd:1b:8e:
5a:33:07:32:00:30:c8:97:50:9d:38:11:7e:77:56:
f9:b8:99:6f:58:31:a5:f6:62:a1:d2:0a:40:c9:ea:
cf:51:61:02:a9:af:29:14:53:d6:c1:28:8e:66:c7:
a8:f1:2f:3f:d6:bc:61:7b:22:15:bd:15:56:c0:1b:
44:7d:1c:d1:48:f4:5a:2c:12:24:b0:9c:52:97:6b:
d0:61:14:b6:5c:d5:31:4d:af:ab:bb:a5:84:82:d8:
07:23:c4:9e:ea:60:ab:a5:46:eb:6d:0a:c9:72:57:
90:ae:65:4d:12:76:a6:1d:48:0d:f7:0b:a9:84:44:
1d:20:97:71:49:0a:08:0f:77:6f:a6:36:cf:0a:90:
2a:19:80:b9:7d:4c:e9:6c:d1:bf:56:40:aa:dc:75:
a1:ab:ca:9e:73:8e:61:13:57:ff:e4:0c:76:67:7e:
14:ad:db:ca:91:6c:53:3d:a3:93:b5:44:84:e6:8b:
fc:fd:5b:7f:1c:f2:af:f1:ab:b1:4c:48:b9:f6:cc:
65:63:56:66:e6:bd:dc:f4:6d:83:a4:44:87:a3:5a:
fc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F8:71:26:D9:56:75:8E:F9:76:BF:B1:AA:44:ED:74:09:FC:86:8D
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:be:19:db:ab:a3:2e:02:c7:0d:41:22:0d:b9:a7:83:c7:35:
27:a6:66:ff:cb:c8:c2:9e:68:85:c7:52:67:14:96:60:a5:32:
66:95:b3:fb:1c:b3:9f:e1:16:b5:59:99:65:5f:b4:7a:96:ce:
07:96:e5:58:74:f3:41:ed:ce:07:1f:e2:c7:55:58:6a:95:f6:
af:35:14:e0:c9:09:b9:1f:28:f5:f2:38:4f:69:44:81:9a:8c:
5a:8f:31:12:b3:9d:41:38:55:b5:ab:4e:bb:17:d5:f7:cf:89:
47:01:21:57:58:58:a6:d1:9a:a5:33:d0:d1:2a:fc:5c:20:d0:
8d:fe:37:86:13:2c:d5:81:a6:93:3f:9f:0f:49:df:ac:81:a0:
ef:e4:b3:08:01:fb:a9:80:7e:18:f1:3b:59:a1:a9:52:82:da:
74:e3:4d:cc:db:20:a7:a9:a9:5b:26:d0:61:6a:95:2a:f1:d0:
96:07:4f:8b:8d:0f:aa:fc:70:8d:de:66:73:2c:3b:7e:e8:7b:
1f:1e:95:a2:58:f6:5f:fc:84:d2:e9:d1:44:d7:00:d4:53:50:
2e:f0:11:4a:71:24:7e:dd:a9:1a:7c:80:f6:a3:74:17:2f:b5:
c5:f9:6e:31:4f:fc:66:31:94:4a:b0:61:52:b0:49:d9:39:fd:
c2:ff:43:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:49:18 2025 by rpki-client