
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json)
Hash identifier: hg5GMlBnZvv4PKSUGQ+2QuELTLHwEPNFxD6HLdMLQXo=
Subject key identifier: 5E:85:9D:A4:16:A9:79:98:60:E0:D1:FA:98:C9:87:8A:5D:20:F5:8E
Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf
Certificate serial: 019A01B543E1FAF14C7F521534E7256DD705
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
Manifest number: 16E4
Signing time: Mon 20 Oct 2025 13:00:47 +0000
Manifest this update: Mon 20 Oct 2025 13:00:47 +0000
Manifest next update: Tue 21 Oct 2025 13:00:47 +0000
Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: MmCTT4a/6RfwJYjf0/MYUARS5QEQFbdyeNf2bPNTjqk=)
2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b5:43:e1:fa:f1:4c:7f:52:15:34:e7:25:6d:d7:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf
Validity
Not Before: Oct 20 13:00:47 2025 GMT
Not After : Oct 21 13:00:47 2025 GMT
Subject: CN=5e859da416a9799860e0d1fa98c9878a5d20f58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:cd:4c:22:5d:af:17:d9:f8:4b:a0:4d:29:b5:
0e:1c:88:11:0e:1a:30:2f:39:e6:59:5b:74:56:0c:
31:a1:07:b2:87:5d:3c:82:3f:d9:e7:72:1f:88:c7:
4f:27:97:b3:a8:d8:48:b4:b6:12:f4:df:2a:3f:58:
b5:57:08:41:2d:66:b7:48:68:ac:94:95:23:53:ab:
c3:d3:97:75:54:b5:ee:f8:0d:f7:d6:e2:71:34:9c:
ef:70:3e:72:f8:7d:ed:ec:7f:d0:13:9e:33:5e:1b:
41:2a:b4:8b:d9:e0:75:98:2d:4a:f4:47:da:63:b9:
ad:20:f8:ce:84:56:d0:42:d7:dc:e6:1e:99:e2:05:
6a:9b:ca:a7:38:ef:df:8d:2e:4b:ec:1f:74:e9:e3:
15:e3:39:72:50:f2:d2:a1:a2:c1:4f:dd:13:36:1f:
26:cb:5b:bf:6c:4f:d0:0d:15:c7:4c:54:c8:dd:05:
48:e7:7a:97:71:8f:f6:8f:27:26:7e:81:b8:73:72:
46:6d:01:a5:34:d7:cd:04:d4:15:e9:35:1c:c6:15:
c3:77:ab:df:eb:0c:88:c1:09:fb:66:9a:12:61:4e:
f6:26:2a:3b:d5:ce:57:30:13:60:03:9a:23:27:21:
6f:e6:f7:31:38:05:d3:55:d4:4c:cc:12:41:74:e2:
97:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:85:9D:A4:16:A9:79:98:60:E0:D1:FA:98:C9:87:8A:5D:20:F5:8E
X509v3 Authority Key Identifier:
keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:19:38:c9:21:68:9e:5d:bc:52:72:d9:04:ee:75:a9:85:c9:
ef:c2:af:ff:26:84:37:98:9d:9f:ac:fa:fb:c6:46:d3:33:fc:
31:74:78:fc:b4:44:54:cb:3b:d6:21:57:9b:82:11:17:95:ac:
26:3b:d3:e5:ca:fb:57:6c:75:72:3b:a1:89:4b:96:11:9f:33:
ad:57:34:4d:d9:33:10:ad:cd:e6:67:2c:e0:79:0e:0a:78:65:
ec:c9:06:1d:9b:79:00:ee:36:6a:7c:16:79:53:6c:9d:c4:39:
19:20:20:41:d7:45:08:e7:a3:ab:ed:69:28:54:fb:b0:8c:bb:
32:4f:09:80:b1:17:7f:33:04:37:87:01:c0:e9:3c:b8:8a:e8:
a2:8a:a2:1b:18:78:08:36:aa:2a:a9:f8:f0:ad:13:75:5c:3f:
5d:32:cd:3e:b3:2e:5a:ec:d2:f7:37:61:8f:c7:02:73:fb:70:
93:82:3a:b0:47:d2:70:30:23:62:af:3d:c3:8d:72:3a:5f:33:
1e:4a:1e:46:c5:d2:34:26:38:27:4b:89:b4:d7:b8:bc:23:44:
d8:15:55:98:64:28:38:cf:ad:28:01:f7:f0:04:1b:1a:65:f5:
d8:f2:ec:55:99:7d:7e:16:73:bc:8e:33:3f:42:9b:41:b8:99:
22:1a:6d:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:26:22 2025 by rpki-client