Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
File: 9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft (raw, json)
Hash identifier: q5X4iNhy3ORaRFOg2vVGz+kCfX5TuEdR0m8SuAeZWfU=
Subject key identifier: 47:29:77:64:E1:EC:17:A8:6F:AC:D4:D7:A0:F5:29:CC:A7:F5:38:9D
Authority key identifier: F4:FA:75:8E:E1:D3:2A:1C:BD:94:64:6F:AF:43:6D:7B:8D:80:9E:A4
Certificate issuer: /CN=f4fa758ee1d32a1cbd94646faf436d7b8d809ea4
Certificate serial: 019A0035A4B5F063C28BDE47CC14BE40D3BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Pp1juHTKhy9lGRvr0Nte42AnqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
Manifest number: 028F
Signing time: Mon 20 Oct 2025 06:01:46 +0000
Manifest this update: Mon 20 Oct 2025 06:01:46 +0000
Manifest next update: Tue 21 Oct 2025 06:01:46 +0000
Files and hashes: 1: 9Pp1juHTKhy9lGRvr0Nte42AnqQ.crl (hash: 0ERX3TzBi0v2H4UsqA95mxutE/OrKYun7d1tX0/QW+o=)
2: PPSqCB6yaGdvCZ-tsYoPWq8l0VU.roa (hash: LL8gW3Q1TN3/WR1DSBlXf67Lrrr8/Z0DptcYdMs1Ro4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/9Pp1juHTKhy9lGRvr0Nte42AnqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 06:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:a4:b5:f0:63:c2:8b:de:47:cc:14:be:40:d3:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4fa758ee1d32a1cbd94646faf436d7b8d809ea4
Validity
Not Before: Oct 20 06:01:46 2025 GMT
Not After : Oct 21 06:01:46 2025 GMT
Subject: CN=47297764e1ec17a86facd4d7a0f529cca7f5389d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2b:2d:23:62:35:91:6e:a8:f3:c1:c7:61:38:
bb:3e:4b:82:24:e3:40:d9:d3:88:32:0a:ae:b5:48:
30:7d:cd:24:6f:cf:27:52:5d:61:07:f0:91:45:53:
eb:75:45:ca:c9:86:d6:a0:e8:e5:c4:19:ea:66:82:
25:e0:fa:64:a3:c4:09:0e:a0:54:72:63:be:e3:8e:
db:a4:38:f3:63:e3:f8:cb:f8:af:86:4f:89:cd:c9:
bf:06:4e:ee:90:66:dd:f7:30:71:9c:25:fe:07:86:
f0:e8:aa:4c:9b:ac:38:2b:2b:81:1d:63:15:f0:b6:
dc:19:1f:ad:c8:54:56:bf:20:3c:b7:03:55:44:4a:
2d:18:8a:5c:90:e3:57:f0:4a:d5:cb:cb:e3:25:a6:
24:fa:99:16:0c:a4:81:98:0d:f4:90:f1:3a:e9:ef:
82:d3:d2:ca:2e:d3:aa:f4:c8:91:fa:ea:7d:98:27:
7d:c8:3c:53:58:30:b0:8d:b1:d0:63:f6:b6:27:0f:
ed:37:5b:47:0d:d2:63:6c:d8:45:49:6b:1f:84:50:
ce:fe:60:af:82:06:50:99:a0:a7:c2:b5:a9:d7:95:
26:31:ad:26:ea:74:80:fe:89:24:27:77:9c:00:ad:
81:67:0c:c4:ff:24:1a:f1:7d:21:16:ff:11:28:3c:
63:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:29:77:64:E1:EC:17:A8:6F:AC:D4:D7:A0:F5:29:CC:A7:F5:38:9D
X509v3 Authority Key Identifier:
keyid:F4:FA:75:8E:E1:D3:2A:1C:BD:94:64:6F:AF:43:6D:7B:8D:80:9E:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Pp1juHTKhy9lGRvr0Nte42AnqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:9d:59:e3:88:83:b0:e3:19:11:4c:43:6d:69:60:ad:c5:7d:
78:9a:d3:aa:9d:49:e7:8a:16:ad:70:f9:90:a9:31:6c:35:50:
d8:d5:93:46:2e:ae:03:bc:f0:99:b6:0b:ea:ac:1f:c6:4c:aa:
ea:78:4d:88:1a:24:eb:73:72:21:6a:b2:94:20:45:89:1b:71:
48:3e:97:04:f8:7b:57:a7:26:a2:32:18:e8:1b:fb:72:0a:4d:
b0:9e:9b:bb:fd:4d:d3:a5:82:be:1f:00:81:6a:7d:f4:2b:ce:
4a:a0:0b:6e:aa:57:dc:dc:ef:f3:99:8e:96:e5:65:cc:28:e2:
df:ce:58:d3:c3:63:d1:3a:19:75:42:e4:ee:0e:2a:7e:bb:fa:
c6:fd:93:ef:2d:d5:2e:95:0a:35:58:12:6f:7d:7b:f4:2e:b9:
49:3b:bd:b9:99:4e:8b:3e:7a:c5:20:1f:e7:ae:87:49:c4:d6:
de:54:ac:54:ea:a6:a3:18:b2:88:d9:bd:43:71:b6:a5:4e:df:
b9:4d:91:1a:0b:6b:62:90:1b:be:db:00:90:d7:ab:bc:04:7e:
87:2b:67:78:00:f1:80:e4:76:76:d1:b4:9a:4d:06:69:b4:d0:
7e:d2:df:02:93:5e:4d:f7:ca:27:c5:6f:6a:61:cf:75:b5:6e:
fb:60:9b:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:44:19 2025 by rpki-client