Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: DLttff4VnEbifeQ+kHa8YSLlbdk+2fMiJcue3TotumA=
Subject key identifier: 38:A1:A3:DD:16:62:16:FB:E4:62:19:26:58:CE:1E:E6:C8:BE:2B:C1
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 0199FC8F78F0132DCF0AA63B5988CA7EC3B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 02DC
Signing time: Sun 19 Oct 2025 13:01:24 +0000
Manifest this update: Sun 19 Oct 2025 13:01:24 +0000
Manifest next update: Mon 20 Oct 2025 13:01:24 +0000
Files and hashes: 1: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: OvzqS7DPm5ae8HNf5d/RoS6YUt3hq0fnTMb5RZqGVfo=)
2: As2aEQ-Qc40w6qz5lbdZOvfcUl4.roa (hash: wBu3pTqJ+Uf9xdHuwPeUbe92Udv+KfCa1hQtrwjxXdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:78:f0:13:2d:cf:0a:a6:3b:59:88:ca:7e:c3:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: Oct 19 13:01:24 2025 GMT
Not After : Oct 20 13:01:24 2025 GMT
Subject: CN=38a1a3dd166216fbe462192658ce1ee6c8be2bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d7:a9:62:db:24:b0:8b:77:b1:ff:e9:77:da:
5d:a3:71:c0:fd:fb:50:de:c1:e0:ad:d0:25:e5:e3:
4e:c6:82:e1:f8:8e:ad:82:07:c1:9f:db:29:e0:df:
2e:c9:96:ae:ce:57:08:2f:1a:93:4a:1f:d7:79:cd:
e8:5a:96:a4:c9:6f:99:f8:b8:4d:dc:8a:7e:50:59:
48:4a:22:7b:83:77:64:a8:df:f8:6e:6b:ae:a9:0b:
9f:ed:44:e8:1c:14:79:c4:d7:d0:52:be:e8:47:0c:
d8:4d:84:13:06:ee:5e:c3:f6:9b:40:f1:4c:56:af:
f6:b6:98:d4:98:0e:40:71:35:c3:66:bf:4b:7f:bc:
8d:80:c8:54:ea:7b:40:40:54:b8:6c:30:f0:19:1e:
24:6e:7a:92:14:21:ac:a7:de:2d:f9:6a:8f:a4:10:
13:71:76:72:84:c5:dd:b8:36:98:1f:0e:8c:8b:93:
16:49:47:b6:9b:58:3e:8d:0d:20:0c:9a:70:98:b2:
ee:4f:e7:38:02:4f:52:9a:ef:58:23:56:61:6e:6b:
02:df:d2:d9:5f:eb:c9:ed:f7:5f:27:f0:e6:ec:90:
77:7f:7f:32:8f:5b:08:9c:68:f0:7d:69:8f:3e:bc:
ca:2c:88:a4:1b:27:7d:73:9a:1f:4d:52:2e:ff:7b:
bf:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A1:A3:DD:16:62:16:FB:E4:62:19:26:58:CE:1E:E6:C8:BE:2B:C1
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:63:d3:25:d0:2f:9e:f5:22:f0:a3:c7:bb:51:35:14:c6:e0:
7d:53:da:c9:45:cb:b3:74:7f:61:c2:a0:9e:36:10:4c:5d:df:
d4:57:26:70:ee:6e:7d:71:0f:2d:ee:c4:8d:19:3d:39:60:17:
49:b1:ee:b4:e8:6a:1f:38:0f:f9:b3:13:2d:d0:7a:b6:cf:82:
13:31:84:96:c9:ca:92:c6:c3:09:7a:e5:98:c1:a2:70:b5:8a:
f9:db:3d:8c:d9:b2:10:58:d7:f7:a9:df:5c:02:26:eb:a1:83:
ab:9d:33:1e:0a:a9:e9:ec:71:c3:5c:0a:c5:f4:95:b5:0d:84:
3e:ab:14:0e:9c:59:17:ff:43:fc:8b:cd:f8:16:ef:17:9e:6b:
4f:1c:24:d4:26:5e:44:fe:c5:7f:cb:a0:28:42:a6:d7:2c:e2:
c9:e6:79:be:af:4b:1b:1f:4f:da:f2:6a:da:13:d0:5b:d8:d9:
aa:17:26:14:11:45:4b:10:29:1b:66:39:c6:26:01:5c:4c:17:
07:ad:d6:8a:2a:5c:16:89:46:6c:b0:95:d8:b6:57:73:17:c7:
82:f5:4d:16:ff:e9:c5:87:e0:06:55:de:f8:2c:32:4d:0b:56:
21:9a:01:ca:0b:11:b3:ac:2a:17:a6:a0:d6:c4:94:a9:62:18:
be:17:ad:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:07 2025 by rpki-client