Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json)
Hash identifier: 7QSyGfQFEEcOKrxJz7XKKA3I4zkH9KAux/u1fgXhi6Q=
Subject key identifier: F5:98:FA:5A:F0:A0:8D:B4:36:F0:78:8F:CB:66:D2:68:E4:37:45:6C
Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Certificate serial: 0199FCFD5EE035C0001BD74C953842FFCA15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
Manifest number: 0673
Signing time: Sun 19 Oct 2025 15:01:27 +0000
Manifest this update: Sun 19 Oct 2025 15:01:27 +0000
Manifest next update: Mon 20 Oct 2025 15:01:27 +0000
Files and hashes: 1: 1ofY17NAwbyhAHFj_yBzaevRgc4.roa (hash: FPWNmGXZmy3JcSLxjIHQ6BJRP2baM9xmkXSCswGMYik=)
2: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: jh7kxk8rTcasy4qtm2kB46kfIOz7pq/gu6GWxZg4B80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:5e:e0:35:c0:00:1b:d7:4c:95:38:42:ff:ca:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Validity
Not Before: Oct 19 15:01:27 2025 GMT
Not After : Oct 20 15:01:27 2025 GMT
Subject: CN=f598fa5af0a08db436f0788fcb66d268e437456c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8d:1b:ea:2c:50:2b:24:77:8a:98:be:7c:9a:
d9:db:f2:b1:68:73:29:80:22:77:d0:3b:06:a6:2f:
25:17:bd:9e:97:8b:73:25:2b:9f:31:cb:d2:e2:e3:
82:d0:ac:89:08:a6:df:d6:0a:41:2a:a7:3d:b5:f0:
58:63:ed:4a:e8:3d:ea:af:10:b3:d3:3f:19:1c:f5:
24:58:55:25:a6:37:ef:bb:03:61:2b:ca:e3:b7:7b:
05:6e:32:da:4a:14:39:0a:41:61:a8:d7:bf:3f:0c:
06:67:4c:3f:c1:c4:2c:6e:27:59:05:bf:72:81:93:
68:8a:de:a7:0f:a7:fc:9f:0a:ad:cd:83:69:da:05:
f6:98:dd:5f:5d:20:c6:b3:d6:6f:e3:52:86:86:3d:
f4:81:3c:32:17:d3:e0:37:f0:66:b0:c6:89:57:9e:
d2:78:16:c2:60:90:b3:3f:08:61:1d:21:14:66:89:
1e:04:b6:dd:be:6d:e4:75:c2:90:92:76:be:31:d7:
f3:c5:70:0f:9a:90:42:02:32:72:6a:f4:3b:39:9f:
d1:88:51:5b:ec:c3:e4:74:96:ea:00:3c:d6:29:51:
9f:9b:06:51:79:23:8f:c4:c8:dd:47:65:8e:59:55:
11:51:24:e1:06:45:6e:40:51:48:dc:4d:38:62:76:
70:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:98:FA:5A:F0:A0:8D:B4:36:F0:78:8F:CB:66:D2:68:E4:37:45:6C
X509v3 Authority Key Identifier:
keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:e3:90:8a:74:d0:79:6b:33:ba:c5:e5:85:28:88:62:aa:da:
9f:88:57:d7:cf:ac:e8:d2:53:f3:e8:24:1f:37:51:00:35:d7:
0c:40:87:36:cc:09:40:1d:a3:ef:cf:6b:22:8c:12:1a:a5:55:
7c:04:3f:d6:27:f9:d5:4c:e4:b1:b5:57:95:17:86:dc:67:51:
f1:cd:db:8b:3e:68:87:f9:e7:e4:e7:46:98:48:f9:22:31:7b:
47:c7:7d:98:37:37:44:19:62:92:56:67:bb:a5:0f:6d:b2:f1:
09:43:f8:78:2c:ee:51:a4:49:15:ce:08:cb:d9:91:98:7c:1f:
35:43:17:22:d5:b4:0a:bb:a6:02:d7:35:75:a3:78:39:e3:3d:
33:e4:2c:69:a2:1f:09:9f:a8:36:5c:2a:9b:d3:09:be:e3:3b:
e0:3e:0f:fa:52:56:09:74:fb:d7:a5:7b:32:db:ec:f0:e8:6a:
45:f4:61:56:39:e6:01:54:7f:23:bc:20:a6:06:75:f5:a3:30:
cb:83:74:8e:ed:1b:b0:53:43:12:9c:07:ff:ba:4a:0e:ba:c0:
cf:48:b3:4f:d2:4e:95:36:0d:0e:3a:30:94:34:1f:da:68:18:
ef:05:2d:b3:26:c2:2d:a7:2f:64:50:c0:bf:02:c8:97:e4:86:
d1:ff:a4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:47:19 2025 by rpki-client