Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
File: 9aUA85diOrHVYASDVGf8zz0KOw8.mft (raw, json)
Hash identifier: IPRmEmuEBqIchT2j7nYhZOpVkHYta75vKjDMi6SMFrM=
Subject key identifier: 2E:9A:F3:20:CA:45:67:80:A2:CA:A1:44:FC:10:45:71:42:5B:42:9F
Authority key identifier: F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
Certificate issuer: /CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Certificate serial: 0199FD6AEF412863FB52A48D1761398E2DD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
Manifest number: 0D7C
Signing time: Sun 19 Oct 2025 17:01:07 +0000
Manifest this update: Sun 19 Oct 2025 17:01:07 +0000
Manifest next update: Mon 20 Oct 2025 17:01:07 +0000
Files and hashes: 1: 9aUA85diOrHVYASDVGf8zz0KOw8.crl (hash: 8Nn7NLjj7b7dF/am2qvd58T130pIQ/ZG7uo8UusF9zg=)
2: QcGmgONWTyq5Fz8rEzipqonOAWw.roa (hash: 22mskH997ckztTLrFVqkKSOahK8av0gX4PoZWQuu36A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6a:ef:41:28:63:fb:52:a4:8d:17:61:39:8e:2d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Validity
Not Before: Oct 19 17:01:07 2025 GMT
Not After : Oct 20 17:01:07 2025 GMT
Subject: CN=2e9af320ca456780a2caa144fc104571425b429f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:00:66:11:e1:99:f2:ec:ba:2c:4c:3f:7b:e1:
14:cb:20:87:d9:ad:9d:ad:d9:dd:2b:2c:f3:82:5d:
db:d8:49:c5:54:7f:cb:bb:92:3f:bb:1d:c1:ee:64:
85:25:40:92:84:59:a3:cb:07:74:76:36:a9:97:f6:
ce:97:e6:18:cb:a6:91:91:29:80:f1:e9:d6:55:53:
f6:a3:b1:94:66:90:96:a7:07:82:2b:25:60:17:c0:
9f:cb:ed:a3:36:30:6f:7b:5f:d0:2c:ce:6c:1a:8a:
6b:39:88:a9:2c:92:3a:f4:6e:79:c8:81:03:ed:93:
2f:b8:d3:78:6c:d2:c5:c9:44:13:eb:67:3a:6d:d4:
7a:2e:cb:a4:df:14:f7:4b:37:d3:1d:73:84:7c:2b:
da:f2:99:d4:a4:6f:84:43:92:1f:f6:a0:c8:da:ee:
77:b2:e5:f8:eb:eb:60:45:66:95:e3:ab:2f:af:c0:
70:a8:0d:ef:a1:07:ec:27:3f:17:a8:d2:87:c5:34:
f7:46:d8:af:5c:30:d3:c0:7b:26:e2:c7:4e:52:c1:
34:cb:00:2a:f2:c3:91:4f:42:e4:6c:44:c9:ef:bb:
c7:be:74:53:23:d1:b0:23:b1:c1:a0:40:ed:5a:e5:
1a:c9:90:74:aa:e5:6b:99:10:f8:19:86:7f:b5:25:
a9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:9A:F3:20:CA:45:67:80:A2:CA:A1:44:FC:10:45:71:42:5B:42:9F
X509v3 Authority Key Identifier:
keyid:F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:06:c8:14:ee:46:06:89:24:cd:4c:ad:92:3d:1a:84:c5:ed:
f4:96:ca:3d:44:6f:23:5d:7c:e1:8d:fe:10:e4:a9:48:df:f1:
78:a3:2c:3a:2a:6e:81:cf:cb:c6:75:cd:d1:dc:14:e8:b5:3b:
4c:f9:ae:4e:2f:92:4d:e3:d2:d8:59:bb:c5:9e:b9:5b:88:e7:
c6:6b:97:c9:a2:8f:14:b5:8f:12:3a:9d:a6:58:fb:79:30:96:
68:55:fd:e5:cd:9a:ed:f3:c0:b7:e8:77:0e:04:fc:69:af:5a:
14:f5:90:ae:0f:2c:c8:7c:0f:fe:2f:03:f1:44:bd:72:b5:59:
a2:1c:3f:18:16:61:27:69:a5:d4:3a:ff:80:4b:b2:29:8a:1f:
2f:55:c1:db:4b:89:47:d2:e7:0c:e8:7e:36:40:95:34:15:ea:
86:38:c8:9f:4e:06:4f:47:a8:3f:1d:aa:1b:0c:4f:8c:ab:c7:
e6:9d:64:03:40:f8:fa:c3:c3:11:5a:87:21:55:33:26:0f:48:
29:e1:92:a3:a1:22:4b:ec:73:71:05:29:70:2f:1b:90:e2:df:
d9:f0:0e:38:70:fe:c6:09:ba:8d:fa:ca:51:de:9f:b1:9e:ff:
b9:b4:ac:dc:10:aa:4e:85:25:28:dc:ed:3d:6a:aa:6a:5d:a1:
f1:83:f4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:45 2025 by rpki-client