Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
File: AvxcBk9RWcih-kBmyMuP9wFnHdI.mft (raw, json)
Hash identifier: 07U8dcUwjO/WDjPWnoX0xhV927wJ2j+ubObOGA8I5OE=
Subject key identifier: 60:96:8C:11:C7:EF:8F:76:84:0F:25:6A:18:ED:83:3D:89:AD:AA:34
Authority key identifier: 02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
Certificate issuer: /CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Certificate serial: 0199FB0F0689F2E676D3F056DD756F96D5D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
Manifest number: 0C02
Signing time: Sun 19 Oct 2025 06:01:29 +0000
Manifest this update: Sun 19 Oct 2025 06:01:29 +0000
Manifest next update: Mon 20 Oct 2025 06:01:29 +0000
Files and hashes: 1: 5d3BkT4g6BSm4A2tPk7SLnm-a2o.roa (hash: r7O0hom8hw87s+SCAknwxnQSAbbhz820jIMuUD9IwqI=)
2: AvxcBk9RWcih-kBmyMuP9wFnHdI.crl (hash: VGBHOxPKSrLSi4zVkuvp5Er6qi/OG7JPYBQM84Nkmek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:06:89:f2:e6:76:d3:f0:56:dd:75:6f:96:d5:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2
Validity
Not Before: Oct 19 06:01:29 2025 GMT
Not After : Oct 20 06:01:29 2025 GMT
Subject: CN=60968c11c7ef8f76840f256a18ed833d89adaa34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b9:cf:b7:ff:9c:3c:02:7b:4b:81:0b:20:db:
8f:78:27:b8:d1:09:ea:54:77:de:e9:13:e2:75:e6:
d2:f5:a2:8f:c0:d6:ef:e8:bd:b4:b6:d0:39:9b:a7:
06:dd:a1:3f:14:ad:43:13:ea:ce:fd:ef:fd:dd:ee:
ef:85:71:e6:89:2e:22:69:00:8b:a3:02:58:f0:6b:
b3:2f:af:bc:fd:e8:85:a7:db:07:dc:75:68:f4:a5:
ee:c5:17:78:a5:b8:67:fb:49:a7:ef:ab:ef:53:e4:
93:dc:e2:d4:3f:05:8c:2f:1c:fa:c0:0f:ee:a3:d2:
9f:13:9f:f8:03:76:fd:63:ba:d1:0d:a4:fd:d5:39:
c4:47:62:19:37:61:47:2c:3c:fa:57:fe:e0:65:7a:
6b:1f:97:cd:f2:60:b9:4e:49:44:cd:0f:15:2e:c4:
6c:c9:b1:fe:dc:e0:9e:65:60:05:5e:8f:b3:f2:9e:
2b:08:65:42:d2:40:a8:16:f3:73:d8:ac:5b:1f:db:
6a:30:a9:d4:37:4d:8a:02:f2:39:f4:d8:db:d2:a9:
3c:f9:35:7a:58:3d:ba:9d:8d:02:be:03:21:44:28:
3b:e3:6a:9c:6f:9b:b4:29:fd:9d:ab:e5:9a:65:40:
cc:f0:ca:44:01:e7:3d:9f:0b:fd:fa:b3:11:17:86:
2b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:96:8C:11:C7:EF:8F:76:84:0F:25:6A:18:ED:83:3D:89:AD:AA:34
X509v3 Authority Key Identifier:
keyid:02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:fa:78:b1:95:28:92:bc:4a:36:15:33:40:0c:a5:1e:28:f9:
63:f0:4a:14:1d:64:db:c4:f8:ad:71:9c:24:5e:18:1f:1d:c8:
ca:73:32:29:9a:d8:94:00:4f:e1:01:dd:35:86:5a:a6:86:0a:
ae:c1:d5:04:00:3e:a6:4a:4b:f4:e8:20:50:11:e4:9d:7c:87:
2d:61:a2:10:a8:f2:ad:25:18:82:dc:b3:aa:b3:13:3e:a6:7a:
0b:0b:0a:28:cf:f8:49:89:0b:43:2a:23:ab:43:eb:af:d5:3f:
9e:f4:d8:6e:ae:26:cd:48:f0:be:e8:f3:bf:48:16:aa:8b:39:
a4:fa:b0:57:f4:fe:35:71:f8:96:41:b5:d0:d0:d7:ae:94:eb:
ba:e6:06:01:49:84:a7:7d:42:28:c2:1a:c8:de:5f:30:b8:1a:
e0:e3:ef:b3:b2:22:4d:47:ca:d7:16:61:45:a1:bb:2f:9f:c2:
4c:0a:9d:83:da:37:71:b2:8f:6c:28:93:c0:58:fb:6c:72:f9:
58:d2:98:ae:e3:14:bf:0b:bb:8c:b5:2e:3b:3b:31:57:3b:05:
a6:a9:4e:dc:3f:f6:9a:6f:6b:f3:e4:ee:0c:04:e9:73:8f:6f:
b6:fc:fa:f6:54:d6:20:f1:32:a6:48:4c:75:4c:6f:99:b6:22:
28:f6:7f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:31:56 2025 by rpki-client