Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json)
Hash identifier: USEH9wVzonW4Ec+zUydc9IDu9drhqZhdRn9r94AFPr8=
Subject key identifier: 18:AF:CD:D5:67:6E:D1:F9:F9:D5:13:16:28:1D:17:C2:A8:0B:95:94
Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Certificate serial: 0199FBEB7BA893E50ED5CEB73CC88734326A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 10:02:17 +0000
Manifest this update: Sun 19 Oct 2025 10:02:17 +0000
Manifest next update: Mon 20 Oct 2025 10:02:17 +0000
Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: dz/lzyLr247nPiw/uG3BnXdBoOAAeiOXAkKN5Y3DvGk=)
2: ExJyPjo5EWZQUpwxSS0T7A3Tclg.roa (hash: n7Rzh1zK0MckYzOS9a8lwv/AGXV+Jr0CvxhzGO4UHW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:7b:a8:93:e5:0e:d5:ce:b7:3c:c8:87:34:32:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Validity
Not Before: Oct 19 10:02:17 2025 GMT
Not After : Oct 20 10:02:17 2025 GMT
Subject: CN=18afcdd5676ed1f9f9d51316281d17c2a80b9594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9f:22:b0:28:61:15:62:ef:fc:31:17:ee:40:
f9:27:c5:62:d7:b3:86:07:60:aa:2c:77:b4:c9:82:
f5:6b:a5:c1:77:c3:6a:35:01:79:c0:ce:b9:73:7d:
08:cc:b3:b6:17:b7:a1:67:aa:22:56:df:c9:b8:89:
e9:37:11:34:9b:42:3e:43:2b:d9:b6:ff:55:c3:87:
a2:bc:62:6c:8c:8d:4e:11:7d:21:76:34:01:fb:69:
e7:00:81:b6:d9:08:e6:02:49:14:ac:87:bc:73:3c:
70:a0:14:2d:d2:c5:e7:19:5d:e9:40:e7:96:ca:92:
de:4f:70:3c:9f:fc:c8:33:b2:da:a7:3d:ee:8a:c5:
f8:1e:70:d5:70:4a:d3:66:8a:62:15:18:ee:38:0a:
e3:c4:ad:fa:ee:3e:a0:68:2a:42:9c:12:57:8d:94:
ed:44:29:62:46:77:82:09:04:55:9f:20:aa:60:29:
0e:6d:59:2d:11:26:76:30:b3:f8:37:7c:44:be:9d:
77:76:4b:40:af:03:79:89:3d:71:20:2a:77:2f:03:
f7:2e:7f:fb:d9:5e:ca:1d:82:02:de:39:f0:98:65:
7a:91:34:9c:27:7f:12:82:2d:1f:92:16:35:2a:c8:
7b:b5:42:4b:f9:ca:39:c3:8c:1f:fa:fe:d8:27:93:
3c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:AF:CD:D5:67:6E:D1:F9:F9:D5:13:16:28:1D:17:C2:A8:0B:95:94
X509v3 Authority Key Identifier:
keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:2a:10:f9:3c:27:79:ad:57:6b:f0:99:0d:32:9b:92:7a:23:
f7:ab:0f:4c:59:9b:08:c4:48:5d:e5:be:82:d6:24:fa:64:a3:
cd:fe:ff:bc:46:c4:fb:a8:3f:61:1d:3f:9b:75:9b:1c:99:4e:
f8:35:b7:98:96:2b:90:ad:26:e6:5a:ed:a2:2b:51:86:9b:62:
cb:79:29:55:81:df:7d:53:bf:ab:cb:09:ef:25:88:61:ff:5b:
b8:81:e5:5b:74:f0:4b:a0:e2:96:77:7f:05:bc:41:bf:17:b2:
d7:22:c4:cb:86:f6:af:9e:05:71:97:9d:8f:b2:39:88:1e:af:
71:f2:37:4b:c2:0d:04:1a:48:c3:01:43:59:82:29:ce:9b:14:
2d:e8:6c:89:77:a3:d1:7d:f3:45:04:d3:d2:e0:da:90:3e:81:
43:de:c8:42:20:8e:26:08:52:25:68:ff:5f:eb:fb:47:ed:44:
a0:e8:3b:3e:71:4c:15:fa:97:bc:d6:c5:91:2b:cf:bf:d4:2d:
39:5a:53:8f:71:b6:fd:4b:a8:f2:85:89:a2:f6:41:fe:47:79:
dc:60:91:87:7d:b7:10:a8:2c:2b:be:9d:d2:65:34:cd:20:06:
a9:95:bd:44:a3:e7:c7:c2:f0:03:81:84:ee:e6:c1:96:75:f5:
0b:b9:c8:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:26:22 2025 by rpki-client