Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
File: raavh7Q2lN05mUwOMhQwaHVRny4.mft (raw, json)
Hash identifier: fPE1oQ7QdRQ3OMrb/hvHQMPAMVc8rqalE8R40yBCnPs=
Subject key identifier: AD:8E:6B:37:22:2D:46:24:CA:3F:B5:6C:09:3F:67:58:7C:4B:67:6E
Authority key identifier: AD:A6:AF:87:B4:36:94:DD:39:99:4C:0E:32:14:30:68:75:51:9F:2E
Certificate issuer: /CN=ada6af87b43694dd39994c0e3214306875519f2e
Certificate serial: 0199FBEA885485494BCEBA13323C71E9231A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
Manifest number: 0C3E
Signing time: Sun 19 Oct 2025 10:01:15 +0000
Manifest this update: Sun 19 Oct 2025 10:01:15 +0000
Manifest next update: Mon 20 Oct 2025 10:01:15 +0000
Files and hashes: 1: raavh7Q2lN05mUwOMhQwaHVRny4.crl (hash: 0aICt/+tPOaQ1cvRYms3iRIxW0NRdoh3PShYP5KFVr8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:88:54:85:49:4b:ce:ba:13:32:3c:71:e9:23:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada6af87b43694dd39994c0e3214306875519f2e
Validity
Not Before: Oct 19 10:01:15 2025 GMT
Not After : Oct 20 10:01:15 2025 GMT
Subject: CN=ad8e6b37222d4624ca3fb56c093f67587c4b676e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ac:bc:fd:21:ed:7f:0a:94:9d:3e:c7:92:64:
e9:34:f9:0a:af:91:82:9f:24:d3:c8:64:64:be:86:
de:a4:ae:68:ff:59:5d:57:84:73:2e:b4:46:a7:bf:
64:ad:6d:ca:12:bc:f8:7a:e7:8d:07:69:eb:45:70:
0d:f3:37:60:cc:08:ca:23:fe:67:fc:c4:39:fd:09:
9f:b1:1f:dc:2b:30:90:cc:9a:cf:1e:da:4f:77:85:
2a:c5:02:42:09:7c:b5:f6:ba:a5:64:3c:f8:73:66:
4f:c8:83:18:12:a1:dc:0b:98:96:38:5a:9d:57:47:
92:b0:38:10:9b:7e:da:19:4a:63:59:dc:06:ae:ce:
98:60:f9:b9:f2:55:68:e7:c2:c2:9f:b7:3d:82:84:
17:72:98:0e:f6:bc:52:e7:a3:15:bc:0d:79:f1:bc:
3a:13:9e:ab:4c:a6:fc:ba:d7:2a:be:52:45:27:59:
ba:55:57:51:da:cd:b1:3b:0b:bf:d6:bc:91:cf:7b:
a5:b6:a8:12:ce:e7:ee:52:88:36:50:88:fd:7c:ff:
40:ae:99:cd:b5:34:7d:8f:5c:9f:cd:8b:cf:78:d0:
6b:ff:b4:4d:7c:b1:7d:2b:8c:fb:c9:0a:50:dc:c2:
67:61:f3:9e:c1:22:98:a9:46:66:e7:53:31:69:d7:
07:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8E:6B:37:22:2D:46:24:CA:3F:B5:6C:09:3F:67:58:7C:4B:67:6E
X509v3 Authority Key Identifier:
keyid:AD:A6:AF:87:B4:36:94:DD:39:99:4C:0E:32:14:30:68:75:51:9F:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raavh7Q2lN05mUwOMhQwaHVRny4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c5c8be-7db9-4057-a807-39e357384ae4/1/raavh7Q2lN05mUwOMhQwaHVRny4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:e6:c1:b9:dd:84:fa:a4:26:58:38:7d:20:33:ce:29:ee:ec:
d8:6d:1f:6b:59:6c:e8:7a:94:69:bb:c0:7b:20:f1:1c:89:0a:
c1:d4:9b:39:c9:b5:b1:e4:ce:0b:2a:b2:a3:90:cc:a4:d5:8d:
3e:6b:16:1d:eb:7d:25:4c:f9:74:80:5f:b6:28:24:87:fd:c9:
60:81:86:f7:9b:6f:99:87:09:cc:b1:73:85:c4:c3:74:61:20:
7a:5d:fb:73:11:b3:c6:89:22:3b:0e:ac:87:d9:3c:d4:5c:87:
e8:14:27:33:86:15:8b:b0:e3:c2:48:47:91:65:1a:0a:a7:19:
fb:cc:5f:25:7a:64:26:45:6e:7b:a0:f2:39:df:a6:fb:d0:a2:
ea:81:78:08:f4:71:0f:f9:83:9c:de:ef:72:a8:71:18:f3:34:
f6:33:94:a8:7c:35:89:64:68:d6:52:56:32:c5:ea:b7:a1:3c:
b3:6a:8d:89:93:fe:f9:16:cc:0c:43:9b:91:10:76:10:68:55:
af:4e:cf:b3:cb:51:1d:2e:58:38:3c:7b:d9:e5:5c:6f:0a:70:
f0:02:f2:69:a1:48:87:10:4d:1e:96:a1:8d:91:6c:fe:2e:95:
d9:71:7a:32:a9:47:90:0d:9a:0a:97:82:33:4e:40:ce:80:73:
cd:7d:63:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:26 2025 by rpki-client