Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.mft
File: a1xW3Y1JexBoE6IloYFxST7jKoU.mft (raw, json)
Hash identifier: 9EsYImptYepP9NXMo/GGYYLJKckrXAaNjXa90mWgahs=
Subject key identifier: D4:FA:FB:1D:AA:A4:93:1C:6D:76:B9:DB:20:D2:EA:17:AC:BB:85:C5
Authority key identifier: 6B:5C:56:DD:8D:49:7B:10:68:13:A2:25:A1:81:71:49:3E:E3:2A:85
Certificate issuer: /CN=6b5c56dd8d497b106813a225a18171493ee32a85
Certificate serial: 019A04B618015CD0CC94AA48EA30A8087CE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1xW3Y1JexBoE6IloYFxST7jKoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.mft
Manifest number: 0127
Signing time: Tue 21 Oct 2025 03:00:33 +0000
Manifest this update: Tue 21 Oct 2025 03:00:33 +0000
Manifest next update: Wed 22 Oct 2025 03:00:33 +0000
Files and hashes: 1: a1xW3Y1JexBoE6IloYFxST7jKoU.crl (hash: dCkmDrcn46Zy7JB5Y+Nz1yrCq+yc+ziAmeIS8cB7nHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1xW3Y1JexBoE6IloYFxST7jKoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 03:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:b6:18:01:5c:d0:cc:94:aa:48:ea:30:a8:08:7c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5c56dd8d497b106813a225a18171493ee32a85
Validity
Not Before: Oct 21 03:00:33 2025 GMT
Not After : Oct 22 03:00:33 2025 GMT
Subject: CN=d4fafb1daaa4931c6d76b9db20d2ea17acbb85c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:57:c0:71:d0:2a:f1:3e:11:8a:19:c5:f1:b8:
15:c2:92:67:ec:63:0e:ef:27:14:ef:81:14:4a:55:
e0:83:43:b7:89:9a:21:b0:d2:b1:8b:f8:f2:2e:2b:
08:55:f6:c4:08:67:26:8d:08:1d:01:92:64:0b:70:
c3:59:ad:82:e8:e0:ec:86:44:99:b2:11:c5:4c:1b:
0f:c8:8f:f0:d3:43:dd:0f:af:8f:bc:e0:4d:65:af:
93:7c:a6:ed:c8:50:06:3f:a0:f1:72:5a:1e:00:76:
23:84:d8:d9:05:95:ad:26:5b:85:ef:46:79:9a:47:
74:c4:1d:56:51:7b:07:df:21:a1:4a:3b:56:da:13:
76:18:21:6e:ba:d9:fe:65:50:30:2e:4a:b0:24:60:
4e:61:db:95:c1:41:6d:1e:4e:ca:ff:2c:44:d0:86:
08:7e:e9:06:99:1b:7a:c6:8a:bf:79:53:bb:7d:bb:
00:da:a1:c1:34:02:4d:ff:bb:30:e4:0b:d2:83:cc:
48:2d:43:c8:5f:a1:c8:3f:d0:a4:af:5b:48:f5:36:
43:b1:62:0b:8e:f5:35:83:eb:5c:30:87:b6:32:df:
24:19:a0:b7:25:3a:35:21:c2:d7:80:dd:09:d3:c3:
82:6b:11:20:f0:7e:03:ea:f8:fd:a4:3c:0d:2d:cd:
38:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FA:FB:1D:AA:A4:93:1C:6D:76:B9:DB:20:D2:EA:17:AC:BB:85:C5
X509v3 Authority Key Identifier:
keyid:6B:5C:56:DD:8D:49:7B:10:68:13:A2:25:A1:81:71:49:3E:E3:2A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1xW3Y1JexBoE6IloYFxST7jKoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/1a530f-efe3-4d8b-903a-a7136a145f1c/1/a1xW3Y1JexBoE6IloYFxST7jKoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:69:33:35:c2:b0:ea:92:c9:44:fb:c5:41:66:3c:02:68:ec:
d1:51:c7:cc:e5:73:27:54:19:e3:3a:f2:0c:59:cb:13:e5:10:
9d:88:81:28:b2:be:a8:44:a6:8f:85:7c:50:ea:6d:52:f7:00:
af:d0:a7:c9:c6:1b:ce:c6:bd:6f:7f:dd:b8:96:3d:4b:18:2a:
0e:5e:43:fb:6f:29:02:16:f1:da:a9:ba:d2:f4:8c:f2:80:83:
ff:9b:c7:36:c2:66:6a:e6:10:50:7f:9f:56:68:f6:ff:32:10:
04:2e:b8:40:82:5f:ed:20:bd:17:6c:f9:2d:d3:6f:3b:93:41:
df:ee:4f:61:9a:59:7f:e0:1c:d6:ba:e8:fa:5d:ac:a9:54:f1:
82:fc:10:a6:83:a2:d1:84:95:2e:4f:0a:87:64:77:86:29:f7:
b2:20:09:2c:6c:6b:85:e2:3e:a9:ce:a4:7f:f0:48:75:b4:38:
99:a9:d5:f4:1d:a6:b1:a2:d8:9f:4f:3a:e0:0c:15:c1:a7:f2:
40:e2:7d:db:10:84:ec:08:25:6d:b4:ea:f7:7a:d4:44:d3:6f:
b6:f9:f6:db:6f:8b:64:01:7b:5f:85:8b:57:29:26:e6:86:a7:
4e:11:93:1d:87:51:c0:60:c0:76:dd:01:ff:68:7c:17:05:33:
72:8d:47:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 11:02:49 2025 by rpki-client