Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
File: aXJqlhM2--eCCz10joEvSVyHLTU.mft (raw, json)
Hash identifier: BqbOiQzuMl1P2XmyOQImh94LPLacTpf9Uh6nPxyt8JQ=
Subject key identifier: A0:6F:AA:0A:2C:CE:3E:20:9D:B0:D8:8C:56:66:A4:79:C2:E6:1F:0D
Authority key identifier: 69:72:6A:96:13:36:FB:E7:82:0B:3D:74:8E:81:2F:49:5C:87:2D:35
Certificate issuer: /CN=69726a961336fbe7820b3d748e812f495c872d35
Certificate serial: 0199FD347B0C2EE6D4720AB5CB9A5234F880
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
Manifest number: 0ED2
Signing time: Sun 19 Oct 2025 16:01:38 +0000
Manifest this update: Sun 19 Oct 2025 16:01:38 +0000
Manifest next update: Mon 20 Oct 2025 16:01:38 +0000
Files and hashes: 1: TPjf70pa6qBZmpfYB0iX9CcL4Y4.roa (hash: swAbvLbVBmlLATlL/hX7o87L+INYtKkOcONzc8lraTI=)
2: aXJqlhM2--eCCz10joEvSVyHLTU.crl (hash: 2JrXqlMa6lof/jQszPNUxlnqgJTo5MCJT1BH0xfAVko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:7b:0c:2e:e6:d4:72:0a:b5:cb:9a:52:34:f8:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69726a961336fbe7820b3d748e812f495c872d35
Validity
Not Before: Oct 19 16:01:38 2025 GMT
Not After : Oct 20 16:01:38 2025 GMT
Subject: CN=a06faa0a2cce3e209db0d88c5666a479c2e61f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d6:7d:ad:1a:c4:1d:f0:89:ce:06:27:fd:db:
6d:ac:dd:9f:68:9f:7b:16:5a:11:c7:32:05:dd:31:
b8:37:8e:9d:3f:93:78:26:fb:88:45:85:21:0d:00:
89:4a:72:2a:c7:bf:c0:6b:5f:75:cd:6c:2c:71:74:
06:05:3c:d2:77:58:b6:28:5d:c5:cb:0a:9c:81:ea:
0d:0a:3c:fb:97:03:4a:d5:8b:57:58:75:ea:cf:5b:
92:7c:56:05:8a:1a:ab:60:a2:d5:4d:4a:76:df:01:
f8:4b:d2:eb:9b:19:8d:b7:b8:7b:a8:2a:3f:23:21:
5f:c8:08:30:1d:66:5c:30:fa:f1:7d:84:a3:71:5a:
d4:6d:27:e6:55:fd:66:50:20:fc:f1:26:44:22:62:
fb:6a:14:8d:10:c0:4c:4f:8a:e2:09:9e:cf:ad:9c:
9f:2d:23:10:5e:54:10:5c:a8:04:69:a8:09:19:35:
28:cc:8e:b1:bb:ea:6c:25:5f:83:c8:5a:fa:96:46:
8d:e3:ce:c3:a7:6a:56:82:b4:a5:be:99:60:a3:ef:
78:0d:3e:6b:c4:3a:58:4f:8c:28:b7:73:bd:8c:86:
87:f1:b1:d4:b5:15:21:0f:e8:b7:a1:c1:ca:25:92:
0c:33:cf:5a:ed:e0:3f:16:4b:cd:f4:98:96:11:a3:
e5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:6F:AA:0A:2C:CE:3E:20:9D:B0:D8:8C:56:66:A4:79:C2:E6:1F:0D
X509v3 Authority Key Identifier:
keyid:69:72:6A:96:13:36:FB:E7:82:0B:3D:74:8E:81:2F:49:5C:87:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:82:c0:0a:52:ac:82:a7:38:4a:7f:80:e9:01:85:73:76:b2:
fd:17:46:ca:b7:4c:7f:eb:02:9c:3a:a8:6c:b7:8c:32:1a:66:
99:a7:b4:f4:fa:83:70:9e:7d:0a:ae:bc:ad:ee:9f:32:74:07:
da:1f:73:0b:f3:7a:a2:1e:e2:d4:7e:72:f8:d8:9d:c6:0e:46:
22:ed:08:c8:b7:3b:19:12:3e:3c:36:7e:76:46:37:3b:d0:fe:
c7:d6:cf:04:0d:40:12:7b:3f:f6:11:a4:a2:6d:e3:0a:e3:36:
95:40:d5:8d:7b:40:4b:d3:c6:2e:1f:fa:f7:61:96:cd:20:b8:
61:b5:30:28:81:b4:90:6f:53:cd:b4:49:bf:b4:aa:9d:55:33:
99:13:f1:fa:3d:38:f1:16:c5:1a:c0:e8:93:1c:38:29:15:b7:
5a:2d:3b:0a:84:e1:8d:e4:f3:ed:1f:94:36:3c:da:31:4e:cc:
3c:4e:89:73:5c:ca:b9:1a:d8:28:6f:e4:90:48:d5:5b:47:cc:
da:ed:63:39:a2:90:04:49:90:58:a6:8c:37:54:ae:56:df:53:
2d:cf:37:f6:65:6a:70:3b:84:a4:7c:2b:ea:1d:99:f2:e7:22:
dc:0e:ff:31:9e:2b:21:43:2f:e8:ad:d2:3e:bf:bc:96:43:a6:
ce:bd:56:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:26 2025 by rpki-client