Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: lKiuGNj1bA6CQemZ8y9Lew+X/kTn0c/mi+S57VNbIPA=
Subject key identifier: E6:9B:C5:AC:13:90:A4:86:26:58:A7:85:83:0F:57:21:87:08:39:6A
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 0199FCC6929340D0C4C78959033968008846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 0A0F
Signing time: Sun 19 Oct 2025 14:01:36 +0000
Manifest this update: Sun 19 Oct 2025 14:01:36 +0000
Manifest next update: Mon 20 Oct 2025 14:01:36 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: zN0nRhLxKhsd4ZUJLOkd9P/bqifbDlH0NiyRR21NV7E=)
2: eTuN91J09OBNoZtxEtruVhH4DbY.roa (hash: F1iOkNAfZrkXFWgz/sdsk9Ul6Wkc9BDyHiaUC1recQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:92:93:40:d0:c4:c7:89:59:03:39:68:00:88:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: Oct 19 14:01:36 2025 GMT
Not After : Oct 20 14:01:36 2025 GMT
Subject: CN=e69bc5ac1390a4862658a785830f57218708396a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:91:25:15:59:44:84:94:96:73:2e:35:a1:ea:
8c:ca:19:aa:de:47:9f:25:82:3a:4a:93:37:c3:7d:
3e:73:61:12:d6:9b:ca:69:d2:07:66:1a:a1:fc:8c:
f2:96:00:da:4f:1a:ab:24:da:68:79:55:ea:73:c8:
60:ae:f8:d2:cd:0a:bb:68:e4:0f:24:db:5f:5f:c7:
77:35:4a:f3:2e:b8:de:78:e9:b3:be:38:15:e7:cc:
76:e3:5a:d5:4e:40:ff:08:33:5f:01:18:04:92:eb:
39:74:31:4c:e7:30:9d:21:d2:6c:d0:02:84:82:12:
27:c5:50:75:f2:b9:9d:5d:32:02:32:c0:34:c3:3d:
3c:a7:2d:94:d8:a6:1c:e6:7c:0e:b3:ab:83:5d:36:
52:5a:b0:f0:91:be:fb:27:72:ba:c8:98:68:31:fb:
32:1f:89:46:0b:d1:70:56:eb:56:76:ba:cf:1f:f6:
cb:cf:8e:5e:ca:57:46:0c:1b:01:0a:1f:bb:e0:22:
c2:e1:ac:63:f1:e1:68:fd:61:3f:43:31:f2:39:fe:
7f:96:a7:f3:81:0c:00:20:f5:a5:b5:93:6f:18:4b:
51:80:f9:90:83:9f:23:41:35:84:be:b2:07:0f:4b:
f9:b0:84:e5:6b:ce:7b:53:e9:01:5b:fc:38:d8:28:
f3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:9B:C5:AC:13:90:A4:86:26:58:A7:85:83:0F:57:21:87:08:39:6A
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:e8:22:ae:41:53:52:25:8b:ef:24:f3:85:d4:95:b7:d1:a1:
30:52:4c:ab:29:e2:37:03:10:12:b5:30:02:53:6f:e2:64:4a:
e0:95:94:52:36:1f:94:95:b3:9c:25:93:77:2a:f6:17:35:b8:
48:e8:12:4d:10:47:aa:27:e2:dd:e7:29:b8:73:ad:2d:88:e2:
73:60:4d:83:04:c1:2c:69:07:d0:ea:39:b0:13:c2:0d:00:0d:
d4:f9:d0:20:2d:13:06:97:d7:63:ef:0f:3f:17:f6:fc:35:4e:
a8:22:e3:d2:ed:d8:b2:38:7a:d2:7c:13:52:23:35:3d:94:4c:
53:31:ba:dd:ac:58:fb:e0:b1:4e:43:51:61:4a:26:08:e3:3c:
fe:38:a0:2b:da:07:f9:f3:f5:15:2b:71:c1:5a:c4:8f:4f:b5:
f5:9b:93:8a:f1:76:9c:9f:ea:4c:e3:62:cb:c3:c0:a1:14:cb:
ff:3b:55:2e:dd:a0:20:fe:9c:98:1f:c1:b8:3b:78:da:b9:76:
01:69:be:74:bd:a7:23:0e:b4:53:28:ea:88:3c:38:91:72:a1:
86:76:60:60:33:60:9a:ac:94:a8:36:90:f9:b3:ad:48:6e:6c:
b1:46:21:03:15:8d:0b:95:79:48:07:51:22:a1:4c:5d:7a:97:
03:35:bc:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:47:50 2025 by rpki-client