
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
File: afAHCvh31rmGswe5vATvGcRAQz0.mft (raw, json)
Hash identifier: eE168X8MjCEzAEHUtz0+0OkRv0AxHUCdHJhUTlw3WSI=
Subject key identifier: F6:17:2C:EA:36:36:90:BE:1D:A1:79:E7:E4:6D:D2:CE:1F:D5:74:D1
Authority key identifier: 69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
Certificate issuer: /CN=69f0070af877d6b986b307b9bc04ef19c440433d
Certificate serial: 0199FBEA908FEA5F05DD40C324B8AD606BAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
Manifest number: 0916
Signing time: Sun 19 Oct 2025 10:01:17 +0000
Manifest this update: Sun 19 Oct 2025 10:01:17 +0000
Manifest next update: Mon 20 Oct 2025 10:01:17 +0000
Files and hashes: 1: 5m0E4hrlymj_oPq4RutDZTBvpFc.roa (hash: D3u2GpmWvvHTn4HOSLwFPi92ntWCyeD4rYP1qp5He0g=)
2: afAHCvh31rmGswe5vATvGcRAQz0.crl (hash: SrR84M3Ebpevy12qUA8zjoMLH9Jpl/kJR4hiCrwyvN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:90:8f:ea:5f:05:dd:40:c3:24:b8:ad:60:6b:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f0070af877d6b986b307b9bc04ef19c440433d
Validity
Not Before: Oct 19 10:01:17 2025 GMT
Not After : Oct 20 10:01:17 2025 GMT
Subject: CN=f6172cea363690be1da179e7e46dd2ce1fd574d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:51:9a:b8:88:76:10:52:96:d8:da:32:84:b9:
09:f2:0e:87:30:2f:b3:1a:0e:8a:7d:8d:cb:0f:8a:
a0:80:c8:8f:15:13:ba:e2:ee:38:86:61:98:6a:d8:
85:68:ca:b4:47:56:78:0a:2a:5d:fc:29:0d:7b:06:
92:6b:72:50:3f:6d:a3:7f:07:59:f5:f9:29:11:86:
5f:60:d6:5d:9d:77:ed:cf:85:90:19:2b:37:30:6a:
92:e5:e6:ae:b4:06:c9:9e:02:50:e5:f4:82:75:2b:
18:7c:3e:77:b3:da:08:f7:07:7b:1c:25:d3:0d:a3:
3c:7d:11:34:a6:43:00:c7:67:f0:b1:76:fe:d5:d0:
74:93:c8:64:f8:32:ae:ac:b9:a4:84:fc:dc:cb:e0:
f1:bc:96:86:ba:79:a3:a5:73:7c:59:bd:2c:7a:bb:
35:47:02:20:12:c1:2d:22:c6:f5:8e:4c:a5:21:3c:
44:66:eb:77:5a:84:f1:a1:2f:a5:9d:8a:f6:8f:3a:
5b:cc:c2:5b:c1:a0:dd:d6:b6:68:4a:21:b4:41:15:
6c:6d:cd:13:48:58:5d:a4:e3:20:b8:cc:1d:9a:09:
2b:c2:ff:5c:ab:ee:d0:78:e1:40:b2:86:80:49:2a:
55:c8:e9:2f:7c:af:9b:48:fb:f5:a1:08:d2:41:99:
d9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:17:2C:EA:36:36:90:BE:1D:A1:79:E7:E4:6D:D2:CE:1F:D5:74:D1
X509v3 Authority Key Identifier:
keyid:69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:2f:e5:0a:1c:f5:92:61:a5:60:ad:b7:98:c9:12:d6:3e:d2:
59:7e:5a:01:19:2a:2d:2c:58:7a:37:66:52:bb:50:90:aa:3d:
e3:b0:4e:62:10:fd:8c:e4:b4:eb:7f:6b:fc:72:9f:91:e8:30:
50:be:a1:ba:f0:b7:b2:5e:87:5a:6c:68:71:6d:b4:a9:71:a3:
d3:01:d2:19:57:5d:43:44:fa:df:15:af:93:97:82:eb:2d:b4:
05:e4:04:19:d8:7e:22:90:e6:46:0d:5d:a7:70:b3:e0:ff:d0:
d7:cf:a9:3f:6b:39:60:6b:49:b1:f4:73:df:b7:4f:22:d9:dd:
e0:56:cf:1e:1d:14:37:6e:33:7e:94:55:11:c2:21:be:d7:41:
3e:29:c6:95:e5:d5:ae:86:4f:48:8b:3c:70:82:fb:80:01:e5:
e1:4d:68:aa:a2:a3:e7:d9:0b:f8:54:ed:63:ef:14:a8:2f:7e:
0b:c4:0b:70:21:0f:96:68:fc:01:b7:81:9e:5d:2b:5d:a8:2c:
43:b3:9c:87:50:a0:fb:38:7f:b0:3a:d4:65:1e:7d:1b:89:01:
5d:6d:77:d4:ca:79:13:35:e7:aa:66:92:25:f7:33:b8:c6:1f:
cb:bb:de:cf:e6:2d:8d:02:07:96:d3:49:90:93:1c:88:bc:f0:
da:7f:70:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:14:48 2025 by rpki-client