
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
File: afURWpSbKIPEzDxJX_uJk97Z2F0.mft (raw, json)
Hash identifier: LK2++pQgpbaAD/elGL6S9cTRi/8ISLL3dHtxr6nbw6U=
Subject key identifier: 26:0D:4B:16:52:2D:F1:35:26:BE:55:AC:7E:6B:4E:75:64:F9:93:1D
Authority key identifier: 69:F5:11:5A:94:9B:28:83:C4:CC:3C:49:5F:FB:89:93:DE:D9:D8:5D
Certificate issuer: /CN=69f5115a949b2883c4cc3c495ffb8993ded9d85d
Certificate serial: 0199FC58F2589B46C3F8515ADF68A553D815
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
Manifest number: 0100
Signing time: Sun 19 Oct 2025 12:01:51 +0000
Manifest this update: Sun 19 Oct 2025 12:01:51 +0000
Manifest next update: Mon 20 Oct 2025 12:01:51 +0000
Files and hashes: 1: 4BZY4KShEUmhrY8s7jFk_wJEp5k.roa (hash: UlyxYtAIHY75kSHD+hMXhTJxJxd+/SUaiDAFT6/piUg=)
2: afURWpSbKIPEzDxJX_uJk97Z2F0.crl (hash: c3y4u1zvwH0j+4OLtRGoFZXQdYVjiXtDPsnlG7UI3lw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:f2:58:9b:46:c3:f8:51:5a:df:68:a5:53:d8:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f5115a949b2883c4cc3c495ffb8993ded9d85d
Validity
Not Before: Oct 19 12:01:51 2025 GMT
Not After : Oct 20 12:01:51 2025 GMT
Subject: CN=260d4b16522df13526be55ac7e6b4e7564f9931d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fd:0c:95:e1:ee:67:4a:f9:18:9b:fc:30:a4:
d6:27:f0:5c:eb:3a:32:35:4e:e8:d8:c2:57:ce:da:
ea:94:04:e1:d4:c6:82:a7:0d:23:9d:94:c6:8c:dc:
6c:2e:cf:e9:d2:72:4d:cc:41:30:4a:1a:11:bc:ac:
87:5d:bf:12:e0:8a:d5:c7:49:61:d1:20:66:2e:24:
01:9a:8e:e7:43:79:b8:7e:97:bd:09:95:fd:f4:d0:
2e:a9:c8:be:fa:49:b4:5c:d6:d5:44:85:81:5c:31:
d8:db:71:ba:c8:51:1e:b8:33:a9:8c:95:c7:09:25:
72:4f:42:e4:28:76:de:bd:a1:0f:bb:6d:c1:25:3a:
ad:2d:7c:4a:48:5d:03:9a:2b:cf:da:82:4b:75:de:
a2:c6:e5:ea:d8:2c:30:55:19:34:4e:ba:fa:5a:f7:
a2:43:6b:1a:2e:a6:da:88:ab:55:6f:2c:2b:3d:1a:
59:b2:39:ad:8e:5b:f4:6d:1a:65:dd:56:48:23:fa:
77:ea:c3:3a:21:12:ef:86:30:e1:25:22:83:7e:79:
4d:b2:a5:0d:af:b7:fb:d3:80:c9:ac:2f:7c:4c:14:
30:fe:46:e7:8f:b9:7c:d5:8b:1c:9c:b5:5f:88:d7:
48:50:f2:66:1a:cd:9d:10:b5:ee:ae:d4:11:be:b8:
99:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:0D:4B:16:52:2D:F1:35:26:BE:55:AC:7E:6B:4E:75:64:F9:93:1D
X509v3 Authority Key Identifier:
keyid:69:F5:11:5A:94:9B:28:83:C4:CC:3C:49:5F:FB:89:93:DE:D9:D8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:33:0d:de:12:48:20:56:cd:73:d0:6d:4d:bb:78:64:f9:a5:
af:6a:21:86:2d:fb:54:63:9e:fc:9f:92:1c:e8:45:df:b8:be:
e5:0c:73:a4:82:b1:6f:e0:1c:7b:45:e3:de:b9:78:b2:b9:d0:
82:b6:c9:1e:7f:9a:a9:12:c8:da:1a:ea:10:5f:1d:94:b8:1e:
92:5c:ef:71:f5:6a:77:1a:42:66:fe:32:32:d6:18:61:5c:ca:
88:09:88:0c:b4:e4:c6:a1:38:29:94:b0:88:7b:a9:3d:ff:99:
ba:d8:31:25:00:c2:cb:c3:a1:53:f0:34:2f:19:d1:ec:b0:32:
cd:b6:85:20:14:fa:a2:7a:22:a9:5d:4b:be:a1:90:ca:dc:6e:
5f:fc:82:d2:05:35:4d:ab:bd:d4:9e:bd:c9:36:86:13:b0:94:
d6:01:ed:fd:f3:f7:21:6a:5a:7b:d4:ed:47:5d:cd:19:94:0b:
91:53:60:bb:bb:f8:ff:e9:de:5a:6b:05:f2:dc:39:9c:26:05:
cf:a0:ca:a1:f3:e1:8f:88:30:66:7f:ad:3d:d9:20:ec:94:74:
3c:25:f8:54:d2:5d:50:2d:50:27:04:cb:3f:1e:bf:03:31:ab:
4c:25:77:28:6c:66:15:16:00:e1:ac:10:9b:6f:3a:ea:6d:61:
68:57:a5:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:41 2025 by rpki-client