Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier: 1prRmg4BjsYdAz0E3ZJpJBbgozhEhF4o0kAcg3Hw6Aw=
Subject key identifier: 89:50:69:74:C1:FC:38:84:52:5C:E4:EB:41:E0:0C:89:72:7F:33:03
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial: 019A73015AE03FE2679C1704B0258BE20A53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number: 06E9
Signing time: Tue 11 Nov 2025 13:00:59 +0000
Manifest this update: Tue 11 Nov 2025 13:00:59 +0000
Manifest next update: Wed 12 Nov 2025 13:00:59 +0000
Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: z17xxKgeFEzfqXhi6Sdf1FZhB+j1FyEyoa/Eh4jbQ5g=)
2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:5a:e0:3f:e2:67:9c:17:04:b0:25:8b:e2:0a:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Validity
Not Before: Nov 11 13:00:59 2025 GMT
Not After : Nov 12 13:00:59 2025 GMT
Subject: CN=89506974c1fc3884525ce4eb41e00c89727f3303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5e:c7:30:1c:f9:23:e5:16:9c:be:4c:54:86:
c6:95:b4:73:09:01:d0:61:9d:91:9f:2c:11:74:09:
04:62:7c:ee:65:50:06:bb:b2:d4:95:02:a4:5f:bd:
f0:79:b4:96:ab:15:57:18:7d:7e:7a:01:9a:56:85:
43:8f:c3:a1:2f:e6:87:75:75:c8:43:63:15:fe:4d:
7b:7e:b4:55:be:65:8d:b3:1c:c6:1d:04:af:bc:c3:
3e:d2:da:cb:1e:7d:7e:2c:bb:26:6b:99:06:f1:da:
6a:62:f9:4c:43:a8:a1:ea:45:1a:ff:01:06:ea:ad:
1d:aa:42:b4:ad:79:89:f1:dc:b0:f1:1d:03:53:91:
c7:9b:f9:7a:8b:e5:17:73:be:ab:21:e0:58:90:f5:
0b:b4:d2:7a:90:26:ef:9a:68:be:f6:67:63:67:47:
fd:44:50:62:28:3c:85:07:f6:e4:da:56:97:e4:60:
4b:11:4f:57:8f:2a:b9:07:38:bc:f6:a2:e2:9e:50:
1e:73:52:ad:b7:fb:9e:ab:36:2f:58:e1:cf:7f:ec:
13:ab:cc:af:10:94:55:ae:62:92:34:0c:ba:ed:f6:
06:e6:ee:0c:5a:02:78:02:41:4b:83:3a:9b:6a:53:
75:a2:fd:cb:d8:ca:2e:6c:33:2a:d0:38:05:b2:a7:
5f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:50:69:74:C1:FC:38:84:52:5C:E4:EB:41:E0:0C:89:72:7F:33:03
X509v3 Authority Key Identifier:
keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:51:c4:22:b1:0c:2c:0d:d5:06:dd:65:05:42:e5:4b:31:75:
65:57:dc:15:6f:1a:24:59:1b:45:dc:29:d4:2e:4b:0b:f6:f7:
74:28:30:b6:b8:49:13:a9:62:66:3e:64:cc:b8:7b:f7:ec:4d:
8b:55:01:93:7d:42:f9:a3:b8:2d:ae:5b:90:7e:b5:28:0e:cf:
7c:2a:c8:e0:c4:7c:49:eb:09:be:32:97:3c:ef:5c:c9:f6:06:
4b:f7:f7:a7:e2:71:84:a3:ae:a0:b7:ab:08:47:88:7e:68:58:
c8:49:4e:5a:b1:c4:b1:55:c6:f3:b8:7e:db:a2:45:6e:43:4e:
ee:4f:06:13:cb:ae:64:56:ea:89:30:5f:62:e7:3b:b7:b0:d1:
87:fb:50:07:f6:3c:26:93:be:49:49:21:8f:99:88:2f:69:b3:
25:1d:96:07:d7:1e:7b:53:dd:ed:84:2d:8f:1b:e3:87:7a:2b:
48:6a:c0:a9:61:af:93:1a:1a:33:5c:2e:3f:ff:ac:ed:ea:d9:
ce:bd:32:5c:c7:06:46:77:54:99:1a:bb:4a:12:7f:82:80:2d:
41:08:49:47:28:1e:11:ec:1f:7b:02:30:15:7f:6a:d5:a4:4c:
b2:1e:99:7f:04:95:32:64:25:b8:13:5e:82:48:e8:da:65:26:
cf:55:65:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:51:00 2025 by rpki-client