Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
File: AkHvRDYUJQbyZZODwW69oeKbT4Y.mft (raw, json)
Hash identifier: yUXxZThX7Pzt9dAl7ADRAkhJEmw6AP8zUKycVl+5ceA=
Subject key identifier: 24:8C:16:37:1E:82:CA:D6:B7:AB:E2:A2:8D:EA:A1:EF:48:C2:2C:BB
Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86
Certificate serial: 019A13BAFA4F677494CCCA5C431F5955E4D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
Manifest number: 0FB1
Signing time: Fri 24 Oct 2025 01:00:11 +0000
Manifest this update: Fri 24 Oct 2025 01:00:11 +0000
Manifest next update: Sat 25 Oct 2025 01:00:11 +0000
Files and hashes: 1: AkHvRDYUJQbyZZODwW69oeKbT4Y.crl (hash: 8hbjLQFYkn5uyw8fj8YjC1yg7rc4mTJyLuzCxiOS0kk=)
2: NDyhuvBiD7Dcf-VvAcHjeKP4Wls.roa (hash: oeDnEopXVy5MJcNbGxGeEZ1ceng1jmSd304y/xLBjoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:13:ba:fa:4f:67:74:94:cc:ca:5c:43:1f:59:55:e4:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86
Validity
Not Before: Oct 24 01:00:11 2025 GMT
Not After : Oct 25 01:00:11 2025 GMT
Subject: CN=248c16371e82cad6b7abe2a28deaa1ef48c22cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1f:7a:1d:82:52:89:70:52:6e:c6:62:de:6d:
1c:03:be:70:93:33:6f:f5:e9:85:e5:5e:96:6a:ea:
16:da:43:f5:2f:b7:1c:12:07:90:61:85:f1:66:f7:
ef:ef:22:66:45:17:95:50:e9:7a:f0:c0:94:d9:73:
8b:9c:4b:03:e1:8e:dc:8b:31:04:d7:55:2f:0c:bf:
53:7e:c8:fb:dd:3f:1c:4e:5b:1f:7d:db:1c:86:51:
22:cb:cb:05:4b:05:a3:52:58:85:08:42:30:4b:c7:
20:18:21:3b:34:a9:83:76:67:b7:0c:39:d1:97:e7:
9e:45:c0:5c:6a:a1:04:15:de:05:4a:be:30:e9:84:
91:6d:23:44:85:a4:df:20:da:28:6b:5e:2f:7e:41:
00:8d:7d:e4:cd:ef:6a:dd:8b:1f:c3:87:e2:f5:0a:
04:6f:83:ff:a3:5e:67:3d:44:b0:af:74:56:7f:9a:
51:61:b9:e5:91:8c:64:52:8a:b4:c6:e3:da:1e:7d:
74:ff:38:09:a8:ac:de:ad:90:9b:44:a7:94:46:7a:
c4:4b:b5:25:0e:e1:dc:72:68:7e:c1:cf:99:bc:f1:
d6:f8:f3:ea:fb:7f:92:27:8d:77:8f:7e:c4:1e:c6:
73:4f:50:12:08:7e:72:de:e4:4a:4d:c3:a0:82:bc:
b4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:8C:16:37:1E:82:CA:D6:B7:AB:E2:A2:8D:EA:A1:EF:48:C2:2C:BB
X509v3 Authority Key Identifier:
keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:df:ed:e2:6a:7d:51:62:2e:ca:f7:86:7d:8f:9b:ca:77:00:
8e:bd:04:f7:38:56:79:62:b8:22:32:35:2f:9e:b3:d4:b5:6f:
c3:4c:7f:d8:4b:90:87:14:b9:9a:b1:96:68:dd:ae:dd:13:24:
68:6d:36:a4:4d:65:5a:e0:f1:9e:9f:55:16:57:cf:68:d8:a8:
54:4e:f5:8b:b1:7c:6f:92:5e:12:45:cf:4e:1c:3b:af:c5:29:
6d:e0:0c:f1:b1:62:3f:58:b7:63:f2:96:79:c6:05:5e:55:97:
e7:36:3a:c8:2b:97:ef:b4:c8:6a:09:06:a2:3d:8d:72:a9:2d:
4d:67:16:cf:a7:f3:4d:25:3d:3c:52:fa:fe:ca:a6:7b:c5:0d:
0a:fe:7f:1c:69:c5:8a:36:15:1d:f3:22:22:28:a6:00:9f:b4:
3c:92:86:98:2c:8d:39:a7:d5:57:de:b7:c1:b0:0e:ab:a3:29:
a6:cc:64:46:b1:b3:6a:7c:8f:f3:a2:65:01:d7:d3:fe:50:89:
36:62:d9:77:b4:f0:ec:cd:fa:30:bc:8a:d6:cf:54:4e:c0:9e:
2a:c3:5a:ad:96:6e:f7:91:c3:08:3d:cb:72:68:b3:da:3b:14:
5e:6c:a4:46:03:38:a9:76:cc:2b:82:bb:a8:b5:3e:83:53:02:
b6:fa:13:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 11:48:00 2025 by rpki-client