Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File: A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier: ZA+HV8Bm+mcOxzsqpSpPEHbU2HmrjmnuOFoBrbdJyM4=
Subject key identifier: B2:D3:C7:88:34:43:61:DA:65:CA:60:92:EA:B6:9B:51:AA:A6:D8:3F
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer: /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial: 019A71B92AEC6183980D92FF34E76C74E6E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number: 13AF
Signing time: Tue 11 Nov 2025 07:02:31 +0000
Manifest this update: Tue 11 Nov 2025 07:02:31 +0000
Manifest next update: Wed 12 Nov 2025 07:02:31 +0000
Files and hashes: 1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: 07gNPg7JTwptAqxNs6+ma3X00xSk9D67mAW7FA0cTwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:2a:ec:61:83:98:0d:92:ff:34:e7:6c:74:e6:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=036847b297235faf071686fed2c1e910bf600486
Validity
Not Before: Nov 11 07:02:31 2025 GMT
Not After : Nov 12 07:02:31 2025 GMT
Subject: CN=b2d3c788344361da65ca6092eab69b51aaa6d83f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2d:f0:a9:16:92:86:d6:96:54:a5:c0:bd:82:
88:85:45:14:68:9c:c3:96:2b:c8:1f:45:c1:c0:85:
3c:fb:0a:0b:c4:2e:60:c8:bb:cb:ba:b8:70:f3:e0:
c7:44:ad:36:11:60:30:aa:07:04:41:37:c0:73:c7:
e3:d5:c9:e7:1e:a0:7d:cc:ff:d1:12:5c:13:91:58:
97:5f:34:f4:56:72:86:07:46:b2:1b:18:71:61:57:
70:40:41:c8:22:d7:dc:c8:70:57:c9:30:c0:03:69:
cf:17:26:7a:0d:3d:5a:07:2a:d7:f0:a6:11:c7:42:
d1:f5:38:39:10:42:fa:52:72:10:bb:3a:ff:a4:18:
88:dd:e7:0b:e0:b6:cc:7a:82:f4:e9:c6:80:04:3b:
46:c3:86:5a:a0:90:97:1a:83:42:c4:b7:4f:d5:fd:
74:1b:36:74:1c:a2:6e:cb:0b:42:e2:82:cf:3a:01:
59:d4:52:87:35:8f:2f:5a:28:d7:ff:d9:8e:20:62:
5b:fb:01:77:98:23:59:15:02:28:62:e1:b0:b7:cf:
32:fe:4a:df:48:6e:d9:a8:22:10:dc:18:98:ef:17:
d7:64:52:ed:37:ab:e3:8c:14:93:98:ab:d6:a0:97:
e6:19:b1:32:c2:36:29:42:4a:de:93:93:d8:4e:7d:
48:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D3:C7:88:34:43:61:DA:65:CA:60:92:EA:B6:9B:51:AA:A6:D8:3F
X509v3 Authority Key Identifier:
keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:8c:6d:64:d3:42:b7:d3:39:24:b6:f5:3a:69:0a:f6:97:11:
d9:0d:fe:7f:62:b5:e3:70:e2:54:7c:d3:da:f1:a4:9c:5b:e2:
80:13:3b:99:c3:f8:21:b0:b0:22:20:df:e5:f1:e9:b1:c9:1c:
88:34:0d:ef:c8:d8:df:99:4d:3d:8b:25:2c:6f:6e:f9:ac:7e:
01:6b:2b:27:ad:e2:59:33:07:14:68:08:2d:25:14:6f:47:ba:
70:82:61:65:c4:9f:52:75:0d:7b:aa:5a:29:b8:1b:bc:0e:64:
a4:5f:9a:37:87:04:de:58:b5:af:4f:fb:75:c5:67:9f:17:d6:
b1:78:a9:7c:c4:57:2e:bd:ed:94:69:59:b9:1e:90:ca:8e:7a:
21:73:94:37:36:32:15:0f:0a:ea:68:99:a3:4b:3b:bb:5e:5a:
39:0d:70:8f:81:85:02:eb:dc:21:ec:6c:75:be:bb:4b:d2:f8:
de:0b:2b:77:9c:3d:f4:6a:6a:66:f6:2d:14:19:88:3c:7a:4b:
95:8d:92:51:32:04:78:df:e8:49:e8:7b:e8:91:8c:ad:a1:9b:
ff:f3:a7:aa:22:56:73:64:63:df:10:8b:2e:12:9f:bd:31:32:
14:ab:ad:2a:14:47:ee:02:96:6f:67:b9:05:d3:0b:48:b8:5f:
8b:bd:b3:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:07:09 2025 by rpki-client