Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: YcyiO8wgDGbBALzo+R1wfy7wCQEWiS77ABCKbWXo8kM=
Subject key identifier: D4:F0:D7:59:F6:2F:4C:F6:F8:B8:7D:8F:78:FF:50:CF:73:60:E9:FD
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 019A1F519BEFF79921FA5F30B33E4E168878
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 02EE
Signing time: Sun 26 Oct 2025 07:00:33 +0000
Manifest this update: Sun 26 Oct 2025 07:00:33 +0000
Manifest next update: Mon 27 Oct 2025 07:00:33 +0000
Files and hashes: 1: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: 94zizYeEqMDjXPqyAHRPPprd87cQC4wafSM+cqxgkbc=)
2: As2aEQ-Qc40w6qz5lbdZOvfcUl4.roa (hash: wBu3pTqJ+Uf9xdHuwPeUbe92Udv+KfCa1hQtrwjxXdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:51:9b:ef:f7:99:21:fa:5f:30:b3:3e:4e:16:88:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: Oct 26 07:00:33 2025 GMT
Not After : Oct 27 07:00:33 2025 GMT
Subject: CN=d4f0d759f62f4cf6f8b87d8f78ff50cf7360e9fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b1:be:36:2f:3e:aa:ea:08:b5:ef:80:63:e8:
d3:98:96:fe:1f:d6:40:8d:7a:26:6b:7e:a8:0a:08:
47:c5:44:01:10:4c:55:1e:56:d6:09:59:15:cd:a6:
5d:e5:59:d7:c1:93:ff:e8:8e:f8:98:8b:0e:bd:3a:
25:9e:44:84:20:de:fe:2b:a2:4e:1f:04:90:c6:17:
ff:4a:19:5b:fb:36:2a:0c:83:f8:7d:83:97:9a:0b:
22:3c:de:bb:16:36:28:19:bf:4e:0d:2d:da:e8:6e:
35:4d:b1:d0:db:78:05:6f:c8:4c:d7:cd:6d:59:b1:
1b:00:3a:48:a4:e1:2b:53:35:a1:b4:b5:eb:79:a8:
87:ac:6e:5e:90:60:dc:b0:4b:aa:fd:97:80:96:c4:
a8:87:f3:a6:7c:ae:5e:21:e2:36:be:ec:d1:b0:fb:
3c:d3:10:e7:60:e8:a0:bc:04:b9:a2:cf:3a:21:fe:
f4:6f:c2:45:13:f0:f9:d6:15:7d:75:85:c0:f2:81:
37:28:ad:9e:b3:bc:57:5b:f5:59:bc:84:73:fc:7f:
d4:bd:62:40:8a:3f:31:70:a6:e4:2f:2b:a3:df:1e:
fe:3e:fe:3c:ad:9a:bc:4e:3a:d9:82:10:0c:29:e0:
66:61:77:28:11:c7:6e:03:80:fd:e8:e5:25:c1:4b:
a9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:F0:D7:59:F6:2F:4C:F6:F8:B8:7D:8F:78:FF:50:CF:73:60:E9:FD
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:60:b3:1b:d9:07:64:d5:5f:75:2f:35:c4:41:9a:94:6e:1e:
7d:12:03:75:0b:e4:f4:32:ab:be:3f:de:b3:f4:43:74:09:72:
a0:d4:2d:f0:64:a4:ef:c2:8e:42:90:c8:4e:fb:a2:54:7a:8b:
26:84:3c:b7:77:90:0e:20:57:ac:d1:92:7e:1f:72:8c:72:59:
66:10:0c:a0:f8:2f:e2:07:b7:ed:59:9b:07:d2:7d:67:e4:90:
8a:f6:a8:10:4e:0d:90:a4:8c:0e:0c:66:e5:03:9d:3f:06:0f:
b8:f8:cc:1e:95:88:97:fc:1b:31:e4:3d:7a:e7:8c:49:a8:22:
7b:80:f1:9a:48:6b:bf:74:14:0b:82:8a:9c:32:39:3e:f6:62:
ef:e8:9a:7c:22:4e:ac:ed:77:8e:a7:bd:f5:db:c7:0b:48:ae:
08:25:49:7a:d0:32:16:f9:36:73:6e:11:43:99:50:b4:9e:60:
db:6c:13:17:b5:64:d2:2a:c9:db:a0:96:c4:d8:0e:3b:04:d5:
be:1d:cc:cd:4b:9f:fb:37:96:e6:0a:f4:58:2d:6b:4d:f9:8a:
81:c4:73:ef:64:51:3b:ff:2a:41:72:f3:fd:1b:a8:d9:3c:a7:
a0:ca:6b:44:e6:b0:0e:df:ff:72:69:a5:1c:cd:ac:55:ca:7c:
64:2a:f1:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 12:05:06 2025 by rpki-client