Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
File: 1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft (raw, json)
Hash identifier: MLxwj8CHkXWC92pKl4wdMvp/3EqhadsQRVXuSa89rEE=
Subject key identifier: AA:62:35:75:65:DE:5C:34:5B:7F:7A:10:4B:7C:EB:CE:5F:FC:ED:F5
Authority key identifier: D4:7E:62:CB:F5:FE:F3:37:7F:9E:7C:D5:85:58:F4:4E:2E:EA:9B:CE
Certificate issuer: /CN=d47e62cbf5fef3377f9e7cd58558f44e2eea9bce
Certificate serial: 019A722671B99FE6D98932128B1DA5D188D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
Manifest number: 06B2
Signing time: Tue 11 Nov 2025 09:01:53 +0000
Manifest this update: Tue 11 Nov 2025 09:01:53 +0000
Manifest next update: Wed 12 Nov 2025 09:01:53 +0000
Files and hashes: 1: 0Z-rzxBLOWIfSfgExnNziFjknFI.roa (hash: WIPxFrkjwE/aiN3DpBiUfgIiKOHJkBOTh5tGpO+hM/Q=)
2: 1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl (hash: GCWWYUvz2kTNFsoo8uGL8shMIB4CBBThnXnSBtldsdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:71:b9:9f:e6:d9:89:32:12:8b:1d:a5:d1:88:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d47e62cbf5fef3377f9e7cd58558f44e2eea9bce
Validity
Not Before: Nov 11 09:01:53 2025 GMT
Not After : Nov 12 09:01:53 2025 GMT
Subject: CN=aa62357565de5c345b7f7a104b7cebce5ffcedf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:a4:ad:e7:e3:ea:db:a1:77:3c:42:7b:8d:d6:
4a:24:3e:4f:b1:9e:ac:ed:d1:e0:c5:37:f8:9f:c9:
96:b0:ee:be:70:42:c5:4d:88:95:2d:0e:13:db:71:
1b:44:f4:06:47:8c:1a:7e:d0:0c:7f:d0:80:22:fc:
cd:58:fa:95:61:d8:3c:6e:cd:a1:bd:1c:e8:3c:68:
2e:ec:76:87:9e:46:49:8b:d7:68:71:4a:22:0e:58:
5d:77:31:0e:8e:25:3e:98:45:2b:fd:6b:28:38:28:
23:8f:cd:15:5f:6b:1c:cc:3c:ba:ee:ab:43:09:a4:
59:11:0b:1a:18:13:ad:4e:33:69:f6:ad:27:73:7e:
5f:5d:73:88:eb:56:a2:5a:01:f7:0e:d8:92:9a:cf:
88:d2:2b:67:c1:cc:9a:f9:91:15:9f:45:81:3e:7b:
92:c1:58:d6:93:c7:37:a1:df:dd:bc:8d:a8:f6:fa:
a1:d8:ef:0f:7d:9a:b3:ad:39:a0:28:86:aa:78:30:
22:42:8d:1b:f8:09:a3:91:10:d6:a4:42:15:a6:54:
a2:52:ee:c8:0a:6f:0e:bd:3b:84:86:9d:a2:7a:86:
24:6e:99:b5:dc:9e:5a:4d:61:47:42:22:fe:a1:a9:
46:86:e2:19:05:72:6d:6e:27:96:b0:cc:e4:83:e5:
52:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:62:35:75:65:DE:5C:34:5B:7F:7A:10:4B:7C:EB:CE:5F:FC:ED:F5
X509v3 Authority Key Identifier:
keyid:D4:7E:62:CB:F5:FE:F3:37:7F:9E:7C:D5:85:58:F4:4E:2E:EA:9B:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:99:95:1a:bc:80:83:8a:89:b8:4f:19:86:00:97:df:48:7f:
1b:87:de:8f:0d:fb:20:99:d6:87:66:c0:9b:5e:97:d7:00:b4:
05:db:04:c4:ce:23:fb:b6:44:5d:b4:e4:44:16:1d:09:38:8e:
33:22:0a:ca:9d:86:a2:7a:25:ce:99:1b:b7:64:c2:02:f9:cf:
e5:39:c0:e9:70:97:ce:b8:f7:08:1e:62:12:d6:a9:c6:43:84:
37:52:19:08:21:fd:8d:39:ba:d7:84:c9:99:28:62:4f:70:0a:
ed:cb:75:b7:d9:61:18:92:87:09:d6:87:ee:f2:ba:40:6a:d7:
42:41:1e:ff:d6:d6:4e:20:6a:0d:5a:fd:b3:2c:86:6c:cd:a3:
0a:a3:44:1e:78:a6:eb:92:4d:bf:5c:04:f1:2c:61:92:63:d1:
c7:d0:05:5f:fd:ea:cf:83:71:0e:74:2c:c3:cb:6b:ec:cf:a0:
b4:d4:11:18:32:b8:bc:4c:86:ba:3c:cf:80:d4:9c:ee:34:31:
f9:c2:44:be:0e:94:ab:e3:9a:83:eb:9f:8c:17:ed:5a:5e:c9:
f5:a2:f8:ff:4c:64:11:07:ee:1a:ce:a5:fe:4f:bc:8c:fa:d0:
37:b4:be:55:5a:b3:b4:bc:d6:a6:78:b8:2b:be:ea:3e:cb:83:
3c:af:01:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:51:48 2025 by rpki-client