Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
File: r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft (raw, json)
Hash identifier: SIs1i0ZkymhG0p2SzWSZy2cE5F/vHVOIT7Wxc8/DA8k=
Subject key identifier: 43:79:A5:18:F3:61:6E:D2:3E:FF:EA:7B:97:0F:E2:ED:6D:D5:0C:EC
Authority key identifier: AF:78:2D:AE:3D:40:CA:F2:22:32:62:54:1C:40:54:E6:29:45:D9:33
Certificate issuer: /CN=af782dae3d40caf2223262541c4054e62945d933
Certificate serial: 019A2C32ABAA1DE63545ABB12FBAC2BE05D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
Manifest number: 16FB
Signing time: Tue 28 Oct 2025 19:01:49 +0000
Manifest this update: Tue 28 Oct 2025 19:01:49 +0000
Manifest next update: Wed 29 Oct 2025 19:01:49 +0000
Files and hashes: 1: r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl (hash: BInxHnQrqhxcsdyBF/zX6tBIrs7BSeFe/CeL81Jgj7g=)
2: zwiEAg55TtHyIaM_PRVFnX4DSAo.roa (hash: ylKaMThBpY1ZvZheIftHUUCXqnEHukLo3wFRWG0DpZk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2c:32:ab:aa:1d:e6:35:45:ab:b1:2f:ba:c2:be:05:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af782dae3d40caf2223262541c4054e62945d933
Validity
Not Before: Oct 28 19:01:49 2025 GMT
Not After : Oct 29 19:01:49 2025 GMT
Subject: CN=4379a518f3616ed23effea7b970fe2ed6dd50cec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f7:76:a6:cb:b6:0e:86:3b:96:0f:9e:76:f9:
3d:cb:1b:5e:b2:89:22:82:5c:bd:7b:45:d2:34:40:
ab:6a:ff:89:e8:cd:86:e1:74:79:b7:43:c0:3f:55:
95:39:ae:d0:5b:7a:fe:0f:35:78:89:aa:cf:e4:d8:
89:da:06:95:8d:3a:ef:5c:4d:61:7a:e4:5b:0e:12:
38:b8:69:d5:08:88:6f:dc:8f:1e:3f:f4:f8:62:01:
27:81:3c:d7:f4:46:27:ca:f4:4e:65:71:4d:a8:f5:
03:89:59:cf:03:a3:0a:6b:e3:10:02:ce:36:4f:7a:
4e:53:97:3e:dc:77:80:84:54:49:2a:1c:3a:b3:c7:
85:d7:f2:07:ed:a0:0d:4a:80:d2:86:dc:a4:04:33:
23:a5:32:22:df:c5:30:94:ac:99:48:3a:75:7e:ad:
e4:77:64:26:8d:42:2f:7c:b3:5e:ea:55:8e:9a:ea:
2d:e5:f7:a1:37:ca:11:41:2a:b5:95:b1:d7:77:dc:
37:a2:48:26:68:d2:e7:1e:59:a3:28:3d:9b:b1:93:
86:7c:d6:60:ee:56:b2:90:e0:e7:5b:b2:77:d6:26:
9c:37:2d:2a:ad:6d:4e:cf:c4:79:a8:85:e5:ea:4e:
67:6c:82:88:16:81:d2:e0:12:96:fe:c1:af:1a:cc:
6f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:79:A5:18:F3:61:6E:D2:3E:FF:EA:7B:97:0F:E2:ED:6D:D5:0C:EC
X509v3 Authority Key Identifier:
keyid:AF:78:2D:AE:3D:40:CA:F2:22:32:62:54:1C:40:54:E6:29:45:D9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:ea:79:ce:f4:43:de:2b:bc:bd:89:75:20:dd:e8:05:e1:ad:
df:39:fe:4f:f8:93:69:44:92:97:64:b8:d0:e3:3d:88:d4:43:
40:5a:dd:dd:3d:b5:e0:44:8b:e4:f8:d5:cd:2f:55:ae:bf:6b:
df:a5:b3:03:88:c6:49:d9:bc:78:8b:81:df:6a:a5:6b:d6:0d:
d8:e8:b2:a8:b5:17:6c:e9:39:60:8f:00:36:e7:1e:63:2d:a6:
c5:10:a0:56:a3:98:05:65:07:95:ed:90:73:6d:db:11:48:02:
b0:7c:b7:f0:32:a1:8e:71:48:16:6a:72:a6:07:60:3d:92:63:
5f:50:a4:c3:14:00:ac:3a:41:3d:ff:d3:a3:e9:fc:63:c9:f7:
10:dd:30:6f:2f:e4:47:2e:80:7a:f4:21:42:0b:93:7c:e1:7c:
dd:af:a1:de:21:84:7a:9b:05:25:f8:a4:b6:77:b8:49:ca:a1:
63:1c:1f:5e:e7:ec:0f:bd:b0:7b:6b:93:de:4b:60:f5:50:22:
bb:da:56:54:75:96:9a:1f:96:ea:f4:0e:44:0f:41:3a:d8:98:
66:71:bf:13:e3:7b:86:48:97:18:ce:47:35:02:60:99:37:8d:
fb:0f:00:86:03:42:60:b8:f3:23:66:a5:d3:f6:af:02:9b:cb:
90:2f:43:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 21:26:24 2025 by rpki-client