Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json)
Hash identifier: NfiN58fA3eBIuv1m1tof/cn+a8rUdsVnMjvUO4jS0kc=
Subject key identifier: 9D:0A:B4:8E:C9:8C:A7:BC:A0:6A:AF:C7:21:58:9A:E3:3A:4D:97:E1
Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Certificate serial: 0199239FBFC68C645BACCF612D84D7FE170E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 10:01:35 +0000
Manifest this update: Sun 07 Sep 2025 10:01:35 +0000
Manifest next update: Mon 08 Sep 2025 10:01:35 +0000
Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: wtDvA5osmXg3fmM4x7xMo/O1uvNXIoHcE/P8PExEACM=)
2: ExJyPjo5EWZQUpwxSS0T7A3Tclg.roa (hash: n7Rzh1zK0MckYzOS9a8lwv/AGXV+Jr0CvxhzGO4UHW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:bf:c6:8c:64:5b:ac:cf:61:2d:84:d7:fe:17:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Validity
Not Before: Sep 7 10:01:35 2025 GMT
Not After : Sep 8 10:01:35 2025 GMT
Subject: CN=9d0ab48ec98ca7bca06aafc721589ae33a4d97e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:40:05:c4:b9:d2:4e:c6:85:f8:cc:fc:30:42:
5a:60:bb:cb:44:dc:92:a4:5c:db:8b:dd:8a:7f:1c:
85:1d:af:42:93:da:e7:07:b0:13:60:5f:e9:ba:02:
bd:0f:52:2c:88:80:6b:9c:db:25:18:ee:76:08:04:
7a:25:6e:27:7c:35:24:f8:9a:c1:2a:a0:74:c3:97:
d6:6b:a2:a9:99:1f:5a:ce:f5:0e:39:08:2c:38:2f:
1d:1f:5f:24:6c:41:d7:37:05:0f:b0:a1:8d:4d:4d:
83:ac:ae:27:4b:fc:40:bc:28:4c:8b:d3:59:4f:2c:
be:8c:19:c1:65:9c:58:c9:7a:83:34:8e:60:64:f0:
1f:67:ef:8d:f6:cf:d3:7e:c3:c2:8e:8e:22:04:45:
7c:97:e2:92:69:6d:a2:77:a8:0f:b1:83:2a:9b:e0:
5f:01:dd:8d:e8:93:ee:3b:b7:37:b6:b7:7f:fd:17:
5e:84:91:ce:ef:58:e5:cf:60:55:58:9e:80:4d:c5:
18:06:71:ad:48:10:11:49:f0:bd:d8:7c:cd:64:ba:
82:4e:3e:63:c0:39:0c:13:c8:04:3d:2e:6d:a3:69:
e3:d3:5d:47:a5:bf:2f:bf:f5:21:45:64:2c:a2:b6:
a7:31:a8:b4:fe:b6:50:50:28:7b:ab:7b:ba:2d:0d:
bd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0A:B4:8E:C9:8C:A7:BC:A0:6A:AF:C7:21:58:9A:E3:3A:4D:97:E1
X509v3 Authority Key Identifier:
keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:53:f3:06:da:87:d5:ad:f5:0b:25:08:b2:53:4f:a9:77:18:
7b:64:a5:ac:32:8f:4a:bd:bd:c9:db:c7:55:6b:8d:90:0b:fe:
d7:7e:26:71:7e:3f:b8:f8:ed:a8:c2:3e:22:a0:e5:45:72:e9:
fc:35:ae:60:1c:43:01:89:ba:17:a4:2c:da:85:9c:bf:c6:40:
b0:b3:74:9f:5a:79:c4:a8:42:7b:a5:89:88:18:93:49:93:2f:
3b:c9:3d:f6:98:f3:84:e4:b2:a5:d7:45:44:69:59:eb:6b:86:
ef:40:bc:8c:c7:d2:54:2d:e9:57:e6:9d:71:15:92:72:e6:f6:
6e:d5:42:55:a9:9f:a2:da:30:1b:6a:db:58:2a:b7:b3:4f:76:
ea:18:36:63:f9:5c:7d:19:52:a3:b6:e0:fb:62:ec:75:08:99:
c5:1b:e8:d7:2c:9c:0e:35:e6:b5:f0:40:b9:9e:6f:2f:2c:c7:
98:19:da:6e:d9:72:be:91:9f:04:c5:c9:e3:a2:7e:df:29:28:
64:6e:15:bf:ba:ac:64:06:2d:29:5d:cc:c7:c7:f1:ac:bb:77:
51:45:a5:fe:a4:7f:09:88:e7:a4:82:c5:a5:d5:c4:fa:30:6a:
b8:d8:d5:30:2d:d7:11:33:09:34:63:0a:4d:be:ba:fb:68:dc:
a2:22:7e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:21 2025 by rpki-client