Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json)
Hash identifier: SRG82CWTbFjNBpi15x/Ab0VtiBvLZUhNclS9bmY75Bc=
Subject key identifier: 6A:78:FC:FA:CC:0A:02:8F:97:CD:8C:EB:41:74:FD:7B:8F:21:02:94
Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Certificate serial: 019A71B8BB102A2D64F1FF7B1346C5F7177B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 07:02:03 +0000
Manifest this update: Tue 11 Nov 2025 07:02:03 +0000
Manifest next update: Wed 12 Nov 2025 07:02:03 +0000
Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: K1qX+cI3yxG09V+eHFpGvc7hfoFMs81tA01Oax6Miv8=)
2: ExJyPjo5EWZQUpwxSS0T7A3Tclg.roa (hash: n7Rzh1zK0MckYzOS9a8lwv/AGXV+Jr0CvxhzGO4UHW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:bb:10:2a:2d:64:f1:ff:7b:13:46:c5:f7:17:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Validity
Not Before: Nov 11 07:02:03 2025 GMT
Not After : Nov 12 07:02:03 2025 GMT
Subject: CN=6a78fcfacc0a028f97cd8ceb4174fd7b8f210294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:75:24:54:38:23:ff:14:07:1c:b0:8a:c7:ad:
c2:9c:7b:29:e0:79:21:27:36:6c:8c:96:f8:da:70:
f6:73:d0:97:b2:9a:8b:e0:a5:b7:a7:ef:61:86:83:
a1:a3:18:18:f0:b2:3a:cb:63:ee:c0:84:aa:41:69:
b5:f3:bd:bd:03:f9:4c:cc:2a:f7:a5:52:0c:a4:02:
32:1a:2f:df:43:40:af:b5:32:54:c7:71:c0:0d:4b:
c5:18:da:f1:dd:ca:85:d9:58:b9:3b:27:67:c9:e5:
ca:0c:c2:7c:b4:8e:f7:e1:be:e1:d9:ad:2b:77:21:
44:9f:6f:99:13:82:9b:d1:76:36:b5:c7:c4:d2:af:
35:8a:b1:62:d7:20:3a:5c:21:b8:84:3a:db:38:46:
ee:e4:7f:79:9e:32:58:53:b2:52:08:df:4b:06:25:
f9:fc:e7:c7:3d:07:2a:9a:ed:35:6f:bd:22:87:ee:
c6:cb:41:0a:f2:ad:d1:cd:b7:94:9c:9a:e6:7c:c0:
5a:f3:b3:81:d7:f4:ff:a6:27:91:30:7e:9a:9d:0e:
d4:c0:12:34:84:01:1e:47:2b:df:a3:b1:77:af:60:
12:0f:aa:b7:d2:fd:13:d4:e9:d9:dc:25:3d:11:0c:
3d:21:53:51:4c:68:f1:72:d3:0d:6a:dd:84:3d:9c:
11:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:78:FC:FA:CC:0A:02:8F:97:CD:8C:EB:41:74:FD:7B:8F:21:02:94
X509v3 Authority Key Identifier:
keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:1a:ce:22:87:c7:8f:08:0b:39:bc:bd:88:bc:f2:5a:45:a5:
ec:62:72:b0:5a:e4:e5:67:75:f7:69:7c:6a:58:09:f2:72:72:
12:11:2c:a9:c1:bb:1a:d2:25:20:53:22:90:6f:fd:d9:61:fc:
46:74:2a:a5:23:03:83:01:ed:89:34:bb:66:96:b9:6e:42:ad:
a0:9b:a7:c1:c2:27:aa:71:cf:af:93:ed:df:e7:79:6a:89:0c:
35:dd:88:ba:01:4a:09:d9:ce:65:65:a5:f2:89:5b:cb:81:7f:
43:12:71:fe:09:68:3f:60:7c:80:61:86:eb:17:48:5c:38:55:
22:0d:fd:d4:96:c9:58:fc:b8:6a:aa:67:cc:9d:7f:86:ce:52:
6e:d9:15:7e:b0:77:17:e4:92:bf:39:4d:41:4c:27:c9:95:5b:
7f:56:46:e4:8e:47:19:65:1d:33:6f:91:55:77:c3:54:f4:e1:
95:bc:c3:94:18:f8:d6:43:79:ca:a8:48:11:3c:bf:83:9a:fb:
7b:42:10:bc:8b:e9:1a:d0:9d:0a:0e:8f:69:6d:0d:cd:14:9a:
f9:6e:c6:62:eb:cf:64:d2:4f:7d:d8:35:2d:37:66:2c:16:b8:
e8:60:3a:7a:8d:aa:8d:b1:9f:c0:9a:ef:2f:99:9d:c4:99:65:
ca:af:fb:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:17:28 2025 by rpki-client