Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
File: aVHUVR0mpRwPkrd8LTePs0dYuHc.mft (raw, json)
Hash identifier: deeABhc8rkKwLgB5HiyOW66OWR0XW6ZlEfIIzz+kfMs=
Subject key identifier: CD:54:18:16:78:4E:27:25:16:5F:E5:92:B3:02:29:10:85:0D:68:94
Authority key identifier: 69:51:D4:55:1D:26:A5:1C:0F:92:B7:7C:2D:37:8F:B3:47:58:B8:77
Certificate issuer: /CN=6951d4551d26a51c0f92b77c2d378fb34758b877
Certificate serial: 019A73385FFEB86CC782474267A60D650702
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
Manifest number: 0830
Signing time: Tue 11 Nov 2025 14:01:05 +0000
Manifest this update: Tue 11 Nov 2025 14:01:05 +0000
Manifest next update: Wed 12 Nov 2025 14:01:05 +0000
Files and hashes: 1: PxyIfomodD9RHY4nPMUQ_8FG_F0.roa (hash: GQBwkJMiYlMRNPb5m5PsI1lq6MhgUy7JaZpjCwR+Ch8=)
2: aVHUVR0mpRwPkrd8LTePs0dYuHc.crl (hash: YbEhnaRSWmC+TXI3TTqmSQH9G9hfJiOkYPnmH5rdPOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:38:5f:fe:b8:6c:c7:82:47:42:67:a6:0d:65:07:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6951d4551d26a51c0f92b77c2d378fb34758b877
Validity
Not Before: Nov 11 14:01:05 2025 GMT
Not After : Nov 12 14:01:05 2025 GMT
Subject: CN=cd541816784e2725165fe592b3022910850d6894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:88:39:f6:b6:9c:34:50:7b:7e:29:42:ab:29:
06:3a:1f:b8:25:ab:06:d8:ac:8f:76:84:96:66:72:
e5:06:ae:1f:0c:c7:50:86:6a:9d:83:97:fd:a1:b2:
d3:5d:c9:b0:53:4a:85:2a:69:ad:ae:d9:ea:a5:40:
b2:22:b9:f8:ff:89:ed:0f:d1:44:23:00:83:b9:24:
68:6e:5e:f6:30:84:64:b0:f6:2e:96:89:c6:64:e9:
2d:be:62:de:a8:f1:a1:90:ea:6b:d8:a9:ac:33:85:
02:17:a6:56:ed:e3:1b:48:a5:12:3b:58:78:4d:02:
fe:1c:5c:49:0c:a1:23:70:4e:3f:5b:1c:86:b8:72:
24:f5:1c:b8:22:3b:22:74:76:c4:10:c8:78:87:a1:
ac:d8:58:de:8c:1c:ea:4f:50:e6:c1:63:79:75:05:
25:89:5d:bb:8a:04:ac:15:ce:33:e0:4d:dd:a9:21:
cd:8c:7c:f0:4f:e7:8e:34:88:b7:37:22:fa:6e:f7:
44:08:e4:f5:f2:82:77:22:74:cf:12:eb:52:72:90:
ae:ec:08:5c:70:70:4d:15:f7:74:91:4c:ba:e5:d0:
08:75:4c:6a:f7:b3:28:de:7f:97:86:e5:54:c5:ce:
d5:61:96:a7:40:7a:16:89:95:97:c3:91:70:40:23:
1e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:54:18:16:78:4E:27:25:16:5F:E5:92:B3:02:29:10:85:0D:68:94
X509v3 Authority Key Identifier:
keyid:69:51:D4:55:1D:26:A5:1C:0F:92:B7:7C:2D:37:8F:B3:47:58:B8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVHUVR0mpRwPkrd8LTePs0dYuHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/02610f-6913-4049-97f0-a2eda946ed29/1/aVHUVR0mpRwPkrd8LTePs0dYuHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:7f:29:a3:c4:73:de:a7:ba:18:aa:3a:db:a3:36:d1:37:5b:
34:d2:92:4d:d6:5d:42:79:e6:d9:65:95:c9:30:4e:b8:d8:81:
3d:5d:d7:ad:19:4a:7d:7c:5a:bd:2f:9f:9d:90:90:f9:9d:4a:
7a:9f:cc:b7:c0:62:78:22:22:a6:57:b4:92:08:33:0e:e8:11:
ee:57:fc:31:99:75:0f:c3:74:55:42:d3:63:1c:f9:0a:8e:86:
42:b2:06:56:cb:03:bb:78:7a:81:3a:05:3f:13:22:cc:f3:f9:
06:e3:3c:8b:53:15:0d:74:30:a7:a3:0b:02:12:84:35:29:54:
6e:b7:48:cf:78:75:dc:1a:f7:28:a8:4f:3a:07:29:a1:f9:a8:
24:3b:ba:0e:a5:a2:71:63:0a:91:b2:dc:59:e5:b9:ce:54:04:
70:31:0d:72:d8:93:69:11:ce:51:db:20:98:5c:3b:12:29:68:
7d:dd:96:7e:fb:98:57:6d:2c:ec:e3:aa:d9:48:01:a8:f4:7f:
b2:71:5d:d4:d1:d4:b5:b2:f0:35:fa:47:d8:45:5e:2f:05:94:
2b:f1:6f:5e:78:58:61:6b:96:1f:62:8a:d7:4b:c3:bd:16:3f:
9a:1c:23:69:f4:c6:30:72:a6:46:43:ff:5e:2e:56:7c:69:41:
8b:5a:eb:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:20:30 2025 by rpki-client