Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
File: a0dcb7gDO14R19tfLJl8hLpyXKI.mft (raw, json)
Hash identifier: 0/csrTDV8EFW/Z3W+QA5eHPgBiyzntbYI91B1KA3AEo=
Subject key identifier: 95:F5:81:AD:DD:3A:E6:50:5A:A5:B7:24:D6:B7:47:E4:33:90:23:DC
Authority key identifier: 6B:47:5C:6F:B8:03:3B:5E:11:D7:DB:5F:2C:99:7C:84:BA:72:5C:A2
Certificate issuer: /CN=6b475c6fb8033b5e11d7db5f2c997c84ba725ca2
Certificate serial: 019A1CBF2E01DCC37DEC897963D767D3CDC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
Manifest number: 1685
Signing time: Sat 25 Oct 2025 19:01:22 +0000
Manifest this update: Sat 25 Oct 2025 19:01:22 +0000
Manifest next update: Sun 26 Oct 2025 19:01:22 +0000
Files and hashes: 1: OVBxJN_E7KClOVOyQO1dITqXrDc.roa (hash: gtF4A20X0QOWLiRvuhbFqEg7fy+sAd/zI+eINNfliv0=)
2: a0dcb7gDO14R19tfLJl8hLpyXKI.crl (hash: 3+HWV6Yh/uCiyU2S2OsoB87+kEv7Ss9SkpOfG3n/MD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:bf:2e:01:dc:c3:7d:ec:89:79:63:d7:67:d3:cd:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b475c6fb8033b5e11d7db5f2c997c84ba725ca2
Validity
Not Before: Oct 25 19:01:22 2025 GMT
Not After : Oct 26 19:01:22 2025 GMT
Subject: CN=95f581addd3ae6505aa5b724d6b747e4339023dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f8:dd:34:af:7c:4f:7f:c9:bb:45:2b:ab:e9:
73:df:d2:4a:fc:26:37:be:6e:71:11:ed:ff:5f:8c:
fb:88:9d:81:ce:59:cc:95:29:6a:18:c3:d5:13:bd:
1a:c7:0f:62:40:4d:48:71:8b:9e:ab:5b:5c:97:8f:
18:e2:de:80:c2:fb:b1:fc:4b:b6:75:0c:da:e2:c0:
76:7d:0c:8e:73:09:fc:f7:55:f1:31:97:19:07:17:
a5:d9:16:98:12:4a:97:22:cb:ec:b5:78:92:18:a0:
da:b9:4e:38:d4:51:c5:27:14:0d:9f:59:29:39:d5:
ab:d9:d7:83:3f:4e:62:71:5a:09:37:b7:df:6a:73:
4a:8a:b2:de:9a:d1:03:4b:0a:23:f4:85:ac:21:b4:
06:43:7a:60:4e:ed:49:d8:ad:d4:76:67:b8:5a:f9:
8d:e8:96:5f:09:1a:72:84:4e:7b:42:56:da:8a:eb:
20:d6:38:68:b2:78:c6:91:0f:fe:94:12:12:64:f8:
77:43:4e:7b:d2:96:9a:d2:27:21:7c:94:be:a3:44:
56:43:b9:36:d4:5d:3f:3e:2a:0c:17:dc:6c:ae:b6:
99:6f:17:75:c0:1c:6b:21:bc:e0:1c:a4:dd:3b:74:
24:16:df:ec:42:c0:b2:26:7b:77:29:95:2b:68:ee:
a9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:F5:81:AD:DD:3A:E6:50:5A:A5:B7:24:D6:B7:47:E4:33:90:23:DC
X509v3 Authority Key Identifier:
keyid:6B:47:5C:6F:B8:03:3B:5E:11:D7:DB:5F:2C:99:7C:84:BA:72:5C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:60:4d:2e:c4:3d:4f:f7:e1:59:a3:9d:ef:d2:01:aa:a9:07:
f9:45:66:6d:d0:1e:eb:67:21:80:dd:4e:51:02:23:bb:4d:f8:
15:7d:a5:d8:33:90:f5:51:50:48:70:6b:fe:38:d4:88:8c:38:
28:0c:c1:fc:32:99:81:68:69:74:e4:aa:7b:60:ff:c5:24:68:
06:76:dd:7f:c2:0f:b2:e1:65:e0:29:78:c8:71:f2:be:24:b7:
c7:87:3d:6c:aa:f3:9c:40:0b:0d:9f:f3:d4:0f:92:e4:c6:12:
07:18:48:f9:c9:b7:f1:6f:35:35:9c:14:92:ee:48:99:0c:eb:
cc:a9:09:3f:b1:45:b5:63:aa:59:72:b7:9d:b2:41:5f:19:da:
bb:d5:30:b1:89:d8:98:f8:c4:42:b6:76:bf:74:38:81:98:4f:
47:0f:cb:90:13:a9:39:0f:82:e2:5a:45:2c:9f:f9:2d:43:47:
0f:df:ed:e6:9f:77:34:8d:da:90:96:49:06:a4:35:1d:9e:44:
d9:50:a0:6c:a0:ae:1c:58:d5:9d:55:b8:16:62:ea:88:09:2d:
89:81:f4:15:0d:27:c8:9e:43:11:12:8e:b3:74:90:4f:ce:9b:
ef:bf:c0:4f:c4:31:2d:4c:c9:53:3a:55:c3:b4:57:01:b0:78:
df:d2:e2:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 03:09:08 2025 by rpki-client