Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
File: 9aKRIk-CvG0mtRntevviXLMsEVw.mft (raw, json)
Hash identifier: G/CBWZrx6uV8d7R+OYJ2HwKlCwfdfTYMarikBuiuB5w=
Subject key identifier: A7:21:EF:F8:32:5D:5F:E1:CD:95:B4:6F:36:99:4D:16:EC:D5:4A:BD
Authority key identifier: F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C
Certificate issuer: /CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c
Certificate serial: 019A0DF000122F224FEB1A503D6E32A03A77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
Manifest number: 0BBC
Signing time: Wed 22 Oct 2025 22:00:23 +0000
Manifest this update: Wed 22 Oct 2025 22:00:23 +0000
Manifest next update: Thu 23 Oct 2025 22:00:23 +0000
Files and hashes: 1: 9aKRIk-CvG0mtRntevviXLMsEVw.crl (hash: 1s0UoYPWMxHeWDJq7JtDCFr0GYKXVzd1RSEWI4i3DYo=)
2: TvqtU6kGEWNG1Cpdb9p7065y7Us.roa (hash: feIhe0HlEu5dhdmycewb1eBF/nryf3+/l635UbwMTEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0d:f0:00:12:2f:22:4f:eb:1a:50:3d:6e:32:a0:3a:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a291224f82bc6d26b519ed7afbe25cb32c115c
Validity
Not Before: Oct 22 22:00:23 2025 GMT
Not After : Oct 23 22:00:23 2025 GMT
Subject: CN=a721eff8325d5fe1cd95b46f36994d16ecd54abd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b5:3f:84:00:92:f6:4c:57:85:19:af:51:25:
15:91:da:32:d0:4b:9b:64:5d:62:3c:56:62:22:7e:
7d:22:57:57:f6:38:8a:97:9a:d4:74:52:bb:c2:cc:
c2:76:e6:bd:a7:d2:d4:74:ea:3e:2a:f3:06:5f:ad:
ac:77:ab:7c:fc:52:dd:43:14:cd:da:d3:f6:8a:4b:
64:2a:34:e5:05:f0:41:0d:7c:cb:47:b3:54:e6:be:
79:09:4e:39:9d:31:6c:d2:0d:24:51:70:15:19:2e:
72:2c:0a:dc:25:c0:80:46:9d:3b:ca:9e:9f:26:e4:
01:4b:eb:8c:b9:d9:e6:65:9c:16:d3:ab:87:2d:60:
67:8e:91:a1:db:60:63:ca:78:63:3b:7e:1b:81:ef:
ad:f5:8f:0a:29:63:96:14:5d:1b:f7:fc:f9:40:67:
6b:4c:f7:cb:cd:63:46:33:8a:88:42:07:07:71:d8:
42:ac:b7:78:41:2c:5a:e2:ff:af:da:77:b0:a5:e7:
1b:c0:ac:08:ea:2c:95:2e:3d:54:4b:84:04:af:bc:
bf:00:49:a4:a1:83:d9:b1:5c:66:ff:f0:13:0f:55:
ea:99:77:e0:dc:83:4f:cf:17:a7:97:b5:9e:04:19:
da:56:96:29:3f:dd:85:49:e2:ee:0b:de:1c:93:99:
75:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:21:EF:F8:32:5D:5F:E1:CD:95:B4:6F:36:99:4D:16:EC:D5:4A:BD
X509v3 Authority Key Identifier:
keyid:F5:A2:91:22:4F:82:BC:6D:26:B5:19:ED:7A:FB:E2:5C:B3:2C:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aKRIk-CvG0mtRntevviXLMsEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/8a5cc2-c542-4c9b-8077-bc7977396d9b/1/9aKRIk-CvG0mtRntevviXLMsEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:a2:7e:b6:64:f3:05:66:68:62:ab:47:58:1d:9b:2d:3a:45:
6c:08:82:2c:2a:76:dd:71:ce:a7:bf:c5:96:f1:84:b3:31:2a:
36:3c:e8:98:66:9d:7b:60:22:e3:58:c8:04:85:28:a3:01:68:
d1:89:1e:8f:2e:04:32:b1:17:1d:e4:12:d5:2b:73:64:98:6f:
fb:5f:b8:55:4f:26:6c:4a:44:2f:bd:94:26:67:a2:a0:be:0b:
96:6e:b8:e1:d9:ed:b9:67:32:47:5b:1a:0f:0c:1b:d1:d4:64:
22:3b:39:a0:02:01:23:16:84:d1:63:7d:e0:3a:4a:21:7b:64:
ec:f8:1e:1e:d4:aa:b3:c1:b4:ac:6e:b4:4d:25:d7:2a:80:ee:
5f:2a:f8:b0:9d:34:bd:aa:04:91:33:06:bb:3b:e5:87:6d:40:
50:57:1d:63:2e:9c:1c:84:11:90:bc:ec:57:e3:eb:1f:f8:98:
53:c3:f2:43:92:f1:1e:95:4f:63:6b:29:26:6e:82:4f:c9:a1:
5e:6b:f5:55:4e:88:00:18:9a:34:55:bd:2e:b1:72:4c:58:16:
a7:82:1b:ce:c0:57:56:bf:92:3b:1a:69:8d:cb:16:1e:13:3d:
7f:03:c6:7b:79:8b:e7:2d:d2:42:22:b6:2d:16:7a:7d:20:1f:
e6:f3:4e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 05:02:22 2025 by rpki-client