Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
File: Ac8qcbLHv1QcbMBBUc0CB402mSY.mft (raw, json)
Hash identifier: pNllqRs+WWZcacFdaQEXLPLh/Rj5KHlRXdW3EKFvtZw=
Subject key identifier: 3E:6A:D6:58:7B:F7:F5:44:AA:77:24:20:7B:3B:35:26:27:39:25:C7
Authority key identifier: 01:CF:2A:71:B2:C7:BF:54:1C:6C:C0:41:51:CD:02:07:8D:36:99:26
Certificate issuer: /CN=01cf2a71b2c7bf541c6cc04151cd02078d369926
Certificate serial: 019A29672850C9A5627DF97684F95591D4D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
Manifest number: 0400
Signing time: Tue 28 Oct 2025 06:00:17 +0000
Manifest this update: Tue 28 Oct 2025 06:00:17 +0000
Manifest next update: Wed 29 Oct 2025 06:00:17 +0000
Files and hashes: 1: Ac8qcbLHv1QcbMBBUc0CB402mSY.crl (hash: vTztt9lM8a+brNeb3zwuYf/lyG4ELmMHd/4nFAdKSo4=)
2: rygZTFCBNWEkh81f14PWqNNI1kI.roa (hash: Nw/ZIl2uHVeZMov8V5+Nv9xGTV5/WVlGxw5x2u+Et/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:29:67:28:50:c9:a5:62:7d:f9:76:84:f9:55:91:d4:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01cf2a71b2c7bf541c6cc04151cd02078d369926
Validity
Not Before: Oct 28 06:00:17 2025 GMT
Not After : Oct 29 06:00:17 2025 GMT
Subject: CN=3e6ad6587bf7f544aa7724207b3b3526273925c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9b:63:85:79:a3:4c:76:b4:aa:23:34:d3:43:
da:86:73:bc:81:03:5e:6c:28:16:be:e0:25:16:df:
70:9b:bd:f9:ef:43:d8:e0:11:3d:58:ef:d3:79:1c:
10:7a:7c:e6:e0:8c:07:a8:3b:49:00:5f:97:78:6f:
b4:68:97:a5:e2:4f:88:ae:b5:e9:60:90:5f:05:52:
f8:47:53:53:d6:19:47:ca:d1:55:88:5d:fc:bb:65:
50:77:c2:6d:4f:a2:58:93:4c:e5:5a:c2:54:92:b3:
18:2c:93:2a:6f:61:ff:61:7d:35:84:51:6b:99:1a:
6d:83:4a:b5:07:0b:d5:f8:69:84:66:dd:e7:e7:7e:
6f:a6:51:47:92:45:42:6c:e4:6d:e0:7d:f8:82:3e:
84:28:03:29:af:7d:00:0f:41:ba:eb:46:79:60:a5:
29:9e:21:17:17:11:d6:a4:76:36:ba:1c:88:67:96:
35:df:4a:3b:3f:d2:52:f1:c1:4d:ed:04:6d:fa:36:
52:9a:f7:cb:17:5b:28:a5:6e:f3:f2:9c:cc:ed:58:
53:fd:4d:de:98:ec:26:5e:fd:e7:f0:70:71:e1:9c:
8d:ed:2f:96:3a:d7:ae:ef:00:96:9b:f8:d8:33:54:
07:37:72:41:d1:c3:e5:18:6b:ef:10:ac:dc:e1:fd:
91:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:6A:D6:58:7B:F7:F5:44:AA:77:24:20:7B:3B:35:26:27:39:25:C7
X509v3 Authority Key Identifier:
keyid:01:CF:2A:71:B2:C7:BF:54:1C:6C:C0:41:51:CD:02:07:8D:36:99:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:84:a8:6b:48:7c:1e:58:e4:de:d3:94:70:06:b8:fc:0e:6e:
8e:36:44:e0:13:c9:06:fe:a9:16:5c:79:f5:0b:53:c0:b7:a8:
ba:65:52:bc:fe:0c:4e:6f:e8:de:2e:92:26:00:df:01:96:4f:
f8:c8:e5:e0:5b:b6:e7:13:46:e9:b0:5a:70:7a:dd:d2:05:e2:
e9:f3:5b:a3:9d:d6:8b:31:6f:8f:31:0e:d0:1c:6c:d3:23:ee:
dd:15:66:76:a5:66:82:01:f0:37:db:2f:61:5e:0b:6f:8c:5c:
b8:8f:fd:a0:83:28:1f:b8:66:1d:39:1a:f0:e7:38:9e:5b:1f:
58:72:03:04:60:13:f7:c0:ce:08:97:a8:58:2b:21:58:61:59:
ce:20:cb:39:27:18:cb:03:92:7a:fa:65:a5:3e:a5:ec:75:ef:
33:3b:33:4e:d1:e3:ac:a8:14:86:91:02:ad:f0:a4:ed:e6:e8:
6b:2c:5f:26:be:cc:1a:43:4d:19:ec:ff:f6:5d:6f:f9:a0:c3:
b7:a7:2d:bb:e6:08:e1:1c:ef:a7:5e:c6:7a:cc:55:a7:e2:e7:
42:31:40:76:31:69:9e:c7:cb:1b:86:dd:cb:ac:9c:2c:50:b8:
a0:83:aa:40:c2:93:5c:9e:a1:7a:86:2e:a2:27:db:ef:8f:a8:
68:4a:2b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 11:40:56 2025 by rpki-client