Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
File: 1a8gwCbeEE2W8XrLr054fvnTAgY.mft (raw, json)
Hash identifier: 47sskufg1bXo1AmqPrutgFV902rQkkRTPaGmj4ljYYA=
Subject key identifier: 4F:21:93:0F:2B:48:AE:BD:A6:7A:6D:29:9B:F0:1F:20:BF:F9:8F:0E
Authority key identifier: D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
Certificate issuer: /CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Certificate serial: 019A1D9A3490BD76F00873BB9644AE15ADEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
Manifest number: 0B32
Signing time: Sat 25 Oct 2025 23:00:36 +0000
Manifest this update: Sat 25 Oct 2025 23:00:36 +0000
Manifest next update: Sun 26 Oct 2025 23:00:36 +0000
Files and hashes: 1: 1a8gwCbeEE2W8XrLr054fvnTAgY.crl (hash: 4TtJhXs0Bcl9Hude8CmvED9bLAL6GFuWMXQBBaIkZ6Q=)
2: ZntZKX2L_8Ma0koJ3HPW10lURHI.roa (hash: OJbq7vowsXJwKs2XlYdhIC+ZaJvxn8OPWmKWbar3xew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:9a:34:90:bd:76:f0:08:73:bb:96:44:ae:15:ad:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Validity
Not Before: Oct 25 23:00:36 2025 GMT
Not After : Oct 26 23:00:36 2025 GMT
Subject: CN=4f21930f2b48aebda67a6d299bf01f20bff98f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:22:f1:fd:2a:79:dd:1f:49:31:19:f3:d0:08:
22:ac:bf:40:8b:55:56:fa:b3:06:ab:1f:42:51:79:
af:17:59:99:fe:a6:38:a9:db:1c:18:2a:46:88:32:
66:ae:fd:b7:00:81:be:05:8c:0c:52:f0:9e:9b:22:
bb:72:18:56:16:d3:b3:66:aa:4f:2a:b6:dd:e5:59:
35:39:38:35:93:8b:5e:1b:8c:8b:28:65:01:ec:28:
18:a4:9e:da:0f:d3:e0:3c:18:3d:11:d6:af:6b:2d:
68:6f:08:e5:e4:ec:aa:72:f7:c4:b5:a8:8c:96:6c:
13:35:50:2f:21:62:12:55:20:a8:85:5d:42:d1:22:
1e:98:15:6a:89:79:a5:73:c1:9b:87:5d:79:07:65:
35:7e:0a:b3:06:4a:d6:78:da:2c:c9:20:82:01:73:
f8:94:73:98:f3:fa:32:8b:28:13:dc:74:d3:97:86:
e1:5a:c0:c1:be:6d:9d:d8:fe:cd:6e:1f:e0:8c:c4:
b3:c2:9f:e6:25:44:31:4d:56:2a:97:96:e1:19:74:
c1:ba:af:ec:b8:59:9b:45:eb:68:b0:c7:5c:c8:73:
ac:9d:11:1c:67:d2:54:ac:36:88:91:bc:7e:c1:47:
c5:47:9e:28:3c:a4:6f:e2:64:4b:e2:87:bd:67:58:
1d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:21:93:0F:2B:48:AE:BD:A6:7A:6D:29:9B:F0:1F:20:BF:F9:8F:0E
X509v3 Authority Key Identifier:
keyid:D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:75:bb:2a:5b:7f:b3:ef:5d:7a:dc:34:4c:ab:6f:86:76:52:
4d:2e:48:2d:e6:df:7d:53:bb:d9:2d:09:bd:21:65:e3:9e:09:
4e:50:3c:f2:e0:59:96:51:eb:ec:09:6f:44:e2:69:02:30:ca:
bd:97:34:2f:1f:13:df:6b:12:b7:57:36:6f:91:52:93:f3:6c:
fa:67:91:8f:99:f6:c0:74:01:3e:e9:72:b9:6e:15:3b:5f:92:
34:c5:05:d0:6d:e3:ec:84:9c:6e:8a:3e:72:7b:ef:ef:87:e3:
f1:ae:51:03:63:5d:ea:cb:44:77:33:d3:d1:69:0c:72:c3:65:
02:03:95:54:ad:36:30:15:a6:21:2d:df:f9:18:e9:b3:2f:d5:
14:e0:4d:02:98:12:3f:84:f9:57:e6:0a:86:26:f0:92:9d:d2:
10:8d:c0:3f:54:13:05:2c:28:54:b0:fd:8b:a3:fb:eb:18:40:
68:b2:28:35:44:d8:a7:07:6a:97:eb:3e:9b:be:e9:ff:c0:f1:
7d:8d:a4:4c:a8:02:88:42:3f:87:4f:66:36:bf:88:82:1c:6d:
c4:44:25:24:1e:c1:51:e5:ee:4f:94:a9:7d:c1:ed:a6:3c:6c:
62:46:f4:53:d0:03:ad:2e:e6:06:e6:d1:42:db:d6:9e:af:37:
b4:86:be:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 02:59:35 2025 by rpki-client