Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json)
Hash identifier: 6QtiWqrr5t5j5Yfx0Mc/eu58O5Ng5FrQTH0yks4znuM=
Subject key identifier: FF:07:99:7F:5C:6C:6A:51:36:77:60:29:83:CF:BC:10:DD:D1:26:8C
Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Certificate serial: 019A239C29EFF05AD057AB956D29C7C98B5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
Manifest number: 0868
Signing time: Mon 27 Oct 2025 03:00:28 +0000
Manifest this update: Mon 27 Oct 2025 03:00:28 +0000
Manifest next update: Tue 28 Oct 2025 03:00:28 +0000
Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=)
2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: qHTq7vQq00by5D+i3UIPRtAgRfzKkP99/SdVUYfb/z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:9c:29:ef:f0:5a:d0:57:ab:95:6d:29:c7:c9:8b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c
Validity
Not Before: Oct 27 03:00:28 2025 GMT
Not After : Oct 28 03:00:28 2025 GMT
Subject: CN=ff07997f5c6c6a513677602983cfbc10ddd1268c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8f:59:97:09:61:ab:4e:99:a2:c3:a4:27:bb:
1e:3a:3a:7b:39:8a:43:58:d8:b6:4f:22:2d:0e:5a:
76:00:d0:db:0a:ed:c4:85:97:82:72:9a:9e:e9:2b:
89:91:18:1e:e3:f0:79:d2:d6:1d:a6:6b:0f:86:4b:
b4:86:6d:34:e0:c2:5c:dc:a8:97:62:28:ac:e8:69:
06:b9:28:e9:bd:3c:b3:90:1a:6d:93:c9:1c:db:23:
dd:7b:71:06:08:6b:46:cd:1e:49:ef:8c:77:40:06:
a5:8b:8b:23:b7:51:fe:10:47:5d:63:51:d1:ef:9f:
27:2b:36:15:7c:bf:d5:65:05:ad:a5:48:63:9d:07:
67:ba:43:ca:85:c2:32:75:46:85:b8:a7:2b:9e:28:
0f:cd:1c:3c:b8:6e:52:79:e0:4e:24:94:3e:ac:9d:
cc:68:ea:35:a6:d3:25:cd:2d:d4:35:0e:9e:db:2f:
ec:e5:3b:37:5e:da:98:d0:fc:a3:e7:d6:d2:db:26:
1b:96:71:82:9e:01:d0:4a:f9:3d:96:6a:c8:58:80:
2c:3a:c3:21:52:e0:44:bc:0e:50:79:bc:c2:70:f5:
e7:e8:9f:91:c5:02:e3:ec:b4:39:01:15:1a:57:49:
07:a0:2c:6a:32:d0:96:2f:0d:d9:80:f6:12:53:cd:
5c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:07:99:7F:5C:6C:6A:51:36:77:60:29:83:CF:BC:10:DD:D1:26:8C
X509v3 Authority Key Identifier:
keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:be:8e:42:52:52:08:c8:26:ca:14:b9:0d:a3:ab:8b:a9:d8:
83:10:86:51:6f:87:52:91:ab:fa:c9:f9:6f:9d:db:25:d0:6c:
6f:1e:38:9d:3a:50:9c:e1:f9:47:3d:f7:4d:af:a2:d3:9a:0f:
49:4f:d8:ae:c5:9d:e0:db:94:7c:6b:e4:0e:c1:f7:da:53:ec:
5a:d5:18:a1:36:34:ed:e9:7e:19:d0:e7:47:36:a7:e1:8a:fd:
0a:42:b1:76:27:0b:a1:89:5a:a9:e5:bb:3c:b5:8b:b0:81:b2:
40:39:69:d3:65:c0:27:73:28:5a:5c:52:40:ea:1b:6b:88:61:
4a:9a:6b:eb:e4:18:f5:69:cf:20:df:d0:2a:79:f7:90:26:e4:
98:d3:41:91:d3:11:02:3f:88:64:4b:d8:96:a2:00:0b:22:fa:
f7:a6:ea:8a:98:c4:31:6b:2a:66:cd:ae:13:57:26:df:de:ba:
03:14:ba:e6:82:cb:54:5c:e0:c3:c5:65:39:16:ef:9f:c9:f3:
5f:b6:53:f6:03:15:15:e4:00:ef:6c:e9:08:71:ff:5f:6f:78:
5e:21:84:d0:03:93:7e:58:17:90:23:b6:a1:5a:fe:4b:d2:99:
c5:5d:ed:25:25:13:bc:65:fb:95:b2:15:28:7d:15:dd:50:e5:
18:8a:9b:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 09:22:53 2025 by rpki-client