Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
File: afAHCvh31rmGswe5vATvGcRAQz0.mft (raw, json)
Hash identifier: IBPDzTWhCtl6HGLzDwKs+h6gL20U2hwZDJBLowO8/wk=
Subject key identifier: E0:D6:AE:E8:08:98:F7:5E:43:08:89:39:E8:AA:82:82:B7:3E:FD:EF
Authority key identifier: 69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
Certificate issuer: /CN=69f0070af877d6b986b307b9bc04ef19c440433d
Certificate serial: 019A228A5D59166FB27C06432E3F233D72C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
Manifest number: 092A
Signing time: Sun 26 Oct 2025 22:01:24 +0000
Manifest this update: Sun 26 Oct 2025 22:01:24 +0000
Manifest next update: Mon 27 Oct 2025 22:01:24 +0000
Files and hashes: 1: 5m0E4hrlymj_oPq4RutDZTBvpFc.roa (hash: D3u2GpmWvvHTn4HOSLwFPi92ntWCyeD4rYP1qp5He0g=)
2: afAHCvh31rmGswe5vATvGcRAQz0.crl (hash: B/fPsG453bMcZyVmzBpmoqGfOgVaPl8ex5k5vIy9GRk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:8a:5d:59:16:6f:b2:7c:06:43:2e:3f:23:3d:72:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f0070af877d6b986b307b9bc04ef19c440433d
Validity
Not Before: Oct 26 22:01:24 2025 GMT
Not After : Oct 27 22:01:24 2025 GMT
Subject: CN=e0d6aee80898f75e43088939e8aa8282b73efdef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bd:33:89:eb:25:6c:53:ec:b6:7a:14:fb:76:
7a:da:cf:5f:f1:33:af:44:db:ff:70:a9:f7:f2:76:
d4:1b:2d:d0:f2:bc:c2:9c:81:56:8a:37:59:61:0e:
b6:d6:9c:b1:60:5b:31:af:de:8d:a7:d5:05:80:76:
c0:e9:76:06:5f:2f:66:77:13:de:c2:1d:e7:98:d9:
5d:c1:91:0c:89:0b:28:18:5c:93:fd:a2:bb:4f:42:
b3:12:c4:3a:34:bb:e2:69:be:fc:dc:eb:36:53:db:
6c:f0:79:11:d6:5e:43:a0:f7:44:21:82:fd:78:4d:
15:94:f2:30:2c:1d:39:9d:ad:ec:55:11:b8:42:8d:
97:d9:2a:77:4a:83:da:bf:ad:2d:2c:b7:11:c2:f0:
7b:14:f9:d3:ad:82:40:6e:a9:44:ee:19:a6:04:b1:
81:c8:fb:3c:31:0c:25:af:33:81:b2:b1:8d:c0:74:
d2:08:a6:f4:6f:36:d6:3a:56:b6:16:d3:5d:d4:02:
c7:81:be:16:8e:51:65:4f:03:85:21:24:9e:b2:ed:
95:e0:24:d0:73:19:03:25:65:9b:27:9d:f3:50:21:
d7:50:a9:e8:1d:fa:9f:c7:c2:13:86:59:0c:95:5a:
d2:1e:ae:a7:6a:56:b5:25:01:53:4b:43:88:a8:0d:
3c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D6:AE:E8:08:98:F7:5E:43:08:89:39:E8:AA:82:82:B7:3E:FD:EF
X509v3 Authority Key Identifier:
keyid:69:F0:07:0A:F8:77:D6:B9:86:B3:07:B9:BC:04:EF:19:C4:40:43:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afAHCvh31rmGswe5vATvGcRAQz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ab9fa6-a906-4ac4-ac0c-6389220b26c6/1/afAHCvh31rmGswe5vATvGcRAQz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:28:da:85:18:da:16:67:4d:5e:31:c8:24:60:d2:47:ad:fe:
1a:c0:64:79:8e:11:9a:e5:3b:ea:e7:b5:b8:dc:b7:9c:05:a9:
7b:ab:47:b0:c3:34:22:87:a0:93:e2:d3:8e:1e:e6:71:eb:d1:
c7:81:1a:de:3c:43:f0:74:63:8a:ff:37:62:29:91:a9:d1:6d:
4e:6b:80:46:09:b7:3c:60:bc:99:82:ac:c1:01:5c:06:93:45:
a5:e3:fc:d9:af:ab:ad:b0:e2:e1:d3:b0:59:00:6e:6a:6a:16:
6b:25:be:1e:3d:95:3d:a7:e3:a1:f0:f4:0d:0f:7a:e7:97:11:
f4:f4:4f:a6:c3:dc:12:e7:87:5f:a2:df:9f:81:a1:1a:eb:99:
bb:cb:af:e5:b2:43:e8:45:68:f5:78:28:6b:97:02:8a:b8:ee:
93:64:1a:6b:e4:1b:c5:cd:58:a1:15:18:67:14:00:b4:df:e8:
74:ec:99:a5:c9:2f:33:5b:6c:9e:4f:d0:d7:a1:b3:9f:6f:c7:
39:91:2c:49:1a:76:51:5b:51:f2:cd:51:28:db:04:a2:f4:73:
db:26:7a:b2:53:01:46:13:c9:74:e5:25:8c:84:f1:30:2d:48:
3e:3f:bf:2c:d8:41:07:17:97:04:8d:a7:2e:09:b2:5d:17:c7:
0c:3b:0b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:31:55 2025 by rpki-client