Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
File: AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft (raw, json)
Hash identifier: HcyX8+u1NABlrEJ7rDex9euhwFqYZpjXokdc3mU2st0=
Subject key identifier: 3F:0C:C6:C6:FE:B1:E1:F4:EA:AF:86:00:11:5D:D2:7B:E6:98:CB:35
Authority key identifier: 01:1D:88:24:6A:B5:7E:20:4D:EA:51:E9:24:3C:67:25:2D:CB:A5:85
Certificate issuer: /CN=011d88246ab57e204dea51e9243c67252dcba585
Certificate serial: 019A71B908E1F54B1A3B2FF4300AB16BFA01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
Manifest number: 0B66
Signing time: Tue 11 Nov 2025 07:02:22 +0000
Manifest this update: Tue 11 Nov 2025 07:02:22 +0000
Manifest next update: Wed 12 Nov 2025 07:02:22 +0000
Files and hashes: 1: AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl (hash: jl9boZJJ8LljzYkO4kBQGY/T+4hEh+71sOpV3C/PamQ=)
2: HO4rdY3E48qrjdqnzlEZca_Yebs.roa (hash: kWWt5WfRThziurqE+e5TqB208tDWvrvzVmVg4ZHkDjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:08:e1:f5:4b:1a:3b:2f:f4:30:0a:b1:6b:fa:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=011d88246ab57e204dea51e9243c67252dcba585
Validity
Not Before: Nov 11 07:02:22 2025 GMT
Not After : Nov 12 07:02:22 2025 GMT
Subject: CN=3f0cc6c6feb1e1f4eaaf8600115dd27be698cb35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f9:eb:b5:72:b2:ee:96:5f:4f:c0:25:fc:5f:
4a:d7:61:2e:dc:73:31:76:62:3b:7d:23:b5:b1:10:
35:2a:17:29:e7:0f:12:d2:42:0e:b1:99:2d:1e:1c:
45:75:16:9b:78:63:2b:8e:4f:ce:68:78:f9:b9:cb:
77:c1:60:43:de:2a:9b:9c:45:b4:e8:c3:d6:6d:95:
e0:28:9c:48:85:c9:e2:b9:21:4d:09:27:c2:4b:f1:
6a:15:b9:3d:34:a7:ca:85:81:72:f3:77:eb:18:95:
f0:51:c3:e8:61:31:b4:f6:98:47:34:77:2f:79:3e:
f7:77:6e:71:51:63:ff:d7:77:a4:33:dd:dd:94:1d:
80:ec:d9:a2:ec:a5:ee:ac:9c:ef:1c:37:0f:39:80:
23:3b:b5:52:b7:7d:ce:98:d2:e6:b8:71:a9:f2:fb:
d8:f4:13:c6:6d:bb:ef:2e:7d:47:27:d6:c5:10:c6:
d8:2f:62:8c:32:92:65:fb:af:10:9e:32:15:c8:78:
01:17:1c:23:ac:5b:eb:ff:b6:4f:45:2d:b0:65:bf:
48:b7:bf:86:be:9f:c3:96:d7:ba:b8:db:d7:69:de:
c1:d0:f0:31:ec:a2:b8:59:80:ae:2e:94:d9:a3:f6:
12:06:6b:50:b1:3e:fd:fd:25:3e:c1:21:5f:9b:a1:
57:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0C:C6:C6:FE:B1:E1:F4:EA:AF:86:00:11:5D:D2:7B:E6:98:CB:35
X509v3 Authority Key Identifier:
keyid:01:1D:88:24:6A:B5:7E:20:4D:EA:51:E9:24:3C:67:25:2D:CB:A5:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:8e:72:a9:5c:67:03:81:a2:ee:e8:05:67:c1:bf:a2:e6:6c:
50:69:f4:51:f6:78:33:29:3c:a6:8d:21:75:13:95:d3:7a:fd:
c2:36:01:bd:e4:41:82:de:85:21:06:0b:90:b1:14:a2:95:44:
72:72:08:1f:a8:91:7f:9a:ad:45:c8:ce:a9:4b:93:ce:52:46:
ad:ce:40:34:2a:40:d6:cd:bb:8b:d9:8a:8a:18:c8:a9:6f:fc:
c2:26:20:7f:3c:9d:4b:20:d0:47:74:7a:94:e8:da:e0:b5:f9:
fe:25:e3:9e:9f:41:8a:ee:c7:4a:2c:bb:9f:cc:fd:e2:33:e1:
f7:fc:a9:23:ef:e1:2b:47:2b:53:58:0c:04:41:65:ff:e8:3a:
a0:31:7c:11:0a:b5:b2:75:47:87:e5:a5:c0:2e:6a:8a:c1:35:
b2:41:fa:37:b0:82:06:a7:1e:15:27:ff:a0:67:93:08:f5:06:
62:25:34:fe:1d:ff:78:cd:2a:d1:bc:43:88:e8:29:b2:9b:af:
37:ae:73:87:24:fe:00:7b:bd:7e:e9:59:8b:85:1b:0d:4b:86:
2d:88:5d:30:9d:43:28:55:5f:e2:81:f6:e9:a0:fb:f8:92:d7:
f0:61:cf:d4:91:36:4d:04:99:d5:9a:b5:13:3f:6b:99:83:00:
9c:c8:8e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:32:37 2025 by rpki-client