Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
File: afY2pbazoordg_l0Rtewg7lMPa4.mft (raw, json)
Hash identifier: IQUCw+x3491d7R0cznttDCnKLHIRt8YRq9Op15aPR4k=
Subject key identifier: CE:94:A5:A6:90:2E:56:73:04:1A:77:C7:C8:AA:02:FA:C0:75:98:61
Authority key identifier: 69:F6:36:A5:B6:B3:A2:8A:DD:83:F9:74:46:D7:B0:83:B9:4C:3D:AE
Certificate issuer: /CN=69f636a5b6b3a28add83f97446d7b083b94c3dae
Certificate serial: 019A7149EB67370A3592678D96D8E325327E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
Manifest number: 06EE
Signing time: Tue 11 Nov 2025 05:01:01 +0000
Manifest this update: Tue 11 Nov 2025 05:01:01 +0000
Manifest next update: Wed 12 Nov 2025 05:01:01 +0000
Files and hashes: 1: Uq41S_TL-4cdbHQOXq-81k1Y6B0.roa (hash: imvcawPVkLTN2rqi9GrM6dLepGLRmW6IgQsJl3oa4vo=)
2: afY2pbazoordg_l0Rtewg7lMPa4.crl (hash: DtiGizwXNTxGioO8qp6Nj1ZbdgaHDPrYjRc1wkZyYvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:eb:67:37:0a:35:92:67:8d:96:d8:e3:25:32:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f636a5b6b3a28add83f97446d7b083b94c3dae
Validity
Not Before: Nov 11 05:01:01 2025 GMT
Not After : Nov 12 05:01:01 2025 GMT
Subject: CN=ce94a5a6902e5673041a77c7c8aa02fac0759861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:be:5d:22:d0:c3:77:96:52:4f:f3:fb:e9:9e:
d4:3c:8e:31:14:2a:59:de:5b:9c:89:32:60:19:d1:
2f:dd:64:93:7f:5a:9c:4a:2e:b2:6d:7e:47:b3:47:
70:f1:be:f1:8c:d4:11:d3:a4:e1:dc:b5:df:68:e5:
34:4a:fc:3d:46:78:fb:0b:d7:2d:05:9a:11:34:83:
88:06:11:45:46:14:02:96:92:ff:3a:b0:f7:13:a2:
1e:8f:87:62:d1:6a:f5:bf:c0:16:2b:b0:b1:69:29:
a4:8f:f3:69:63:b2:17:c6:c8:b3:c8:9b:44:2e:63:
30:1f:da:7b:32:b9:ac:5c:8a:8f:ae:32:45:f5:67:
a9:5e:ce:db:7c:6c:2a:66:af:71:50:65:1e:3e:28:
29:11:08:ea:93:00:3d:5a:88:48:2a:04:81:cf:18:
a9:c2:3e:c3:dc:e2:4e:e0:91:b0:71:3d:a5:07:03:
b9:1e:65:a7:a2:72:02:bb:9a:41:cc:ab:cf:d3:8e:
02:d5:b6:52:ac:bf:f4:77:42:73:1f:52:42:ca:00:
df:40:02:66:46:4f:ba:59:fd:ae:5a:9e:27:39:04:
df:a3:05:7f:c0:a1:1d:a1:34:48:3f:c0:04:1f:5d:
b5:3f:7a:2a:be:39:a5:8b:25:63:c5:05:6c:75:ff:
2f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:94:A5:A6:90:2E:56:73:04:1A:77:C7:C8:AA:02:FA:C0:75:98:61
X509v3 Authority Key Identifier:
keyid:69:F6:36:A5:B6:B3:A2:8A:DD:83:F9:74:46:D7:B0:83:B9:4C:3D:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afY2pbazoordg_l0Rtewg7lMPa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/e99954-c00f-4014-8e71-8aee2bf89b91/1/afY2pbazoordg_l0Rtewg7lMPa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:3d:81:18:50:d8:63:0b:b1:c6:74:10:16:1b:7a:46:46:5a:
f7:e6:b1:c3:db:76:4a:86:bb:88:44:a8:57:37:02:c3:a2:04:
a5:40:4b:a2:67:33:7f:f8:71:5f:9a:d3:c1:1e:eb:46:f3:b6:
bf:51:bc:71:fc:ef:91:e0:9e:60:5c:d4:7e:11:75:5e:5a:db:
67:de:cc:8e:e9:57:76:91:15:55:1f:27:bd:ed:39:5e:4a:c0:
15:9c:33:38:0d:e2:f2:49:6e:c3:36:86:a9:9b:04:c1:18:e2:
d4:0f:80:94:6c:fd:86:48:40:06:ab:0b:38:11:d9:7e:f6:e0:
26:55:59:b9:01:83:97:d0:bd:9b:81:a0:c3:86:a1:f0:53:f6:
9d:83:38:a9:24:d8:0a:13:71:8c:52:83:31:45:99:17:b2:d4:
0d:57:cd:13:ac:e5:cc:b4:01:1d:6c:d6:22:09:61:5c:d3:db:
9f:23:64:69:0f:62:a5:81:ca:a9:c8:08:83:ad:9d:ae:b6:1d:
98:35:b0:78:57:d9:0b:66:4d:1a:8a:d6:33:0e:ca:97:ce:5c:
f4:ff:6e:f5:ee:8b:cf:38:01:68:3c:78:e2:f8:4f:bb:db:51:
2f:7b:61:6c:7a:a7:c0:69:9e:78:14:28:09:ff:b5:2a:e9:91:
85:d6:c0:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:32 2025 by rpki-client