Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json)
Hash identifier: 0sMKEjDsX+VHOp5p8UoSiHedPfOYBSz3P947PcGmYuQ=
Subject key identifier: 04:74:46:27:B0:F8:93:BF:D1:63:B1:C0:C2:96:D4:77:78:EA:F1:3D
Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Certificate serial: 019A26D4101C4E148EF792994807711CD5B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
Manifest number: 1705
Signing time: Mon 27 Oct 2025 18:00:23 +0000
Manifest this update: Mon 27 Oct 2025 18:00:23 +0000
Manifest next update: Tue 28 Oct 2025 18:00:23 +0000
Files and hashes: 1: 6QBVEiLusjnuHnwecVMK9Kg-WII.roa (hash: OapSvDTUmzDRZu9Q3KlIrLgI0CjCfgxrem8xot5UiSo=)
2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: SxEoSLziarWX8TPn1SosxpC4lvFdrikiX7NWVx19VBA=)
3: GiC40GdnPgHbIqIbDNeP-spJi-M.roa (hash: Xd4LHWf6P2V0nuixtM1f8JXOI9EnPVM3k32pXeFOXiw=)
4: JeT3PicL3j6wpeXRT3s8FrJpy3w.roa (hash: tjXOPJYxlFtc8BfVkznJC0Nu37PcV0Dt33rxJApZ9kY=)
5: L5lOWtMXwmLYho3Arxcpd76R5sw.roa (hash: XM0Za1PmkukhwAWipMkx42usukTFibdWlbabSAWWgH4=)
6: Lwic0o2gw3k82wpfSkPa-wUg5Aw.roa (hash: pZ1a8TMxYqDEEa657nYARi2g7u3tXGj01SXvh3eUl1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 18:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:d4:10:1c:4e:14:8e:f7:92:99:48:07:71:1c:d5:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3
Validity
Not Before: Oct 27 18:00:23 2025 GMT
Not After : Oct 28 18:00:23 2025 GMT
Subject: CN=04744627b0f893bfd163b1c0c296d47778eaf13d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:cd:60:ba:76:60:7f:f8:2e:18:79:17:31:93:
66:56:4e:55:81:6c:e5:a6:9f:95:9d:d3:45:b7:fb:
30:df:63:38:47:50:6a:e1:93:e2:d4:01:34:8c:b0:
e6:b7:83:76:7d:22:62:8d:c6:89:f2:92:6f:76:0b:
0a:29:ed:dd:be:03:92:51:8d:2a:67:ff:9b:d6:ac:
4f:69:f4:7d:ff:f5:48:14:15:2a:37:00:4e:29:c0:
ec:8d:54:d5:c9:fa:f1:ba:ed:61:a8:67:44:3d:bb:
c3:7e:59:7d:ce:7b:3a:33:7f:c5:94:33:be:8c:71:
08:bb:f0:f8:1e:02:fa:80:18:41:1c:8a:fa:2e:1a:
d0:a7:6e:3d:fc:23:16:f9:c2:59:51:dc:20:63:a5:
89:b2:ef:5d:da:d7:a1:44:ee:03:cc:7d:87:95:43:
85:6b:fa:4f:10:ad:ff:ae:27:a1:5a:52:29:64:c9:
f5:90:ad:be:da:bf:92:0c:4d:b4:5c:09:35:0f:de:
d0:f0:1e:5e:c0:c9:1e:2b:26:87:ca:3d:88:18:22:
f8:c1:09:19:90:ad:8a:b0:c0:de:b5:44:d7:04:11:
26:bd:cb:ea:63:99:d7:24:e7:ce:e2:e8:6e:80:6f:
1d:7b:e3:33:21:56:52:19:e0:a7:37:64:a2:48:1f:
a6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:74:46:27:B0:F8:93:BF:D1:63:B1:C0:C2:96:D4:77:78:EA:F1:3D
X509v3 Authority Key Identifier:
keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:07:76:dd:0c:13:01:58:14:1b:4e:e1:b1:a7:98:9d:44:e4:
1a:26:83:bf:38:71:5e:b3:64:16:15:99:6f:cf:10:eb:0f:fe:
50:b1:d5:a3:60:d4:6a:39:ec:2f:ae:33:48:dd:81:ea:fc:7c:
e7:f6:cf:6a:40:3a:15:1a:c3:a3:cb:96:94:3f:f6:46:9f:c8:
bd:61:96:64:07:20:ee:54:6f:4d:83:41:be:c5:3a:bc:b5:87:
6f:f9:76:e4:6a:e5:87:7d:77:32:c5:9f:bd:e1:76:2a:c1:05:
78:46:57:8b:16:31:56:c3:b7:83:c4:d8:6a:c2:83:cf:62:a9:
3b:87:de:a6:25:74:34:a1:90:76:8e:fb:59:37:e3:64:76:b2:
97:7f:22:87:62:63:7e:94:c0:00:00:e3:18:ea:02:fd:19:de:
26:ec:e7:95:57:60:70:05:0d:d0:2d:ee:14:3e:62:f6:fb:c3:
d3:57:1b:04:97:2a:e0:71:a3:0d:26:38:b1:32:56:a2:80:fd:
1c:f0:a0:e3:a6:00:95:e7:68:ac:19:7d:c9:2f:8a:59:fc:4a:
8a:8c:6a:9c:53:04:c1:94:85:ba:e7:89:df:8a:6f:5a:1d:d3:
c9:c1:48:34:c5:98:2e:e1:f4:e3:a3:f4:ad:cf:64:0d:3f:3a:
40:2f:36:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 02:40:07 2025 by rpki-client