Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
File: a1zOqpdLKQWssmKvRSwCKAMWqrs.mft (raw, json)
Hash identifier: na7/OcUj8s+SkEDY1QYBt5y8KIgy/RcTShHphT/Bea0=
Subject key identifier: 2B:62:98:E9:09:F7:2A:ED:93:86:E3:42:9C:28:3A:9A:1B:98:2F:0A
Authority key identifier: 6B:5C:CE:AA:97:4B:29:05:AC:B2:62:AF:45:2C:02:28:03:16:AA:BB
Certificate issuer: /CN=6b5cceaa974b2905acb262af452c02280316aabb
Certificate serial: 019A2553EAE6EB2249C60C0CF6E6241EC7F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
Manifest number: 0635
Signing time: Mon 27 Oct 2025 11:00:47 +0000
Manifest this update: Mon 27 Oct 2025 11:00:47 +0000
Manifest next update: Tue 28 Oct 2025 11:00:47 +0000
Files and hashes: 1: a1zOqpdLKQWssmKvRSwCKAMWqrs.crl (hash: 6MSGuDzMvqAShsBl9bDhz2IqX2q/CEwbD1QzEasEzPw=)
2: bItIvz4oTSzEDWqrAWUpQQfUMhI.roa (hash: F1ATAeaXzdv7TC8vaBAXGNSvaND60c6EFcHFAEWNuFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 11:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:53:ea:e6:eb:22:49:c6:0c:0c:f6:e6:24:1e:c7:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5cceaa974b2905acb262af452c02280316aabb
Validity
Not Before: Oct 27 11:00:47 2025 GMT
Not After : Oct 28 11:00:47 2025 GMT
Subject: CN=2b6298e909f72aed9386e3429c283a9a1b982f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0e:6d:25:c0:b0:c2:1c:90:09:00:8d:58:cb:
9a:3d:27:da:40:24:5d:78:44:6c:50:38:93:2d:a5:
fb:80:f9:b6:83:84:7f:9f:53:06:01:f0:3b:0f:e0:
5b:92:c5:ab:80:21:ca:aa:34:70:b5:0c:d0:23:e6:
33:7c:e5:98:5b:5c:1c:3b:d0:c8:36:65:3b:26:91:
03:02:64:c9:ed:f3:83:43:1a:f6:08:89:a2:cd:83:
ab:3e:2b:dc:57:68:2f:53:d9:04:ab:3b:40:5b:24:
6c:c3:34:85:18:55:7f:77:e6:3b:e1:da:55:5a:34:
16:9c:b1:82:64:0e:33:ae:47:5c:72:e2:23:0b:c6:
e9:0d:a4:21:44:62:ab:2e:6a:bc:9c:8b:c9:c0:43:
0f:db:13:66:07:30:82:12:ec:53:58:1d:74:c7:18:
06:a2:52:50:7a:8c:34:fe:ae:33:3a:22:d6:f0:28:
e9:17:c8:ee:41:65:f7:ca:8e:34:60:e0:2e:5d:48:
71:11:8f:d5:8b:8e:fc:e2:48:4b:bd:e3:c7:67:52:
4c:d6:19:7e:6b:a3:30:cc:56:d8:9c:55:e8:c7:9c:
e4:f5:1f:d7:a8:01:c1:6f:84:45:b8:86:f0:da:5a:
f1:26:92:cb:f5:61:47:3e:93:fb:b0:1a:ff:77:c1:
d3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:62:98:E9:09:F7:2A:ED:93:86:E3:42:9C:28:3A:9A:1B:98:2F:0A
X509v3 Authority Key Identifier:
keyid:6B:5C:CE:AA:97:4B:29:05:AC:B2:62:AF:45:2C:02:28:03:16:AA:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:7b:b4:28:d3:93:7e:ce:eb:32:cb:1a:5c:df:4d:32:c1:0f:
92:a1:e1:bd:81:0f:9d:8f:62:5c:8d:65:c9:df:a8:88:83:01:
57:65:73:02:dd:6b:62:c1:09:29:c3:4c:83:49:ab:b0:cf:59:
66:3a:03:df:04:b1:1f:78:51:cf:f6:7e:df:ca:3b:36:5c:a5:
d7:06:76:85:b4:42:0c:a3:81:00:07:84:d4:41:3a:f8:1a:e1:
56:69:82:cb:a8:e0:00:be:36:23:92:1d:8f:6d:a8:6c:a8:7b:
0a:69:43:ae:6e:cc:4b:bf:15:f9:3b:6d:72:82:24:2f:8c:54:
5e:d0:ef:a9:f3:da:8a:60:07:20:c0:6e:25:fd:9f:d5:16:50:
3f:cc:5f:4d:41:18:d3:07:c4:4f:14:5c:4d:28:46:9e:9f:ce:
c3:1c:72:26:10:c6:87:89:c5:21:8f:d0:40:b6:97:06:2d:ff:
26:06:51:5e:ec:c5:85:34:c5:de:ed:09:dc:73:31:12:01:f1:
0c:39:eb:20:d6:14:2d:8c:c2:25:22:58:d3:89:33:ac:a0:3e:
8d:bc:4c:58:ee:34:d7:06:c7:2e:0b:20:b0:22:dd:66:63:ef:
06:29:47:f6:dc:8d:42:47:bd:dd:f1:2c:e5:65:3a:2a:6a:e3:
5d:b9:7e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 17:03:03 2025 by rpki-client