Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
File: a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft (raw, json)
Hash identifier: Xr/d7sI06/vH7xVim7QGVUuImcrwtU+9bIpqtbdyFHI=
Subject key identifier: A1:A2:72:6C:6A:01:39:28:6E:18:8F:D0:39:29:E0:35:E2:7C:88:F8
Authority key identifier: 6B:EC:4E:29:C6:84:9C:5F:80:84:28:E6:68:58:F4:F0:EC:F4:A6:54
Certificate issuer: /CN=6bec4e29c6849c5f808428e66858f4f0ecf4a654
Certificate serial: 019A52D2813BE8037B7D2CEB07371699FDA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
Manifest number: 0E7C
Signing time: Wed 05 Nov 2025 07:01:58 +0000
Manifest this update: Wed 05 Nov 2025 07:01:58 +0000
Manifest next update: Thu 06 Nov 2025 07:01:58 +0000
Files and hashes: 1: a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl (hash: fwCcy2SeUbvH4UEpoEtMfj2cKSmuNsSDWmDhgNZ6h9s=)
2: y1CXud9r4_KJCPJy5YSEoyYl1eg.roa (hash: kuTX8hxg4+tvv3VjP1J6iCQyHiFE3dinO8w9j6x97BA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d2:81:3b:e8:03:7b:7d:2c:eb:07:37:16:99:fd:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bec4e29c6849c5f808428e66858f4f0ecf4a654
Validity
Not Before: Nov 5 07:01:58 2025 GMT
Not After : Nov 6 07:01:58 2025 GMT
Subject: CN=a1a2726c6a0139286e188fd03929e035e27c88f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d1:fd:eb:10:a5:b7:4a:83:d7:da:49:5c:99:
34:29:52:d5:24:b9:3b:5c:a6:09:de:8d:fc:05:41:
5e:8b:cf:ec:8f:55:a2:d6:8d:32:76:57:f6:7f:9d:
05:ac:3a:12:26:33:66:5f:7b:ac:54:36:24:c2:23:
0b:11:83:45:8b:41:55:96:bd:e8:4f:43:0f:c3:d9:
2b:1e:2d:c1:d3:e0:d8:24:05:fd:06:36:5b:87:f1:
55:2f:79:17:68:64:9b:ce:21:9e:40:30:63:79:16:
da:86:41:26:13:5b:47:77:c8:f1:32:a2:d7:5b:c0:
0d:6e:35:ea:6f:c2:d9:d4:93:9f:36:d3:ca:15:05:
86:c8:66:e6:e7:3a:83:c3:78:b1:87:b6:16:04:28:
3f:3d:c0:28:a9:24:fb:f3:d8:6e:0e:d3:65:1a:cb:
cd:b6:eb:50:d0:27:44:e7:cc:bc:77:3c:1b:25:f2:
97:f1:9a:ff:35:f8:f3:3d:ca:15:f7:96:df:f2:46:
2d:63:71:65:9c:23:a1:cc:2e:a7:b2:11:5d:02:40:
64:6b:df:6d:b8:f5:13:05:b3:6c:fb:32:00:3f:48:
5f:2e:f7:87:19:6e:d2:40:c1:6a:5c:65:0e:be:02:
74:d9:ee:28:a5:45:ef:a5:2c:53:8d:6a:17:9c:94:
e0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A2:72:6C:6A:01:39:28:6E:18:8F:D0:39:29:E0:35:E2:7C:88:F8
X509v3 Authority Key Identifier:
keyid:6B:EC:4E:29:C6:84:9C:5F:80:84:28:E6:68:58:F4:F0:EC:F4:A6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:62:96:73:98:c3:8b:c1:cf:bd:5d:5f:15:54:2e:d1:93:19:
70:9b:54:d9:e5:13:0e:7f:67:ef:d8:04:d5:f3:05:d6:96:ca:
90:ef:d0:6a:af:9f:83:39:e4:d1:d8:f6:5c:08:8a:bd:49:8f:
e9:eb:f3:4b:cf:78:e7:e4:04:ed:b9:44:00:0f:33:25:58:c8:
9e:f6:39:b1:99:46:93:06:69:e3:18:de:ae:82:98:28:ec:f5:
2b:6d:6c:0b:82:5e:93:12:3d:9b:5c:7b:3b:2b:b7:96:ba:60:
b5:81:fc:1a:64:c7:25:b8:24:0d:d9:c7:e8:ee:c7:98:25:da:
d5:b3:89:39:48:4a:00:f4:83:dc:ee:8b:cd:94:f9:52:bf:23:
de:c0:62:a0:d9:f7:7f:ad:13:2a:0b:8a:13:1d:ce:13:fd:59:
c9:4f:89:44:64:de:5d:b0:d1:0e:16:5d:47:a6:ba:cd:4e:a7:
93:0a:84:15:54:73:e1:9f:cf:3f:68:00:62:74:bf:9b:84:f7:
af:6d:18:a4:50:2a:3f:a1:ac:c6:a0:4d:bf:62:98:49:16:7a:
35:46:9c:9a:d0:68:95:df:0f:21:c0:9e:30:ac:fb:68:5d:97:
59:b6:09:c6:2e:2f:a9:f9:6d:91:50:2d:02:d1:e0:5a:f0:04:
43:03:e1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:36:23 2025 by rpki-client