Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File: A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier: Re9AJoplWnthZzCc3pq0VO/NYUsLHCgxWzeNIkyOFwg=
Subject key identifier: 36:6C:6E:8A:64:5A:93:75:9E:66:1C:12:FC:8C:03:86:00:9E:91:FA
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer: /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial: 019A4EF4C5D6EE564D97F8E96F01B6267122
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number: 139D
Signing time: Tue 04 Nov 2025 13:00:55 +0000
Manifest this update: Tue 04 Nov 2025 13:00:55 +0000
Manifest next update: Wed 05 Nov 2025 13:00:55 +0000
Files and hashes: 1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: FAx92Y8vZNptTAyBSuuWMn7KbvkT/DuMA5SOGZlyL0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:c5:d6:ee:56:4d:97:f8:e9:6f:01:b6:26:71:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=036847b297235faf071686fed2c1e910bf600486
Validity
Not Before: Nov 4 13:00:55 2025 GMT
Not After : Nov 5 13:00:55 2025 GMT
Subject: CN=366c6e8a645a93759e661c12fc8c0386009e91fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f2:49:e7:7d:3c:e1:da:a1:ed:a7:9d:23:11:
a0:24:95:25:ca:8d:0e:f0:3d:0b:cf:e4:c5:3c:06:
f2:11:1f:43:44:e4:ff:da:15:d0:8f:ba:ac:f5:c9:
81:72:fb:98:2b:da:35:24:d3:5e:e9:5c:d4:fe:ce:
82:cb:49:2f:d8:43:05:d2:c3:c2:b7:fe:14:85:92:
6b:92:19:1c:b8:7a:a7:cc:8c:dc:64:80:23:7e:24:
ac:c0:3f:dc:6a:8a:45:80:ee:41:b6:43:48:46:6f:
bc:4a:e1:2e:35:d8:ab:41:26:d2:8f:cd:af:af:be:
99:01:39:c5:47:de:c8:c5:a0:4a:4b:44:84:c5:1b:
d7:52:37:da:c4:9c:89:22:f8:53:f8:b0:62:f2:27:
83:cd:72:bb:06:b4:cb:3f:20:0e:20:28:a6:31:e2:
ce:a6:80:3f:c0:60:e2:b5:26:a1:c1:b1:88:a5:a1:
7a:22:1a:ae:83:7c:79:05:c3:c5:e8:9c:95:d1:61:
fe:55:e4:fe:e4:f1:b9:ea:6a:9c:fd:f9:1e:5b:8c:
bb:14:e2:16:a5:d8:f8:a1:2b:2b:64:fa:d2:2c:5e:
a2:71:44:36:ae:3b:3d:17:5f:3e:8a:45:b5:f3:c9:
fa:ad:04:6a:3e:e5:29:14:18:3d:28:22:9b:28:88:
f6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:6C:6E:8A:64:5A:93:75:9E:66:1C:12:FC:8C:03:86:00:9E:91:FA
X509v3 Authority Key Identifier:
keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:2f:79:a5:57:c7:4d:bb:2a:90:fc:16:b1:80:a4:d1:81:18:
b7:b4:df:a5:b9:cf:49:44:62:02:15:05:aa:c4:45:7a:69:27:
b9:29:a1:a5:bc:21:4d:f1:2d:c5:40:fc:27:c9:16:cf:01:8f:
e7:4c:92:a0:94:0f:fc:4d:9a:1d:a2:a9:6f:65:6d:44:ad:b3:
b9:f9:96:7a:22:3b:e9:02:8f:95:12:36:42:d5:01:31:cc:4e:
4b:7e:4f:0a:26:c9:13:e0:d3:5c:01:69:a9:45:35:b4:ec:fc:
23:fe:95:46:ad:de:24:0c:4d:ee:9f:a1:c8:bf:b7:29:71:02:
5b:9f:1c:aa:c0:12:b3:78:85:6b:0c:d6:7c:4f:db:2e:d4:37:
cf:8d:d7:03:2b:4b:3e:80:95:c0:5e:3d:84:c5:50:39:f4:20:
4e:f1:f4:fd:a2:3c:c8:57:68:06:01:81:07:21:16:f0:7a:c0:
2a:02:5a:df:33:df:18:7e:1a:43:d6:07:78:a4:3e:73:c9:ac:
d7:5f:ec:5b:4e:dd:11:37:ab:f4:2b:50:d1:16:db:80:ca:38:
94:5c:b4:7f:c1:e8:bc:4f:6d:6b:d0:d7:08:4d:71:6b:94:b0:
f8:6f:14:91:f0:19:f6:bf:0d:dd:f4:cc:72:55:eb:35:04:5a:
49:40:04:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:42:53 2025 by rpki-client