Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
File: SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft (raw, json)
Hash identifier: DE7CekYr0M1eLLtrqSYSP6bB63/0Z9n+FKUhIQEVAsA=
Subject key identifier: 2A:1B:C6:F8:B4:3D:54:F5:29:F1:8C:55:D0:4B:D5:D5:5D:FD:7D:14
Authority key identifier: 4A:A2:FA:6F:67:70:F7:2D:80:84:BC:6C:18:30:58:B8:0E:83:8D:73
Certificate issuer: /CN=4aa2fa6f6770f72d8084bc6c183058b80e838d73
Certificate serial: 019A4E18F42295E448169F8C2EF4E71EE5D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
Manifest number: 02EB
Signing time: Tue 04 Nov 2025 09:00:49 +0000
Manifest this update: Tue 04 Nov 2025 09:00:49 +0000
Manifest next update: Wed 05 Nov 2025 09:00:49 +0000
Files and hashes: 1: SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl (hash: 926wo+Q472I1UNFxDQ08EOFsEZTz768cQc8taE76K1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:f4:22:95:e4:48:16:9f:8c:2e:f4:e7:1e:e5:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aa2fa6f6770f72d8084bc6c183058b80e838d73
Validity
Not Before: Nov 4 09:00:49 2025 GMT
Not After : Nov 5 09:00:49 2025 GMT
Subject: CN=2a1bc6f8b43d54f529f18c55d04bd5d55dfd7d14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:29:e2:6f:bb:05:6e:80:6b:dd:11:0d:bf:cf:
c3:0a:2f:65:52:63:1e:11:93:b2:ec:f6:3f:1e:c2:
e3:c3:e2:27:36:6d:91:82:48:ad:4e:10:18:b0:ec:
e7:f4:c5:f8:14:80:20:55:a4:88:5e:2d:d0:a4:d1:
06:0a:f0:a9:91:57:ff:c4:8c:2c:25:dd:0f:2f:46:
32:fb:8d:95:38:3a:db:26:af:98:3c:a9:cc:06:71:
e8:88:1a:da:e6:d6:1c:dc:ff:6c:c1:d6:2d:4e:50:
a8:b8:d7:87:01:0c:c4:3f:77:28:ae:84:49:bc:aa:
71:ef:e3:6d:f0:ed:ca:31:ef:3d:bb:27:0c:96:70:
a3:e7:08:4b:9b:50:18:f6:d6:c2:24:bb:58:72:c5:
17:d9:6a:89:d8:50:ab:d2:76:3c:50:d0:4f:30:3f:
10:cf:18:10:7e:b9:e1:3b:12:6b:8e:7c:b2:0d:fd:
61:c7:6c:c9:ac:17:55:36:a4:3b:11:b0:7c:5e:d6:
43:87:f9:73:01:ee:2a:6b:c6:32:1b:0f:a6:1c:11:
80:46:11:d3:05:21:f1:af:90:a5:b0:84:b1:df:05:
8d:ab:91:b6:f5:6b:85:67:63:cc:bf:03:ba:b2:85:
28:52:e0:ca:f0:82:41:92:29:0c:31:3c:c5:c2:b0:
71:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:1B:C6:F8:B4:3D:54:F5:29:F1:8C:55:D0:4B:D5:D5:5D:FD:7D:14
X509v3 Authority Key Identifier:
keyid:4A:A2:FA:6F:67:70:F7:2D:80:84:BC:6C:18:30:58:B8:0E:83:8D:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SqL6b2dw9y2AhLxsGDBYuA6DjXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/297bd8-beaf-4609-9c60-7474f916db47/1/SqL6b2dw9y2AhLxsGDBYuA6DjXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:4c:5e:c0:c0:36:59:c7:c5:3f:9c:5f:d2:13:3e:5f:0d:c5:
da:75:78:6c:a0:ce:00:0f:63:11:8e:07:ec:f4:e9:c4:ba:04:
32:23:0c:3e:47:f8:98:39:2b:81:ff:35:1e:8a:a4:ce:ee:22:
47:d1:fd:3b:e9:cd:b6:e2:69:23:00:ef:da:6c:d4:a2:b0:c6:
41:15:d8:57:1f:84:bf:ad:e6:04:21:61:f2:83:39:58:34:02:
fa:a7:8d:38:7e:c4:5b:03:bd:ec:3b:4f:93:62:52:a2:8d:b1:
8d:86:46:b6:d4:a0:eb:2e:ab:7b:5d:60:4e:26:d8:5a:1b:b8:
40:94:06:76:2b:aa:d2:b1:c0:c7:59:ca:d3:c4:81:82:26:d5:
e4:b6:00:5b:49:49:e9:50:8c:16:d2:fe:ba:de:0c:ae:29:19:
d7:a4:dc:2e:24:a6:cc:58:3c:93:d9:00:ee:ec:36:12:d0:0c:
45:01:61:cd:ea:1a:59:86:b5:f2:16:73:8a:c1:82:f8:18:14:
2d:12:04:e0:48:90:06:f4:a0:d4:f0:25:6b:f6:62:77:ef:28:
e3:00:ec:17:c7:47:af:1e:f8:c0:2a:62:ac:04:c5:f2:bb:ee:
07:ec:b0:ac:a5:ef:72:5f:da:8b:80:45:61:61:0d:26:f3:12:
ba:83:0c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:16:39 2025 by rpki-client