Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.mft
File: aBnbgbSauhKxgQyzopnu5GMt1yA.mft (raw, json)
Hash identifier: JHGRKncXfkGSWlxcnZXgKzeN8p92bLuaqPBlFbrAKWQ=
Subject key identifier: DF:08:6C:A6:95:7F:7F:76:B1:77:C2:72:E4:B0:7D:C5:96:64:A9:1F
Authority key identifier: 68:19:DB:81:B4:9A:BA:12:B1:81:0C:B3:A2:99:EE:E4:63:2D:D7:20
Certificate issuer: /CN=6819db81b49aba12b1810cb3a299eee4632dd720
Certificate serial: 019A51504F2500E2F10C148FDA0C864E2F9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBnbgbSauhKxgQyzopnu5GMt1yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.mft
Manifest number: 02DE
Signing time: Wed 05 Nov 2025 00:00:08 +0000
Manifest this update: Wed 05 Nov 2025 00:00:08 +0000
Manifest next update: Thu 06 Nov 2025 00:00:08 +0000
Files and hashes: 1: EUMDV_UDCQxt2Q9g7Ql8VQtC-w4.roa (hash: 4NT4MxUUdEci/yqv7me2MCFqkfGu8GvZgQ5eOHEJEB0=)
2: aBnbgbSauhKxgQyzopnu5GMt1yA.crl (hash: ix4Kz5ehMMFl5My0edzNygOPXOfppofVOUr1Pcyc1oo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBnbgbSauhKxgQyzopnu5GMt1yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:4f:25:00:e2:f1:0c:14:8f:da:0c:86:4e:2f:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6819db81b49aba12b1810cb3a299eee4632dd720
Validity
Not Before: Nov 5 00:00:08 2025 GMT
Not After : Nov 6 00:00:08 2025 GMT
Subject: CN=df086ca6957f7f76b177c272e4b07dc59664a91f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f8:5f:8e:b0:19:aa:12:5a:53:6a:0d:b9:54:
ef:30:e3:0f:4b:3f:53:08:d3:5d:1c:a6:85:54:57:
74:57:61:e2:11:13:f5:da:53:d6:e3:a2:d9:6e:ce:
be:39:fc:9b:cd:33:23:06:44:1e:e8:ad:6e:9a:11:
67:e7:b4:58:da:44:5d:b8:1e:04:b6:38:63:1b:62:
76:3f:a9:b3:ba:b4:70:f9:bd:2f:87:dc:20:a4:d2:
6c:8f:4a:e4:42:ae:e2:16:b8:6d:da:ea:11:e7:31:
c6:45:14:a0:a1:81:db:cf:83:7e:15:1d:61:d0:50:
fd:ee:30:df:80:86:47:d3:20:dc:6c:2d:39:1f:21:
1f:e5:15:e1:d2:e0:eb:3f:a7:28:0a:43:e1:f2:a4:
5c:49:e7:8f:cb:2e:14:93:17:f1:fa:db:f1:56:55:
e2:c2:81:ad:85:60:27:3d:5e:8d:fc:8a:d4:19:2e:
e1:4a:ce:4d:c8:64:fb:9a:34:a8:54:41:c7:9b:75:
50:6b:b3:4f:50:ee:2b:48:5c:f9:7c:e2:41:9b:2e:
e7:5c:26:4f:34:05:0e:2c:5c:58:6e:d8:f0:d6:74:
a9:a9:52:31:a9:fe:62:2e:c6:30:9c:99:b3:cb:81:
44:4b:6b:a9:f0:f0:00:78:7c:89:64:2a:c8:c3:27:
25:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:08:6C:A6:95:7F:7F:76:B1:77:C2:72:E4:B0:7D:C5:96:64:A9:1F
X509v3 Authority Key Identifier:
keyid:68:19:DB:81:B4:9A:BA:12:B1:81:0C:B3:A2:99:EE:E4:63:2D:D7:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBnbgbSauhKxgQyzopnu5GMt1yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0e766a-72fe-47d2-a435-9035b0836243/1/aBnbgbSauhKxgQyzopnu5GMt1yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:a1:05:46:f5:5b:d1:89:f4:11:be:59:72:b4:c7:10:5c:d1:
a8:30:25:94:8d:50:04:1b:ca:16:38:9c:d6:e7:40:e7:43:48:
96:0c:a6:4e:e3:1c:14:4e:b3:81:39:81:15:20:7c:ae:8e:46:
e8:79:21:ad:73:9f:6c:63:53:b3:38:3a:31:83:90:1b:82:9f:
c0:fc:54:f9:8d:b5:50:29:0d:cf:4e:a5:cb:ad:f1:e0:3b:db:
4b:a9:62:2e:e8:df:c2:c0:20:9a:d4:14:38:00:de:1d:17:39:
65:06:0b:15:28:f1:a9:be:67:fa:07:ee:dc:d1:c1:52:86:f1:
e3:e5:0d:53:4e:1a:35:56:bf:96:9d:0e:37:e7:9d:34:69:f7:
f5:4f:21:a9:eb:7e:88:32:1c:6a:d8:97:34:d0:49:92:9a:c5:
b6:bc:de:59:66:23:93:0c:d5:10:99:bf:9f:cf:66:96:3e:a4:
0c:05:c3:d7:4c:15:35:29:d3:87:b5:cd:f5:89:34:22:e0:42:
e0:01:e0:6b:e3:15:aa:43:e3:d7:e6:f4:e8:cc:eb:e5:16:bc:
10:2b:10:80:88:20:f8:27:7e:d1:a3:30:e2:3e:35:50:ff:0d:
28:25:cf:b9:7d:be:c3:5a:2f:2e:ed:a7:1f:03:fa:0a:6c:40:
2b:c5:34:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:17:31 2025 by rpki-client