Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
File: A1KD5iNe2yXotUdJtihfXj74U3E.mft (raw, json)
Hash identifier: Shta1ApZ6DwhXlVNaDCkdiZPQjZnOqRuZZbvczYXqDE=
Subject key identifier: 59:74:B9:BA:38:5B:6A:05:59:B5:00:57:74:52:DF:95:2A:7B:6C:45
Authority key identifier: 03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
Certificate issuer: /CN=035283e6235edb25e8b54749b6285f5e3ef85371
Certificate serial: 019A53E3E22CA19D803780438D6B1BA082AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
Manifest number: 025D
Signing time: Wed 05 Nov 2025 12:00:34 +0000
Manifest this update: Wed 05 Nov 2025 12:00:34 +0000
Manifest next update: Thu 06 Nov 2025 12:00:34 +0000
Files and hashes: 1: A1KD5iNe2yXotUdJtihfXj74U3E.crl (hash: 7Zs/ilDOnhKAqW2UH231mQSyxgo5e9SkKe1swH1VQSE=)
2: z96_ZJgr9Ouwu3H857DM3qPVUxI.roa (hash: XUjlH+TkzMgkjT2OPVskc/V8eVbqCCBWMoR0ix6MWrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:e3:e2:2c:a1:9d:80:37:80:43:8d:6b:1b:a0:82:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035283e6235edb25e8b54749b6285f5e3ef85371
Validity
Not Before: Nov 5 12:00:34 2025 GMT
Not After : Nov 6 12:00:34 2025 GMT
Subject: CN=5974b9ba385b6a0559b500577452df952a7b6c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c9:f5:ce:81:da:34:cf:3a:10:23:e9:fa:08:
92:58:56:9f:79:85:d9:8f:55:17:1b:95:a0:9c:95:
ce:0b:f5:ac:82:b3:1b:b3:43:a2:d2:5d:5b:9d:4a:
cf:8d:ad:8d:b9:5a:f4:57:f8:77:1b:d1:18:5f:7d:
ad:e9:71:2b:65:1e:8f:5b:69:1b:cc:30:c2:34:49:
82:cb:d4:4c:3b:f3:56:b0:4b:59:38:8c:3e:f8:2f:
2b:cf:54:a3:ef:d0:17:18:16:25:84:fd:4f:e3:06:
4c:c4:ab:f8:28:b6:d1:86:83:56:46:10:b7:0c:ed:
c5:07:e6:6a:61:bc:ea:e2:fa:70:f1:04:0e:cd:6f:
92:4d:91:54:ff:56:bb:25:0b:a7:e2:8b:65:ba:d1:
22:7a:d9:44:40:db:c7:fd:95:b6:3d:43:9e:ea:db:
da:4d:21:4d:ce:2d:a7:9e:0a:48:2b:78:0b:fb:cb:
98:ac:6c:98:54:61:74:4b:cf:ad:25:61:0e:08:b4:
bb:de:58:6b:25:06:48:ff:1b:e9:0f:e3:0c:60:86:
c8:aa:e0:89:e4:33:69:4d:0a:c4:ba:e2:d7:60:e8:
03:11:9d:10:e4:55:b5:02:e7:16:69:65:6f:5a:da:
9a:21:43:9c:ec:c4:f5:e3:a0:85:7d:29:a8:80:14:
4e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:74:B9:BA:38:5B:6A:05:59:B5:00:57:74:52:DF:95:2A:7B:6C:45
X509v3 Authority Key Identifier:
keyid:03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:93:3b:9a:b5:06:74:d9:05:80:8f:e0:a1:c7:dd:f1:6f:f3:
92:22:57:79:11:12:95:69:1e:fe:45:14:24:da:2a:c6:c6:73:
49:af:3f:89:9e:cf:af:4d:ac:fa:5c:15:f1:47:8e:e8:6e:13:
31:fb:70:52:5e:a3:1e:d1:ec:3f:1f:19:1b:93:85:e4:4c:db:
98:e7:ec:b1:8b:d9:90:7a:7d:07:3c:97:25:6c:3c:ea:10:d5:
a9:bd:f2:73:0d:7b:6f:3d:3f:67:cb:49:29:e8:b4:20:9e:c1:
db:b9:b0:0f:30:30:c5:76:12:6d:51:70:30:c7:d1:c8:d7:bf:
e0:48:86:03:3b:ab:e0:b6:98:ab:c4:e4:91:2c:ac:2a:fc:0f:
88:2d:87:6e:86:f1:9f:5e:7b:e7:43:3e:8c:00:78:cb:fa:f9:
ed:3e:6b:54:83:6e:06:dd:05:87:79:b3:e0:aa:5e:c4:17:4d:
97:52:55:4b:22:08:94:f0:b1:94:d2:fb:d6:24:fa:9d:49:95:
e8:48:cc:c4:3e:c0:d2:75:d9:2b:83:00:a4:49:ec:14:a2:7f:
59:4e:17:4e:96:a3:ac:8e:ed:6a:a4:c1:66:4a:eb:4b:62:34:
9d:68:89:61:e9:3f:2c:b6:02:4c:d7:cf:33:fc:b5:80:3f:39:
72:13:da:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 16:29:59 2025 by rpki-client