Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
File: 1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft (raw, json)
Hash identifier: Z1AtiuQf95+T82au3SAZQKA22TgkPpp4T4HdRgAp94I=
Subject key identifier: 6A:DD:71:B8:5A:81:9C:81:3B:98:FA:F7:90:B6:80:B5:40:E6:A2:ED
Authority key identifier: D5:A8:90:94:E1:2E:54:DD:90:1E:32:D3:3C:E5:13:1E:04:6E:E7:0C
Certificate issuer: /CN=d5a89094e12e54dd901e32d33ce5131e046ee70c
Certificate serial: 019A4F993600BF673D08DF3F5DBF25DE74C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
Manifest number: 03A3
Signing time: Tue 04 Nov 2025 16:00:32 +0000
Manifest this update: Tue 04 Nov 2025 16:00:32 +0000
Manifest next update: Wed 05 Nov 2025 16:00:32 +0000
Files and hashes: 1: 1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl (hash: n7+BaqZHl5T5RzS/9uXHtXPWX55RBGqq5HvJNngZT+M=)
2: d97Ch2oOF5rboQAm4Ny7S68pdDs.roa (hash: GTey3KF1CvpIvjeJCgqABtZ3XGUGtGoEyAaxaxLHaVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:36:00:bf:67:3d:08:df:3f:5d:bf:25:de:74:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a89094e12e54dd901e32d33ce5131e046ee70c
Validity
Not Before: Nov 4 16:00:32 2025 GMT
Not After : Nov 5 16:00:32 2025 GMT
Subject: CN=6add71b85a819c813b98faf790b680b540e6a2ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:20:3f:9a:97:8d:ef:8f:e2:f1:37:44:af:a3:
26:e5:26:c8:21:60:b6:98:3e:6d:f9:19:ff:0b:0d:
2e:b3:f4:3a:84:4a:d9:6d:3b:d7:14:5c:df:a9:dd:
9a:b0:e0:a7:34:52:6a:f2:bf:56:29:7c:bc:fa:b3:
69:76:ee:39:92:28:5a:d5:92:a1:b2:3f:1a:c8:d5:
d6:72:49:6f:de:5f:bf:f5:87:22:a6:40:bd:0a:d4:
d7:9e:60:8a:cd:c1:f1:e1:fd:c6:65:7e:1a:39:36:
be:66:71:61:5d:ff:3f:e7:1f:df:1b:f0:67:7e:33:
dd:ce:0e:a2:5f:eb:ad:a2:0a:ca:ea:30:91:d1:e7:
ab:fd:8a:a5:ff:12:00:8c:b2:c5:3d:34:a7:5f:a9:
90:8a:05:f7:8f:54:4e:77:9c:42:80:21:d1:30:17:
f3:25:4d:ac:d6:bc:d8:b9:01:c9:f3:95:5f:c1:22:
90:6f:83:65:af:e3:2f:68:94:a2:64:20:4e:fe:ee:
ad:95:fa:00:8c:41:89:c8:69:13:c6:ec:09:69:24:
50:bd:a4:9b:1e:28:64:87:4b:4e:72:d3:a2:54:26:
06:b7:57:ce:ea:0f:2a:8a:98:0c:75:48:dd:ed:96:
8d:ac:79:b4:20:b3:8b:f2:89:40:4e:bc:f9:f5:99:
97:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:DD:71:B8:5A:81:9C:81:3B:98:FA:F7:90:B6:80:B5:40:E6:A2:ED
X509v3 Authority Key Identifier:
keyid:D5:A8:90:94:E1:2E:54:DD:90:1E:32:D3:3C:E5:13:1E:04:6E:E7:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aiQlOEuVN2QHjLTPOUTHgRu5ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/22d20e-0bd6-49fb-b9c3-e20d707c00fb/1/1aiQlOEuVN2QHjLTPOUTHgRu5ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:ce:fb:65:c4:b7:06:f0:97:08:14:63:18:f8:c4:67:dd:8a:
63:0b:3b:52:31:e9:e7:d2:cb:79:b1:7f:0c:21:fa:14:34:da:
1a:dc:ce:6d:06:ac:0c:cb:0d:58:65:9b:2e:c2:84:b3:67:f4:
57:53:08:04:85:59:c4:43:23:df:ae:65:af:34:6b:d1:4c:f0:
c8:3d:2e:73:3e:42:81:a8:b7:01:62:4e:e3:88:dd:3c:f6:f9:
ef:af:3b:65:bc:95:63:ad:63:0a:32:72:70:0c:b2:27:f9:7d:
da:77:10:0a:cf:51:e0:6b:01:2d:c7:22:ff:4c:34:c4:5b:1d:
8d:07:e5:5a:f5:90:47:7e:75:c8:7f:e5:2f:ec:fc:18:00:0d:
ca:5c:2e:36:72:84:ba:7b:52:ac:a7:0b:4d:70:93:1a:37:4c:
7e:48:2d:1f:68:20:5b:64:9e:16:c6:d5:ec:98:4b:a3:ea:a0:
0e:81:55:fa:84:66:00:d3:74:8e:42:82:df:05:ba:70:d5:1d:
30:c4:3b:73:3d:1e:0e:12:bf:83:f3:0f:bc:0a:61:75:59:cd:
fc:5f:2c:7e:c5:ef:ea:43:62:c9:5a:0e:41:e7:c0:aa:53:e4:
36:83:a2:e9:2b:79:84:9e:d7:1d:92:68:72:93:9c:31:fd:fb:
a2:f8:20:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:36:03 2025 by rpki-client