Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier: Nf4KsPYTAq0YggH8Ssejlzfwt0yvpwCpa6TtF3EJXGc=
Subject key identifier: 33:A8:2E:84:5A:4B:7A:19:79:3E:4A:7A:BB:09:AF:F7:5E:C8:40:A7
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial: 019A4E18FF53B53B4D661B5D84C106156A14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number: 0940
Signing time: Tue 04 Nov 2025 09:00:52 +0000
Manifest this update: Tue 04 Nov 2025 09:00:52 +0000
Manifest next update: Wed 05 Nov 2025 09:00:52 +0000
Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: 9R5cikq+A1Rayxgeusvf0/r206QefqRjNJgT42VTy2M=)
2: NLokuyayf_xTBz620eUda7ND62Y.roa (hash: wnbXZXqLcKm2LPuwdWnQJhZT1lgCNXU3KAjP4hIxaAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:ff:53:b5:3b:4d:66:1b:5d:84:c1:06:15:6a:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Validity
Not Before: Nov 4 09:00:52 2025 GMT
Not After : Nov 5 09:00:52 2025 GMT
Subject: CN=33a82e845a4b7a19793e4a7abb09aff75ec840a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b6:ce:fa:60:47:d1:51:b3:3e:d7:49:6f:40:
f0:e2:e0:a1:8d:dd:e7:e2:9b:00:a1:28:08:7d:bb:
2d:5d:60:89:14:9b:11:ea:a7:46:54:38:e0:31:e6:
fe:78:42:67:b1:99:69:31:b3:37:49:1d:9b:91:6f:
47:13:0a:a0:81:35:79:26:9c:eb:22:71:ee:94:f7:
15:ed:d3:d5:e4:ab:d9:bc:58:ea:60:b4:69:80:d9:
7c:4e:d9:0c:61:3c:04:2f:94:17:bb:91:68:a5:7e:
00:46:1c:1c:5f:c9:30:04:ca:ac:03:f5:a7:9d:52:
f1:ad:c8:5e:03:08:d5:4a:f5:e6:2c:13:95:b9:00:
1c:91:d1:8e:05:e5:e4:a0:dd:c3:a5:9f:c7:26:17:
20:87:50:be:2a:fa:3a:34:a7:72:da:35:88:0c:7e:
ed:b2:56:d9:83:36:22:d6:43:c8:c0:f0:53:ed:cf:
3e:46:1f:08:b5:a9:48:b5:1e:c3:4f:9d:34:a2:68:
eb:71:bb:18:22:a1:8b:df:63:0b:da:f3:e5:22:eb:
f2:1a:13:3c:98:b4:a0:aa:dd:1f:aa:51:25:72:52:
15:6c:1a:ed:dd:06:88:52:0c:59:e6:a8:d7:65:a4:
9b:d8:65:cb:30:c3:9e:52:40:f6:22:2a:ce:7b:65:
63:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A8:2E:84:5A:4B:7A:19:79:3E:4A:7A:BB:09:AF:F7:5E:C8:40:A7
X509v3 Authority Key Identifier:
keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:2a:aa:6a:ea:11:44:bf:59:65:23:89:42:c9:af:e1:7d:5a:
25:cd:b0:e4:b5:c9:98:61:84:22:f2:74:ce:ec:b6:25:3b:3d:
9d:ab:95:5f:a4:51:7f:e0:e5:8e:b5:84:b5:9a:b1:23:c4:61:
1d:2a:c5:76:a8:fc:be:0a:2d:f5:b4:6d:2b:07:ae:fb:71:ec:
24:7b:bc:19:d2:ad:94:0a:90:41:ed:fd:23:29:4b:07:46:9e:
2c:2f:32:21:26:e3:a4:05:c6:4f:4f:23:d9:16:69:cb:0c:1b:
a6:53:ac:b8:f2:c0:87:b8:61:a8:b7:21:b0:1c:73:f2:d7:ce:
fd:0a:a6:7c:25:fe:35:cf:dd:f4:ff:fc:16:21:5e:81:6f:e3:
5e:87:68:66:f4:32:ca:0f:7c:d3:20:c7:57:b9:e3:88:07:5a:
f3:dd:90:c8:dc:90:03:f1:a5:0e:f6:53:98:10:17:ac:41:39:
73:9a:3f:d5:f5:bc:c3:d4:83:c0:70:a5:82:a4:7c:97:cd:37:
68:d7:9a:02:15:40:3d:f9:f9:e0:28:d5:22:61:76:84:ab:a6:
2f:58:c5:9a:e8:9d:d3:02:e7:7f:36:c0:46:b4:e5:d4:fd:88:
59:54:c3:f4:0c:cb:7b:1a:65:6e:63:41:77:43:9b:e0:a7:52:
9d:0c:b6:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:18:38 2025 by rpki-client