Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft
File: A3hitGCMefRQKV7FyAx8etbf4qI.mft (raw, json)
Hash identifier: 6nPkmuSKx0uF98sd6IwvZRTbVqG8/PI4lEYkSW5BdHw=
Subject key identifier: 2D:77:B6:1C:3C:77:51:E7:DC:D3:FA:DB:93:F7:77:14:DD:80:3E:5D
Authority key identifier: 03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
Certificate issuer: /CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Certificate serial: 019A4E8672ABD7B42B107412E82B10777828
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft
Manifest number: 121D
Signing time: Tue 04 Nov 2025 11:00:25 +0000
Manifest this update: Tue 04 Nov 2025 11:00:25 +0000
Manifest next update: Wed 05 Nov 2025 11:00:25 +0000
Files and hashes: 1: A3hitGCMefRQKV7FyAx8etbf4qI.crl (hash: 7+SeEXPSQCZ4MdF7jT2dAz3DJmYbPnFsqCEJSu4nLN8=)
2: H1OMOC2BAR_5642Cu7ZwMViudi8.roa (hash: XWP0BQbCva9Xp/f//R3LpuOJ9bWFeCg7RqrDman+FAE=)
3: _KO8Oi7vtPgAowOISHE5epxFK5Q.roa (hash: 8164lOA7eSdWjoo8q/K2tQc7tm9W3hWFjEkyCggGOH4=)
4: pg2Uo1mGaRZ4g8oAbIXuXT68ouw.roa (hash: dY7d7wlBY9scutfRZI+Jc0/ht66poZjZN1QodpAABEg=)
5: rS4RgydKxGdwOWf1j4StfouO-tE.roa (hash: sFUBBhbDyvVoCqaYLXicDjVpE7stEZC/MmSdQhndwec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 11:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:72:ab:d7:b4:2b:10:74:12:e8:2b:10:77:78:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Validity
Not Before: Nov 4 11:00:25 2025 GMT
Not After : Nov 5 11:00:25 2025 GMT
Subject: CN=2d77b61c3c7751e7dcd3fadb93f77714dd803e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:cf:55:d7:22:b4:cc:a0:be:fe:82:ad:35:e5:
5c:52:8e:f8:05:97:1d:2b:52:f2:55:a2:66:d3:ee:
b7:3b:af:14:e4:44:b1:ef:1e:6b:7f:26:d3:c7:b8:
c9:ff:be:7e:d2:fb:fc:ac:35:b3:22:a7:97:4e:f4:
ec:ef:f8:de:de:85:c7:d8:19:ee:a9:76:a9:de:64:
91:6a:64:8b:26:6d:93:68:64:3a:37:b7:3c:69:40:
5f:30:94:b2:40:93:81:72:54:e6:32:65:8b:99:df:
54:aa:ba:ab:ba:60:24:11:17:57:f4:27:8c:f3:0c:
43:b2:a0:d3:d8:4b:f6:cf:9e:fe:31:01:56:35:13:
a1:89:42:b4:75:d1:c2:c1:b2:dd:dd:3a:c7:07:0e:
36:2f:5a:b3:0d:44:f3:3d:0b:93:dc:b9:92:a8:5d:
ff:2b:0b:a7:3b:70:f1:c3:46:ee:cc:6a:3f:3e:b7:
8c:2e:85:d5:e3:1d:11:1a:8f:86:e3:e4:19:71:bb:
e8:df:85:3e:ce:c9:f3:20:0e:9f:e0:18:fe:1b:54:
75:45:5b:7c:de:28:e6:2e:83:b1:f3:4c:83:ce:9e:
47:e2:1e:8f:ae:ed:41:2f:9d:7e:0f:4d:64:6c:73:
91:e0:e6:f2:a7:f9:4b:9f:73:44:09:13:44:55:b9:
0d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:77:B6:1C:3C:77:51:E7:DC:D3:FA:DB:93:F7:77:14:DD:80:3E:5D
X509v3 Authority Key Identifier:
keyid:03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:2a:c4:d9:d0:68:8b:94:4d:46:ac:83:0f:59:e4:ae:bb:3c:
a6:3f:b6:ad:6e:a3:83:68:a9:33:a7:1e:9b:e9:c3:26:ab:ec:
4a:51:57:19:ef:47:5a:78:5e:1c:50:6e:7f:db:87:0a:86:19:
d5:dc:cf:0f:fb:a6:fc:d5:3f:58:d7:64:19:7c:ca:3d:a6:fc:
b8:67:80:1a:b3:79:1f:30:82:42:28:ec:09:11:d8:2e:fe:6b:
b2:27:a1:d6:ac:b5:77:b1:88:5d:98:98:c6:41:79:49:30:3b:
0b:09:75:ad:76:d8:d2:f8:63:e2:a8:3e:9c:bc:e4:eb:32:01:
b1:76:6d:c3:e8:10:4f:5d:53:e6:bd:c5:7f:cf:e4:2f:ec:49:
af:aa:06:02:73:43:0d:05:34:59:ae:69:20:72:78:b0:09:d1:
bb:37:72:61:45:d9:07:06:4c:59:a1:b8:f6:b5:56:a7:c7:f2:
cb:b4:95:95:8e:d1:7f:7f:19:68:6c:60:5b:60:3c:7f:4a:67:
55:4c:4f:32:4f:51:01:30:e3:68:14:59:c0:e0:4f:e2:91:c5:
20:5b:9d:04:a8:5c:df:cb:d1:95:aa:a0:a0:7a:c2:98:f3:38:
06:60:51:d6:73:e6:0a:e7:43:b2:67:b4:af:d1:d3:0f:1f:09:
45:78:e3:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:39:04 2025 by rpki-client