Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
File: a1a9UK-T9GN-LAfi7EAya8ZABSc.mft (raw, json)
Hash identifier: k212jktygAX5C+cjwhsFUjH6JFxXy7BnPsfrUPvTGNs=
Subject key identifier: AF:9C:52:AD:38:16:A8:B1:4A:1B:5B:D9:0A:0D:BF:6D:D7:EC:CF:21
Authority key identifier: 6B:56:BD:50:AF:93:F4:63:7E:2C:07:E2:EC:40:32:6B:C6:40:05:27
Certificate issuer: /CN=6b56bd50af93f4637e2c07e2ec40326bc6400527
Certificate serial: 019A4E4FAE607DFB48B68EA64C21DD00004C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
Manifest number: 0369
Signing time: Tue 04 Nov 2025 10:00:36 +0000
Manifest this update: Tue 04 Nov 2025 10:00:36 +0000
Manifest next update: Wed 05 Nov 2025 10:00:36 +0000
Files and hashes: 1: a1a9UK-T9GN-LAfi7EAya8ZABSc.crl (hash: lPEt3oBD4J5p4rdGWfZCdmA/Y7wP0dh0pNVGnqr39Ig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:ae:60:7d:fb:48:b6:8e:a6:4c:21:dd:00:00:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b56bd50af93f4637e2c07e2ec40326bc6400527
Validity
Not Before: Nov 4 10:00:36 2025 GMT
Not After : Nov 5 10:00:36 2025 GMT
Subject: CN=af9c52ad3816a8b14a1b5bd90a0dbf6dd7eccf21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:72:ba:fd:a3:53:c3:20:41:e3:02:2a:cb:b1:
04:99:2a:69:f2:c7:e8:19:73:53:30:c0:c5:40:d5:
8e:41:20:9e:a1:74:e3:79:66:da:8c:0b:69:0b:3b:
de:65:2f:c3:c0:f4:3a:cd:d7:ae:45:d7:f8:8a:99:
2c:c1:2e:29:b8:5f:f2:fe:16:67:32:b6:67:32:b4:
f3:35:86:4b:7f:8e:27:47:b8:80:51:a7:2b:3f:f5:
9a:85:7e:d8:11:2d:1b:73:36:4d:b1:bc:33:20:57:
4a:f1:04:ca:44:ef:40:19:8a:ed:4c:be:ea:c9:d4:
9c:1a:c0:86:92:5b:c3:e1:88:73:27:7e:b3:70:3e:
d3:68:01:b3:6e:60:43:38:c3:b2:ba:32:c7:8e:29:
19:41:ac:12:6c:90:db:0c:17:31:2a:54:0f:57:be:
c2:87:18:ab:b0:13:cd:86:d8:fb:8c:c7:ac:2e:1b:
50:fc:88:7d:9d:6b:68:aa:b9:9b:16:9b:a9:d2:96:
a2:84:34:42:0d:54:22:f8:56:05:e5:56:4b:0c:5f:
e7:fb:19:18:b6:25:93:21:ce:67:be:2e:92:65:50:
7d:a2:a9:f9:92:9d:3c:a3:38:f9:88:8f:c3:37:59:
46:25:42:be:62:7c:28:43:92:18:9a:2f:e5:f6:7f:
5c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:9C:52:AD:38:16:A8:B1:4A:1B:5B:D9:0A:0D:BF:6D:D7:EC:CF:21
X509v3 Authority Key Identifier:
keyid:6B:56:BD:50:AF:93:F4:63:7E:2C:07:E2:EC:40:32:6B:C6:40:05:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1a9UK-T9GN-LAfi7EAya8ZABSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fd3429-4524-4fcf-9592-2996d8fb697e/1/a1a9UK-T9GN-LAfi7EAya8ZABSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:e2:8b:5a:7a:9c:a7:ae:ee:fd:4a:1c:75:58:b6:4d:fc:41:
5c:6f:35:0c:6c:8f:e3:c1:8b:a1:61:6e:e2:da:d6:a9:5d:b2:
e1:de:a3:eb:7d:44:d8:57:70:9e:17:d9:fa:0f:06:06:bd:53:
ea:25:8a:41:13:d7:fe:6b:1e:31:bd:30:ca:03:43:6c:80:10:
da:97:b0:6e:60:36:ae:6a:a7:90:09:f5:09:9a:18:17:38:7f:
f8:f1:ac:c7:f9:3a:50:3f:5c:05:ed:83:22:b6:88:5b:41:42:
10:38:88:e9:4c:0e:eb:c8:0b:0c:27:99:d0:11:c5:a4:bf:8b:
cf:d3:06:a6:e6:22:6b:2e:56:0d:20:0f:5e:15:11:cf:f5:02:
a5:c0:74:1c:f1:eb:e8:dc:10:a9:f6:38:66:e0:f1:44:b1:d7:
fd:57:3a:9e:76:c8:ff:2e:0a:9c:b0:79:6d:f6:65:ba:c5:4e:
71:04:c7:55:b4:49:36:28:2a:e2:8a:99:ee:10:5b:ff:24:13:
2f:c0:bc:ee:07:65:ab:4c:22:61:7d:b2:bc:9d:3f:c0:09:21:
0d:33:4e:14:de:0c:4a:81:9f:98:20:88:bb:82:32:cc:0d:ec:
c4:cb:a7:7e:74:6e:d8:1b:5b:02:9f:7f:c7:60:d2:4e:20:34:
be:ca:b3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:30 2025 by rpki-client