Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier: tDv52nHUdqwIf9QqbZZuPH2q0kbND0kbibAmCpoE5+g=
Subject key identifier: 9B:2E:BC:53:FE:E7:2E:74:76:27:D6:64:57:60:7E:7F:36:49:29:E4
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer: /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial: 019A21ADAC4BD41386FD84F4B95C39BC205C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number: 15CA
Signing time: Sun 26 Oct 2025 18:00:21 +0000
Manifest this update: Sun 26 Oct 2025 18:00:21 +0000
Manifest next update: Mon 27 Oct 2025 18:00:21 +0000
Files and hashes: 1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: g7V77MbeTkJmadyFMf+dIJ8YAXMB++9xK/QO88dTGCY=)
2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 14:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:ad:ac:4b:d4:13:86:fd:84:f4:b9:5c:39:bc:20:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
Validity
Not Before: Oct 26 18:00:21 2025 GMT
Not After : Oct 27 18:00:21 2025 GMT
Subject: CN=9b2ebc53fee72e747627d66457607e7f364929e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:78:2c:af:45:42:19:ce:2d:b5:fa:07:44:69:
00:2d:3f:d3:1a:f3:a5:52:72:ef:70:0c:f7:4a:db:
88:1d:37:ca:cc:63:5d:df:4f:f7:4a:8c:86:a6:50:
36:46:41:1c:fe:8c:54:a3:f3:50:90:1f:4c:cf:16:
c5:de:74:9e:49:ea:af:4f:95:bb:69:26:36:5a:4b:
bf:6f:a1:a4:ce:c4:db:d6:2b:d5:13:89:a5:ba:f9:
bf:f5:8a:1f:9c:c2:67:53:28:00:29:2b:ea:c8:ef:
f5:c6:00:7c:77:23:41:90:d4:bc:a8:3b:0c:f8:dc:
0e:80:af:50:c7:70:b6:8e:20:fe:f7:2e:0e:5e:1a:
ca:f2:14:e2:b0:18:85:f3:18:3a:08:37:87:2e:63:
06:b9:2b:b6:de:13:a6:b6:ee:ee:73:e6:44:aa:19:
d9:76:76:96:a5:e9:ab:26:53:a8:ff:a2:7b:cf:1c:
e8:0f:36:f4:45:2e:6e:ec:64:ce:5d:84:1f:a4:5f:
e9:d5:d9:fb:01:f9:d0:d0:ca:e6:c5:f0:38:fb:cf:
c6:44:c2:ae:7f:bc:91:b2:d2:78:48:9d:05:62:fa:
b5:f0:72:f8:af:b1:f4:04:bf:3a:2e:dc:20:bf:e8:
58:99:c0:c4:70:4f:39:02:38:76:41:f7:3d:59:58:
6a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:2E:BC:53:FE:E7:2E:74:76:27:D6:64:57:60:7E:7F:36:49:29:E4
X509v3 Authority Key Identifier:
keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:4c:75:de:8a:3a:42:a5:1e:d1:5d:a9:e5:c1:67:e3:06:c6:
36:99:34:c6:32:e4:69:dc:80:a8:8b:56:01:ed:9a:33:87:72:
dd:c4:ab:46:ca:3d:cd:1a:48:1d:56:9c:76:c8:a0:9f:f5:7b:
b7:28:97:96:ae:c4:b1:e5:5d:2c:9d:85:fc:fa:bc:a1:a4:f5:
c7:a6:3a:97:82:92:4c:61:b7:0a:5b:c4:66:00:41:62:b7:cb:
25:c6:80:f4:12:ad:2f:37:e7:62:84:34:e7:f2:f7:67:b5:1a:
5a:b0:98:fa:f7:d1:f8:69:c8:9a:cf:bc:b5:b3:d2:d5:ff:81:
b6:77:19:da:ef:48:b1:4e:56:4e:11:e3:4d:ac:24:3a:63:e2:
be:4e:29:84:ef:bc:a3:58:6f:96:b0:2d:39:c0:b5:c9:7e:b9:
65:90:c9:9f:60:d2:d7:4f:12:9a:9a:cb:8b:71:31:59:fe:14:
88:dc:5e:d4:02:4e:f8:c5:f8:92:9b:04:d1:29:15:a8:88:26:
0f:53:60:a1:6d:8d:4b:cb:ea:18:23:ce:6f:70:e1:9c:a5:d0:
b7:6a:d2:79:d6:0e:d5:94:b1:16:5d:d7:9d:d5:b4:0e:cb:9e:
e3:40:3a:26:f1:f7:63:53:dd:07:ac:59:b1:ff:74:9b:5c:8b:
5c:75:f0:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 23:18:39 2025 by rpki-client