Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: xFtkqOrZGbdhBlN3vlpu4452Yjmugy7XJGGergdmYCk=
Subject key identifier: CE:1A:0C:D2:E3:85:0C:18:76:AE:17:85:8E:5C:01:0C:34:F4:58:FF
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 019A71EE614256193437332B6D871E6E7678
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 1088
Signing time: Tue 11 Nov 2025 08:00:39 +0000
Manifest this update: Tue 11 Nov 2025 08:00:39 +0000
Manifest next update: Wed 12 Nov 2025 08:00:39 +0000
Files and hashes: 1: OZKug-HD4Xa2ZWdFBgCPcOgskwk.roa (hash: 3+egBPFrVIi/azwFyFARnF9adwzzIgSQuiDCKqIhA8c=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: Qr4H3SVvys2HCRSKaYkhhuVL5rKwztkUQqjdqQayJO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:61:42:56:19:34:37:33:2b:6d:87:1e:6e:76:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Nov 11 08:00:39 2025 GMT
Not After : Nov 12 08:00:39 2025 GMT
Subject: CN=ce1a0cd2e3850c1876ae17858e5c010c34f458ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1e:bd:89:b6:80:69:d9:71:42:d7:3a:77:7f:
b6:ea:10:1f:fa:d7:bb:dc:7a:d7:0f:a3:d3:0a:ce:
b9:67:32:8e:c0:82:3b:d7:a7:a5:2a:ad:aa:ae:03:
0f:3a:8d:21:7a:de:51:8f:f3:8e:1b:16:5a:1a:7e:
6f:bd:f7:c5:2d:de:b8:70:b8:55:cc:35:de:cf:a0:
d2:23:bc:9e:1a:30:ba:dc:c2:c3:ca:18:81:85:49:
6a:81:b5:c0:63:70:fa:f7:3d:47:5b:cf:1d:45:67:
6c:c3:8d:28:d9:58:b3:6b:c8:fd:21:3e:19:04:01:
ed:80:f4:63:49:94:dc:39:a5:20:77:a3:5c:c3:bc:
b4:4f:bd:64:a3:d7:90:fd:be:5e:37:a4:3d:2a:54:
1c:73:94:95:73:33:dd:5e:4c:e7:bd:22:02:da:9e:
80:54:f3:a9:f0:7a:f9:15:20:be:e6:d7:f3:05:36:
ed:07:7b:59:39:40:a9:c7:c1:7f:19:1e:94:04:26:
55:d1:5d:7a:35:a0:c6:c0:1c:36:fa:74:9e:a3:1d:
bb:1b:83:e0:d9:aa:ce:09:d4:60:d8:dc:cc:08:60:
7d:c0:02:f9:0b:36:df:32:b5:d9:bf:5c:49:00:e6:
e0:60:18:84:37:8c:2c:56:30:2c:59:4d:61:ff:18:
40:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:1A:0C:D2:E3:85:0C:18:76:AE:17:85:8E:5C:01:0C:34:F4:58:FF
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:31:5f:fc:fc:21:21:c3:0c:8f:6d:a4:7d:d1:6c:38:3c:f0:
6b:e7:67:61:60:f2:28:a6:3e:0b:d5:0c:9b:fc:e6:37:39:d2:
0d:a9:1d:f5:97:9c:60:0b:56:1d:76:26:52:f2:34:f0:af:50:
66:9d:18:df:be:b5:f3:24:e4:d9:8e:5e:18:2a:40:7e:d9:b5:
75:d4:8a:83:a9:b4:99:e0:96:33:37:5b:35:74:86:01:80:12:
89:e6:fd:a3:ed:58:5c:b5:f0:bf:94:e4:ea:1e:9d:8a:f7:80:
46:76:b9:fd:eb:e5:dd:9a:09:47:cb:72:1f:9a:e7:aa:b2:b8:
fc:b8:99:96:0e:63:72:64:8a:fd:8d:f0:97:b4:c2:aa:25:da:
d7:e9:4c:dc:f3:d4:c3:45:4c:8b:3e:fd:f6:41:63:49:31:37:
e3:74:6a:21:02:59:cf:d9:51:be:f8:a5:77:5c:f1:37:f1:95:
d1:ca:b6:2f:ca:d0:b2:2f:3e:6d:7e:75:d3:4c:2f:8c:3f:b7:
32:06:e3:e3:a1:07:0b:74:aa:6f:b2:ae:35:f9:18:35:0a:8c:
d1:ff:0e:10:32:48:76:13:18:b5:43:48:6a:4c:96:77:2f:dc:
82:91:19:ce:ae:eb:c5:3c:60:c6:aa:f6:7b:4c:e0:28:59:69:
50:3e:38:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:41:44 2025 by rpki-client