Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
File: io-pkrwKYdssvnhuHFnTYMzlRIY.mft (raw, json)
Hash identifier: QmwXvqaepYft88y8Y0yg5UHchkIAoYp7rAipC0m8aqU=
Subject key identifier: 0C:6B:4F:2C:33:25:B3:D9:D7:41:A4:C8:53:A1:B6:28:B9:AB:3F:DF
Authority key identifier: 8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86
Certificate issuer: /CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486
Certificate serial: 019922FAC83CDAE8AA6E2EF256312B6B3529
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
Manifest number: 07C7
Signing time: Sun 07 Sep 2025 07:01:24 +0000
Manifest this update: Sun 07 Sep 2025 07:01:24 +0000
Manifest next update: Mon 08 Sep 2025 07:01:24 +0000
Files and hashes: 1: UCOQjmQUUOgrTdTJgotuOqOo8tE.roa (hash: LKSVHd9tPQynvxDd2UN8Jk/eJK88GQBFqDbfRDHvZ3g=)
2: io-pkrwKYdssvnhuHFnTYMzlRIY.crl (hash: 7Nlb0ALn52mefnaKpE3APxNj4llMQCoRB1RQ5V2LEYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:c8:3c:da:e8:aa:6e:2e:f2:56:31:2b:6b:35:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486
Validity
Not Before: Sep 7 07:01:24 2025 GMT
Not After : Sep 8 07:01:24 2025 GMT
Subject: CN=0c6b4f2c3325b3d9d741a4c853a1b628b9ab3fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:22:a3:64:3b:9e:b3:27:e6:68:d1:d7:92:c2:
5a:b6:03:f5:be:8f:24:e7:8e:26:9c:bb:61:4d:53:
21:4e:11:ea:1c:4c:8e:85:7a:38:95:c4:35:19:61:
7c:43:3a:9d:70:e7:ae:7d:99:2b:53:32:f4:f3:ba:
31:38:ff:dd:27:1e:12:ae:98:78:c2:0a:55:fb:b9:
28:3c:6f:03:48:2b:e2:72:b8:7f:be:a4:ba:93:06:
19:a7:9b:97:87:a6:ae:57:23:91:6f:61:5e:2c:ac:
21:8b:41:35:ff:32:13:c5:c4:f9:42:a1:46:3f:8e:
a5:46:6d:58:2c:fd:2c:8e:06:8e:7f:be:d6:07:df:
4d:55:20:3f:dc:c7:08:f6:45:fd:5e:46:a1:65:9b:
db:28:41:c7:30:9c:b6:24:3c:a3:9f:9d:02:54:47:
fe:04:15:c3:a9:53:48:46:0a:46:6d:b8:16:d7:bf:
29:ad:d0:61:84:5c:26:b4:d7:48:ef:22:e1:47:bd:
2f:3a:f5:bf:35:b9:0e:b0:0c:fa:dc:18:6a:2e:6d:
44:45:be:cf:8d:fa:e9:57:fd:8f:3d:12:41:8e:15:
22:31:11:5b:e0:d8:67:9c:5b:49:aa:83:72:23:06:
fd:c6:e5:e6:41:02:48:f7:c6:9b:a1:e4:e8:36:42:
ec:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6B:4F:2C:33:25:B3:D9:D7:41:A4:C8:53:A1:B6:28:B9:AB:3F:DF
X509v3 Authority Key Identifier:
keyid:8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:79:b8:53:5a:eb:ea:06:08:2f:c1:24:d1:2e:1c:83:fd:a7:
a7:fa:51:6d:67:bd:e2:eb:43:1f:17:7c:95:a3:b0:ed:a5:d6:
fd:6a:44:90:ea:87:12:98:a6:5b:dd:d2:e1:25:b5:71:e5:19:
68:60:87:8e:e0:85:d1:2e:4d:5a:74:9a:78:8d:0d:66:4d:55:
3b:f3:2d:78:7a:c7:c3:0d:0b:44:4a:b6:8d:93:78:41:2b:3f:
da:c1:03:56:7c:73:4b:cb:31:2a:2a:6d:d0:c1:a9:54:2f:f9:
03:66:fe:91:03:d4:82:0d:be:1e:44:fb:b0:a4:27:b0:01:3b:
64:5b:f0:4d:9f:c5:dc:21:88:b9:0c:b9:c1:c0:53:49:9b:08:
ca:f1:32:38:a0:e8:0b:5a:53:ce:6b:0b:a1:b6:2b:8c:54:4c:
60:1a:7a:d0:9a:02:b6:a1:39:13:03:97:0b:52:58:87:cb:28:
88:7e:ce:2b:a4:1e:c1:b5:3d:66:29:37:b6:3f:d6:2d:2f:e6:
75:37:bb:d5:ac:b8:4c:ea:52:46:80:85:27:f7:ff:d8:4e:35:
75:43:49:99:72:d2:86:d3:2c:ac:12:ae:2f:c6:56:d8:c2:9e:
95:a0:bb:61:c2:b8:b9:80:03:d7:ed:c7:a6:e7:a4:d3:86:80:
15:59:c4:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:44:59 2025 by rpki-client