Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
File: io-pkrwKYdssvnhuHFnTYMzlRIY.mft (raw, json)
Hash identifier: UZIsQXchdQuUdUyAPlu3cC1yT7CDtlzIkw0/y0ZeGmM=
Subject key identifier: 94:DC:E5:53:62:EA:83:38:96:17:89:44:B4:62:BE:45:49:EA:BE:5C
Authority key identifier: 8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86
Certificate issuer: /CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486
Certificate serial: 019A711348AC6D6FCD7AECDB86F7618C783A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
Manifest number: 0874
Signing time: Tue 11 Nov 2025 04:01:20 +0000
Manifest this update: Tue 11 Nov 2025 04:01:20 +0000
Manifest next update: Wed 12 Nov 2025 04:01:20 +0000
Files and hashes: 1: UCOQjmQUUOgrTdTJgotuOqOo8tE.roa (hash: LKSVHd9tPQynvxDd2UN8Jk/eJK88GQBFqDbfRDHvZ3g=)
2: io-pkrwKYdssvnhuHFnTYMzlRIY.crl (hash: 41DsxnEMa8VNMDXsRXgjnbb/t4xY5PbXmi46hkybkM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:48:ac:6d:6f:cd:7a:ec:db:86:f7:61:8c:78:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486
Validity
Not Before: Nov 11 04:01:20 2025 GMT
Not After : Nov 12 04:01:20 2025 GMT
Subject: CN=94dce55362ea833896178944b462be4549eabe5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ad:2a:1f:7b:5f:a3:79:50:23:c4:10:f9:1d:
ba:db:a2:40:f2:84:cb:88:ae:6e:ea:a0:25:2a:70:
cf:fc:23:59:51:43:ef:4b:4b:2a:52:6b:11:eb:b3:
4f:e5:a6:92:f0:9b:5e:50:09:19:68:9f:1e:4d:e7:
46:8e:ba:30:56:ba:4b:2b:71:7f:f0:36:bf:a6:e7:
4f:c7:02:5b:06:28:0d:c4:de:68:16:24:09:ed:83:
51:c7:c4:96:3e:1f:ab:d0:32:e7:2b:0f:5c:ad:4d:
f6:ef:d6:1c:97:b1:ec:72:31:0c:24:65:4a:b0:61:
03:5e:46:46:2a:a5:a3:dc:da:30:a5:cd:63:77:11:
f9:be:26:d9:18:b9:4e:90:0e:e9:52:5f:73:56:b4:
64:6e:8a:7a:61:40:f5:e5:b4:51:f2:65:17:fa:ca:
73:1f:25:75:46:3c:d9:9e:d1:c9:69:b5:3b:13:7b:
da:ce:62:2c:ca:47:0a:49:cb:35:31:cb:35:b6:9d:
d2:40:74:6b:26:b3:ea:46:80:a3:86:c2:68:bc:91:
14:19:67:c4:43:be:77:0a:a8:42:41:4f:fe:9e:5d:
f5:46:04:cd:62:58:d9:03:41:59:14:bd:0e:43:88:
fd:ab:03:ae:f6:69:82:ad:e8:ad:c7:78:c9:df:a0:
60:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DC:E5:53:62:EA:83:38:96:17:89:44:B4:62:BE:45:49:EA:BE:5C
X509v3 Authority Key Identifier:
keyid:8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:6a:e2:e5:21:fd:d2:94:bd:a2:d6:ac:2f:23:e0:67:a8:8a:
12:39:71:d8:7d:b3:7c:cf:eb:1d:e0:d9:48:b0:36:19:a2:9e:
75:8e:e1:57:5f:d1:a5:49:fe:a8:1c:63:e9:cf:06:7b:a8:7d:
62:f0:c2:12:13:64:7c:2f:87:c7:34:e4:aa:38:ab:3e:d6:3e:
62:07:e4:b3:c8:67:3a:c8:6d:87:0c:59:7a:f6:05:39:a1:a5:
f5:81:a4:07:69:19:23:f6:ec:f9:60:7c:11:5f:5e:ea:6c:bc:
f3:65:96:90:7e:48:fb:2e:e4:5f:fa:24:fd:ef:49:52:df:10:
7a:92:a3:a9:d5:f8:8b:92:37:af:dc:c7:d8:e4:dc:86:3c:82:
80:5c:1d:31:4a:6c:23:02:38:2f:08:2c:90:4e:f8:cf:23:04:
98:e5:fd:c0:14:e1:5f:63:e3:69:4d:cc:16:66:70:a9:ff:b5:
ff:08:dc:04:90:4c:0d:40:0c:58:30:e8:cb:da:6e:d6:bc:cd:
fe:f4:fd:3e:f0:f7:46:1c:3a:0d:f2:96:23:3e:0c:48:b7:f5:
95:6a:90:12:d8:75:e3:45:33:b9:00:23:b6:57:a0:13:c5:2a:
5a:c4:23:1b:6c:4b:be:87:b7:79:e3:b7:2a:35:7b:d2:00:7c:
87:89:aa:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:17:18 2025 by rpki-client