Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
File: CiINqbbilYVbYn_qYQ4cthZGiUs.mft (raw, json)
Hash identifier: jhUAcAM+FF3BGSOg8sNEYAhyR4IItA2fWXt7fmEvLGg=
Subject key identifier: F1:0B:27:BF:7F:B2:E3:CF:14:4D:90:55:DF:CB:F3:87:69:4B:15:67
Authority key identifier: 0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B
Certificate issuer: /CN=0a220da9b6e295855b627fea610e1cb61646894b
Certificate serial: 019922FA184D47598AAE8224816F3B634397
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
Manifest number: 11F1
Signing time: Sun 07 Sep 2025 07:00:39 +0000
Manifest this update: Sun 07 Sep 2025 07:00:39 +0000
Manifest next update: Mon 08 Sep 2025 07:00:39 +0000
Files and hashes: 1: CiINqbbilYVbYn_qYQ4cthZGiUs.crl (hash: mFeQO4APVuZnA7nxTtYEiVXn7x9EQ7Zw137sJiW0kqg=)
2: wkXSNgmrYa8rCdcuzp6T9kjqo9c.roa (hash: PKA5n5GL19/MWS8CZc9zMrpSRD9clDPEtJzbH91PkU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:18:4d:47:59:8a:ae:82:24:81:6f:3b:63:43:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a220da9b6e295855b627fea610e1cb61646894b
Validity
Not Before: Sep 7 07:00:39 2025 GMT
Not After : Sep 8 07:00:39 2025 GMT
Subject: CN=f10b27bf7fb2e3cf144d9055dfcbf387694b1567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:af:79:eb:e1:80:67:d1:5e:8c:2c:d7:41:b4:
de:19:c6:bb:64:e3:5b:30:d1:85:3e:b7:fa:58:34:
02:62:39:17:bd:0b:41:39:1f:1c:66:ce:66:b7:c2:
b6:b7:6b:f8:7b:2c:61:85:7f:4a:08:d5:e6:51:8f:
87:b3:4e:27:82:be:92:ee:da:25:e0:1d:8a:76:9f:
53:0d:7a:03:29:ad:49:8b:a3:5a:25:c2:65:36:9d:
d2:cb:9d:6b:31:6e:01:fd:d6:bc:89:d8:89:6f:60:
c8:fb:50:8b:e8:5e:61:32:e1:78:99:41:09:ec:ad:
59:f5:b1:ad:86:72:f3:1a:6d:22:8b:a5:c8:ba:f1:
3a:6a:40:8e:52:06:53:ba:dd:f0:11:51:6c:9c:77:
cb:c5:b5:79:c9:fb:01:5d:f8:fe:69:ab:06:e0:98:
8d:36:a8:45:1b:5d:f1:2f:0e:2e:6a:d0:0a:01:ef:
7a:df:74:bf:0d:85:43:ea:54:80:39:ce:67:85:db:
9e:97:7e:c5:38:2b:56:0e:87:d0:56:0f:21:f8:c5:
53:da:b6:fe:f4:0a:6c:83:ef:16:1b:b3:46:6c:0f:
93:19:36:3f:a8:52:10:a2:94:7c:4f:f4:34:8a:0d:
91:b1:37:d5:ab:eb:c7:57:b8:a5:4b:01:42:d1:f0:
b0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:0B:27:BF:7F:B2:E3:CF:14:4D:90:55:DF:CB:F3:87:69:4B:15:67
X509v3 Authority Key Identifier:
keyid:0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:95:1b:eb:a1:c9:76:68:da:39:f3:46:95:71:cb:5f:0a:e5:
06:6c:a2:79:45:42:46:e4:1a:58:26:34:05:a2:2f:7b:99:14:
b5:73:dd:dd:ec:97:da:92:64:7e:e5:02:29:3d:fc:e6:89:74:
0d:67:be:25:35:e9:c4:ac:f7:d5:5c:68:1f:76:96:04:76:3a:
5a:94:03:1d:44:b4:9a:9a:c6:33:ca:c4:70:d3:91:56:49:9e:
03:36:7b:43:58:95:dc:d5:4a:df:b7:32:b5:54:34:4f:7b:fb:
86:2c:63:cc:71:97:c6:9c:c5:7e:d1:b8:5a:7f:60:95:e7:7c:
0c:d5:77:0e:a0:73:1f:3a:36:3c:88:f2:7c:db:30:ba:f8:65:
aa:6e:1c:fd:d6:ac:2d:99:81:02:4e:e1:a1:41:d1:dc:e7:89:
c9:93:4c:1c:86:c8:7f:3e:60:8a:ef:11:b3:00:6f:6c:c8:cc:
97:65:8c:e6:30:f1:77:e2:de:9e:53:65:70:be:03:9c:ff:e5:
f8:86:3b:1c:c9:3b:57:12:6a:e8:42:9f:c7:be:6f:25:38:79:
b5:b0:60:1b:fb:5a:f5:55:2f:2b:0d:71:64:40:11:40:6e:d3:
a9:40:21:7f:2c:4d:94:7e:bd:eb:33:34:a8:a4:c6:ed:bd:b8:
37:7a:e9:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:18:33 2025 by rpki-client