Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
File: i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft (raw, json)
Hash identifier: 3FJaW6qdx7kTpMtcSxlLSnGp8rSaV28JtYBsK3JBUuA=
Subject key identifier: A3:56:FF:9A:20:EE:31:BA:DE:BB:7C:36:FC:03:27:1F:F6:D9:39:18
Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Certificate serial: 019A2289B882CEA22CEA3A307789BEB54D98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
Manifest number: 16F6
Signing time: Sun 26 Oct 2025 22:00:42 +0000
Manifest this update: Sun 26 Oct 2025 22:00:42 +0000
Manifest next update: Mon 27 Oct 2025 22:00:42 +0000
Files and hashes: 1: FE1p8xqk22ZLL8TtVpBgIJ5HCYk.roa (hash: EEjSbBj9sFsFeIYvGJ66Mb2B5f9wjNh8P6NHIHv03o4=)
2: Nj_g5XagzgChnaGJmyAjIxliPxQ.roa (hash: 2T2yAo36kvnreO/zfmG7HDMPjTZHcC33NYqG6yteeqQ=)
3: i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl (hash: RuPQN/tPRVcNWIKoqx7gAgVwltSs5P92li5CKaBtgok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 22:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:89:b8:82:ce:a2:2c:ea:3a:30:77:89:be:b5:4d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Validity
Not Before: Oct 26 22:00:42 2025 GMT
Not After : Oct 27 22:00:42 2025 GMT
Subject: CN=a356ff9a20ee31badebb7c36fc03271ff6d93918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c7:90:dc:ae:f2:b4:17:0d:c4:6d:cd:2d:e6:
0e:86:4a:7e:4b:7d:92:12:4f:05:ea:4b:e5:ac:5f:
3d:2c:f6:e5:5f:93:31:83:dc:8b:74:e7:45:20:61:
f9:a9:c3:ae:60:5f:e8:f1:3a:13:89:e8:f7:0f:37:
37:63:6e:86:20:dd:82:c1:e0:4b:d9:87:01:3a:93:
6a:ac:9a:52:b2:9e:6d:96:9e:7f:a2:df:39:c3:9f:
21:ce:b6:0d:e3:93:98:a9:f1:ab:32:a7:ec:3c:46:
c0:30:ab:a3:db:25:08:59:98:8c:4a:0d:15:ec:c8:
5c:ad:db:13:cb:83:31:94:a7:3d:58:13:ef:9c:81:
50:15:00:b5:e1:8e:49:78:0e:6a:b0:d2:b7:17:30:
a3:35:b4:b5:77:ad:ab:07:01:aa:bb:36:c3:74:9b:
6a:b6:7e:a4:d4:32:61:50:ea:71:5e:58:a2:b5:5d:
72:b2:aa:ec:d0:4e:f1:77:19:f1:66:67:5b:95:c4:
bd:00:29:6d:ab:ed:10:a3:0e:f2:cb:17:c7:1c:f4:
04:ab:0b:3f:c8:a6:6a:54:9b:ba:b7:b9:8d:ef:a1:
30:94:45:e7:bc:9b:c1:f2:69:b4:86:3a:b6:3f:47:
d8:e7:89:10:67:e7:9c:59:41:62:65:2b:59:72:32:
5a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:56:FF:9A:20:EE:31:BA:DE:BB:7C:36:FC:03:27:1F:F6:D9:39:18
X509v3 Authority Key Identifier:
keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:5e:5b:d5:38:b8:b7:66:11:58:bb:d1:29:b9:9b:e5:20:04:
60:e6:2a:67:c3:29:59:60:fd:04:5f:97:35:7e:91:fb:87:d7:
84:45:7d:cc:b2:07:1c:3c:58:46:37:b9:a3:d3:7b:30:14:2d:
a1:2f:8a:ba:07:08:e0:90:25:d8:1f:d6:b9:3f:82:f9:3e:a0:
c0:69:a4:27:e6:55:88:36:a8:67:77:eb:f8:80:78:93:2f:8d:
39:9d:1a:e3:c4:5d:0a:e2:90:d6:d3:12:dc:95:4b:14:59:d0:
4e:b2:0f:19:dd:af:55:21:7e:0e:ad:10:30:8e:ba:d8:b7:5c:
f3:e4:06:96:32:45:1b:cf:5c:97:4c:71:5d:23:d1:52:3f:78:
b2:83:7e:be:34:36:f9:72:52:a5:ca:58:33:fe:84:6b:98:90:
80:99:1c:d3:a2:ef:dc:d9:e2:70:aa:ca:0f:9d:2b:75:49:10:
cb:0a:9b:bd:23:f6:44:17:69:b8:5b:ae:31:73:a5:22:0e:52:
9d:66:26:fc:bd:2c:f4:7e:cc:3d:89:ee:75:95:29:2d:2d:37:
20:28:f1:44:42:7e:75:75:1d:f8:46:ce:ee:91:a5:37:94:ab:
99:ef:ca:2f:f5:4c:7e:c2:99:9d:c7:e8:d4:10:2a:ba:6a:af:
d1:58:1f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 07:15:48 2025 by rpki-client