Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.mft
File: Icsqw3f8YD-V-uzFSsfVkPLMMZ0.mft (raw, json)
Hash identifier: If0NpixGIcsy25HZbN3gHfnmaT3BRA+vVhf0PLAdxpc=
Subject key identifier: 4E:F1:83:41:CC:66:94:B2:D7:4B:49:F0:C3:4A:DA:5A:3E:C0:54:82
Authority key identifier: 21:CB:2A:C3:77:FC:60:3F:95:FA:EC:C5:4A:C7:D5:90:F2:CC:31:9D
Certificate issuer: /CN=21cb2ac377fc603f95faecc54ac7d590f2cc319d
Certificate serial: 019A405CE44C7C2F237D8FE758EFA2EF539E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.mft
Manifest number: 0E8B
Signing time: Sat 01 Nov 2025 17:00:20 +0000
Manifest this update: Sat 01 Nov 2025 17:00:20 +0000
Manifest next update: Sun 02 Nov 2025 17:00:20 +0000
Files and hashes: 1: 1aXSgr_gUgovXfJiITFePiXzxSk.roa (hash: jkxbT1LZqZ8DIR9TrEhNrVWEu3vyrY3VEx/71A/Vpxo=)
2: 9bZMaVRDUPty_7efLT2YpkpIYcM.roa (hash: CtsPPucmvohErAHToYEeV/HheWSPpHxQEHc0Z1mOfCU=)
3: AtctRtEqNWKPB5rlQKlPqC6yWDs.roa (hash: 05XetyyHEDIPnW6uLoBtl5Z9uPB/DAO88wvWzPJ/MPs=)
4: Icsqw3f8YD-V-uzFSsfVkPLMMZ0.crl (hash: iiW8La7hFUZqxCkwJYXkqTXG4+3TT1soufp3w4pR5Sg=)
5: PSBx1Ap1dSVwu4S3zItuhXFXT84.roa (hash: BJW2moxRlz3fWDKj7aaF6fzBur3RzPQUthWd7EvMjfQ=)
6: Yv5Vb1UYXxXLpSQFLwUNvoBL1uk.roa (hash: zQenlhAbszJDRqh2xIFTp2RhN0nwTs4w2oT1T/Kp9dM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:40:5c:e4:4c:7c:2f:23:7d:8f:e7:58:ef:a2:ef:53:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21cb2ac377fc603f95faecc54ac7d590f2cc319d
Validity
Not Before: Nov 1 17:00:20 2025 GMT
Not After : Nov 2 17:00:20 2025 GMT
Subject: CN=4ef18341cc6694b2d74b49f0c34ada5a3ec05482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:38:e4:06:01:03:a8:64:02:ab:d3:e1:b5:e2:
72:48:5b:b1:1f:5c:51:b4:c9:78:bb:f3:a1:fe:f0:
7f:71:9c:40:4a:fe:65:2b:11:6b:25:a1:66:d3:34:
31:f9:19:5d:3e:b5:1a:0a:2f:6f:a2:ca:78:30:fb:
84:eb:28:6a:e5:d3:4c:ce:82:d3:e7:90:bf:3b:df:
c6:ac:6d:94:24:5b:2d:6a:0c:b6:6d:e1:bf:55:3e:
a1:7b:58:86:24:cf:4b:ef:77:97:46:e4:50:ba:ba:
f2:de:d6:39:bb:93:3b:7a:a6:77:90:15:12:8a:98:
7f:10:e9:86:0d:ed:3f:47:29:93:d4:34:a8:4d:d1:
a4:23:8a:66:52:46:d9:a5:c2:81:b6:c6:57:25:92:
10:6a:e2:a0:1a:85:16:92:cb:32:9c:82:0c:01:42:
0e:b7:68:e7:30:63:e4:16:d0:22:83:f8:fe:cc:52:
7c:de:f6:ea:b5:0f:e5:14:96:e7:59:a3:36:a6:9f:
0f:3f:75:09:8e:69:1b:db:fc:0f:5a:2e:82:2a:72:
89:aa:6f:1e:61:d5:47:9f:55:0e:36:5d:fe:87:d3:
85:04:59:23:77:71:5a:56:3f:dd:01:49:b9:db:c6:
c5:f8:81:3d:02:bd:db:c0:45:1d:b6:67:ea:fd:35:
4d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F1:83:41:CC:66:94:B2:D7:4B:49:F0:C3:4A:DA:5A:3E:C0:54:82
X509v3 Authority Key Identifier:
keyid:21:CB:2A:C3:77:FC:60:3F:95:FA:EC:C5:4A:C7:D5:90:F2:CC:31:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/67c21d-0e92-4242-994e-fb40d6da2468/1/Icsqw3f8YD-V-uzFSsfVkPLMMZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:a2:ee:97:06:ab:6e:56:83:b2:e9:a8:c5:7d:42:87:73:16:
62:f7:fa:79:ca:b2:fb:10:34:ed:78:1e:ec:c2:86:99:e5:b8:
5a:b5:30:82:2f:3f:f9:a3:7f:88:3c:9b:1c:ce:05:f8:bc:29:
f1:60:5a:a9:8a:ec:c1:0b:4a:e1:5b:49:1c:b1:50:d0:fb:88:
46:e6:b8:05:ed:15:5e:8b:b8:53:ca:85:13:7e:70:8a:b6:10:
86:5b:46:74:77:53:a8:c3:d8:4e:fb:10:cf:b8:9d:c8:a0:15:
5f:b4:20:98:0a:4d:30:61:01:07:9a:db:52:5b:e6:b1:a8:16:
72:f6:da:b2:a7:d5:55:6a:8e:fd:20:5f:49:f3:5e:28:45:f1:
af:b4:87:51:9a:7a:17:9d:f6:54:0d:d5:16:6b:45:dc:e5:f3:
77:6d:9b:32:9f:4d:45:f5:26:41:ef:63:44:30:80:29:23:a6:
37:5f:26:7b:ca:c9:d4:ca:52:64:ee:5f:83:88:7d:a6:d5:5d:
60:e8:89:46:03:22:33:72:d8:aa:8a:14:0e:76:62:da:19:ae:
ef:ba:3b:cb:36:8e:12:04:92:61:ef:6d:dc:3d:ea:b2:9d:2e:
77:40:62:a4:fe:51:2e:fe:73:ce:37:d9:e4:0f:08:bc:10:65:
cc:c7:01:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 1 19:47:53 2025 by rpki-client