Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
File: IwqhYKbohsED2tvkSyPCd3YFc5E.mft (raw, json)
Hash identifier: Jil2NO0Bp/igpEYq5M0EqEzcUcbA1uFtIa6DXgsaTvE=
Subject key identifier: 19:CA:DC:BE:CC:04:CF:4E:1F:2D:F4:1D:26:F2:35:B2:05:6E:53:95
Authority key identifier: 23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
Certificate issuer: /CN=230aa160a6e886c103dadbe44b23c27776057391
Certificate serial: 019A1C5050A143FC8A62D252302A882027FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
Manifest number: 0E92
Signing time: Sat 25 Oct 2025 17:00:16 +0000
Manifest this update: Sat 25 Oct 2025 17:00:16 +0000
Manifest next update: Sun 26 Oct 2025 17:00:16 +0000
Files and hashes: 1: 1H3wr9EMEu_9kf6Zl38WrkoAkBU.roa (hash: FprWo0wu1rkhWTeCTL4oYKvIo6iA1oIZ1p0P+xAQYGs=)
2: IwqhYKbohsED2tvkSyPCd3YFc5E.crl (hash: cecps0pt0pQw26d3jaIs+AWy+3GT7EE2AsJ8M8LGAb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 11:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:50:50:a1:43:fc:8a:62:d2:52:30:2a:88:20:27:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230aa160a6e886c103dadbe44b23c27776057391
Validity
Not Before: Oct 25 17:00:16 2025 GMT
Not After : Oct 26 17:00:16 2025 GMT
Subject: CN=19cadcbecc04cf4e1f2df41d26f235b2056e5395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e5:bc:e6:ab:5c:b2:e6:92:ae:98:42:45:25:
44:e2:a3:f2:b0:c5:55:b9:93:30:87:5b:d9:1b:6a:
1f:c2:95:07:0f:5b:2b:3b:08:ea:28:d6:02:32:fe:
ac:37:ee:ae:be:b2:22:3c:d0:12:5f:a0:93:d0:5e:
d0:67:ba:75:11:72:d8:b5:c8:71:2f:6e:f4:dc:8f:
7b:d4:5c:67:4b:19:6a:11:11:4e:55:bd:d3:47:e7:
12:53:4c:0f:5d:7e:e2:6a:c5:fa:0c:84:1f:82:d2:
d3:79:ea:96:52:d4:45:ab:54:4e:0d:ab:f0:23:02:
93:cd:56:16:a1:12:89:58:98:ac:0a:1b:3d:6f:71:
3c:1b:e4:a8:1e:23:4c:07:96:15:da:b5:ef:d8:30:
72:45:68:fc:02:ac:81:99:39:29:e0:fd:93:d8:ae:
ec:f8:c0:e1:b0:c4:a7:ab:28:e8:0c:38:99:95:e0:
43:fb:e5:3c:c5:49:88:91:bc:14:1a:54:c8:53:7e:
10:88:df:73:e2:0a:4d:35:ca:9d:7b:f1:cf:8c:79:
4d:7a:74:e7:75:85:1e:1c:99:7c:25:25:6c:5e:41:
c7:26:de:e8:13:76:fa:ce:90:1c:94:af:2d:d1:9d:
5e:ff:1f:a9:c7:27:6d:35:2d:ac:c0:92:9e:91:96:
58:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:CA:DC:BE:CC:04:CF:4E:1F:2D:F4:1D:26:F2:35:B2:05:6E:53:95
X509v3 Authority Key Identifier:
keyid:23:0A:A1:60:A6:E8:86:C1:03:DA:DB:E4:4B:23:C2:77:76:05:73:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwqhYKbohsED2tvkSyPCd3YFc5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6eb54e-e709-4b7a-ade9-a9aeb485d592/1/IwqhYKbohsED2tvkSyPCd3YFc5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:7b:d9:70:12:55:82:0f:8e:c1:4d:ce:c3:2f:b3:61:c7:4a:
bc:53:42:23:82:f4:3e:7f:7a:59:23:9c:b4:b0:55:08:2c:61:
d7:9b:60:c5:76:a1:3f:95:5b:c1:30:d8:2d:9c:4b:14:08:86:
c0:9d:55:52:e4:fd:12:cd:da:1c:a4:28:4f:e0:cf:66:96:af:
13:33:2a:5d:2e:47:7f:e8:0f:4d:57:6d:77:61:ef:c8:db:64:
f6:b1:cd:43:09:7f:61:74:d2:2a:90:5d:8e:fa:7e:c7:00:7c:
c5:f2:63:64:a1:be:c2:42:98:ea:93:1f:6a:8c:35:0d:41:6d:
78:7e:f3:de:2a:ea:43:ce:33:3a:51:3b:2a:19:aa:cc:0c:3f:
dd:2f:df:1f:51:16:49:84:b3:b3:9a:08:da:70:85:50:6e:a1:
f9:c7:37:e0:06:44:27:3b:01:5b:be:f7:9e:5a:4e:18:b8:1d:
da:3a:77:3f:1e:00:73:a4:0a:3e:98:65:62:19:6c:66:97:3e:
db:f6:5f:20:d9:ba:82:f6:f3:43:ed:3c:6d:32:30:9f:0d:9b:
0f:8e:d2:08:fd:5c:0e:54:b7:70:4b:e8:ea:25:a4:c2:90:82:
ac:a5:4d:11:5e:fc:d3:34:0f:ef:ba:f0:6a:ce:89:33:36:a4:
ed:f2:eb:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 21:09:14 2025 by rpki-client