Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier: 67hr/5+QLgYOr/UO9ac5Wz9DmUVpbnKRkc8RUjmLhj4=
Subject key identifier: 65:DE:BB:F1:F2:71:77:AA:5F:EC:7B:07:C5:24:14:DE:11:02:20:AF
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial: 0199225561AC41660518B6D369519143B992
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number: 0E0F
Signing time: Sun 07 Sep 2025 04:00:44 +0000
Manifest this update: Sun 07 Sep 2025 04:00:44 +0000
Manifest next update: Mon 08 Sep 2025 04:00:44 +0000
Files and hashes: 1: P5TwA4gqR6DNAZ9Tx38K6wVBeSw.roa (hash: JFHWlXs6ts8+WEohOsphMs0bmJPDZeURLkqEXMqad1U=)
2: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: Fa9V2zX/W/dNXBw+6HmsbPFBgywnPCAE+coC1VdiTrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:61:ac:41:66:05:18:b6:d3:69:51:91:43:b9:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Validity
Not Before: Sep 7 04:00:44 2025 GMT
Not After : Sep 8 04:00:44 2025 GMT
Subject: CN=65debbf1f27177aa5fec7b07c52414de110220af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:de:7d:bb:40:d4:e1:64:58:72:6c:3f:ea:a3:
45:c0:51:aa:1c:1a:53:dc:9f:7d:7c:c7:e0:56:65:
f4:21:7c:b8:c5:4f:a8:40:1f:9b:86:ee:4f:c9:8f:
44:f3:7c:94:3b:ce:ea:d2:8a:83:71:00:95:ca:b7:
28:f6:85:52:a7:50:30:20:59:bd:48:27:5f:0e:44:
f1:93:d7:9e:ff:01:74:ef:cc:cf:47:0e:42:2f:01:
25:19:83:76:13:60:1f:07:b0:0d:aa:4e:55:2f:88:
1f:e9:e3:15:7b:38:15:92:67:f0:62:9c:a5:58:7f:
27:9c:af:6a:06:8a:27:9b:b8:40:fe:04:48:d4:32:
ad:d7:b6:48:5f:01:32:9a:8d:66:a4:f1:e2:69:ac:
50:28:3c:23:9a:25:08:b8:2b:fd:99:e5:e7:42:1f:
0f:fe:69:30:95:89:3b:96:ca:85:9a:38:e1:48:c2:
1c:4f:50:48:78:47:96:80:90:18:7e:05:7e:86:cc:
4a:69:ee:b5:09:f8:66:9e:29:2f:18:5c:aa:c5:4b:
c1:d3:ae:08:6a:08:aa:83:b2:5c:b6:7b:9b:9b:10:
3b:a8:3b:8b:96:98:7f:c6:fc:bc:ef:75:c1:4f:bf:
6b:43:4f:1f:93:3e:12:6a:20:c0:e0:db:cf:16:e3:
9b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:DE:BB:F1:F2:71:77:AA:5F:EC:7B:07:C5:24:14:DE:11:02:20:AF
X509v3 Authority Key Identifier:
keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:81:a5:cd:0e:2a:29:4c:b6:f5:f5:61:ad:a4:e2:81:e1:cd:
56:02:71:70:9e:54:af:bb:4f:b0:b2:65:0b:08:31:ff:9d:9b:
bd:38:0f:ba:0f:2d:0c:ac:c9:0d:0c:d3:16:6f:b7:76:4b:11:
73:eb:3c:1c:2a:f3:18:41:7e:ed:14:9d:79:96:e5:02:db:9e:
29:9c:af:b8:93:68:e7:51:f1:fd:c6:f2:b4:91:57:fd:56:f9:
d9:57:c8:d8:50:51:36:2e:06:f3:9e:f7:7d:bd:a0:13:31:39:
17:e2:3e:ea:18:cc:a4:82:42:60:ad:64:b9:76:54:f0:31:f5:
10:03:d2:fb:2a:b4:03:4f:e4:16:09:74:9c:38:62:23:1a:68:
a8:0c:db:83:8b:10:db:3b:29:d6:49:f2:f5:62:cc:f8:f9:95:
86:50:39:be:74:bf:70:d4:8a:5b:67:2c:3b:5c:d7:b7:7b:5a:
fc:c1:5f:e8:6b:a5:ae:59:84:fa:ce:1e:b3:1d:b0:0b:b1:7f:
a9:48:64:7a:95:f7:5e:6f:38:b3:d5:4d:3c:35:26:26:64:18:
04:5e:d9:d0:e6:58:54:ff:34:ee:18:22:33:f3:5e:f3:ca:b5:
c9:47:d1:cd:1b:c7:43:13:28:52:48:26:c9:42:05:38:aa:74:
fa:d4:bf:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:08:16 2025 by rpki-client