Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
File: 1ITgzuV1xhkFP47isQBMxEL9LO0.mft (raw, json)
Hash identifier: v1sa4apFJQmv0l0znPdHJ55nTh/OZjzqEQkTcafOvJA=
Subject key identifier: 94:9F:41:F5:77:33:C3:30:BF:5C:CD:38:04:40:1B:25:7F:99:F1:D3
Authority key identifier: D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED
Certificate issuer: /CN=d484e0cee575c619053f8ee2b1004cc442fd2ced
Certificate serial: 019A266661E1B9B29BBF4994011A390548CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
Manifest number: 1521
Signing time: Mon 27 Oct 2025 16:00:35 +0000
Manifest this update: Mon 27 Oct 2025 16:00:35 +0000
Manifest next update: Tue 28 Oct 2025 16:00:35 +0000
Files and hashes: 1: 1ITgzuV1xhkFP47isQBMxEL9LO0.crl (hash: cU8nb1ovlPrYO9/cseOIAbuauxcMboHG6zawhXn1zO8=)
2: LlAa--5nsX3tUHGAFZ_HSMFrn7I.roa (hash: 3b1C9Ph3SGavY+PSGpBTlLw28V2WqXhlaeYP73oghL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:66:61:e1:b9:b2:9b:bf:49:94:01:1a:39:05:48:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d484e0cee575c619053f8ee2b1004cc442fd2ced
Validity
Not Before: Oct 27 16:00:35 2025 GMT
Not After : Oct 28 16:00:35 2025 GMT
Subject: CN=949f41f57733c330bf5ccd3804401b257f99f1d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:87:28:19:38:da:54:ad:ff:05:b7:4a:fc:ff:
fc:ea:f7:2c:bc:9a:97:52:c8:c1:26:a1:5f:1e:b2:
7e:01:a9:71:d8:1f:10:90:4b:a1:f1:b8:93:94:c8:
9c:d8:d9:c2:b6:61:8d:63:7c:e6:a6:38:73:2f:d5:
94:af:fb:3b:cc:82:bc:96:47:54:a4:de:60:4c:83:
c8:36:05:5d:8b:ed:ee:89:a5:74:de:45:c2:65:99:
25:f8:a0:53:d2:80:07:a2:e8:72:35:1e:c5:8c:59:
1b:fb:ef:72:80:c8:5c:c4:08:0a:19:44:91:9d:68:
65:fd:e7:3e:3b:3a:af:eb:7a:60:03:54:4a:37:e6:
a1:9d:d2:57:88:df:60:8b:e3:cd:23:75:55:97:2d:
92:77:a3:ec:6a:13:53:67:b4:cd:73:eb:f5:65:60:
00:c2:d7:42:3c:3e:21:7a:a9:a1:26:a3:f4:83:ef:
72:7d:54:9d:b7:23:f9:4d:83:8b:ce:95:ad:04:7e:
26:79:3e:52:5f:bb:ba:0d:24:68:e3:d6:99:8b:0d:
fb:53:7f:81:c4:fc:9c:23:ed:9e:34:c7:46:b9:2f:
7e:59:1c:15:99:98:65:c5:94:ba:a9:a7:d0:68:8b:
99:3a:8f:f5:d5:17:ff:3d:97:b6:64:2c:cd:8d:3c:
63:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:9F:41:F5:77:33:C3:30:BF:5C:CD:38:04:40:1B:25:7F:99:F1:D3
X509v3 Authority Key Identifier:
keyid:D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:25:84:31:07:de:5d:1b:30:c2:31:a6:d5:a3:08:84:bc:4b:
97:14:56:67:94:05:cc:f6:0d:c2:01:26:09:a6:7f:4b:30:e4:
ca:06:a9:8a:99:fd:64:5e:e4:54:fd:ee:a8:89:42:0c:ee:9b:
88:92:b3:d6:a7:ce:d8:36:a9:a6:0d:5d:0a:cf:46:ab:db:5e:
3d:8f:d9:98:49:3b:ec:03:80:e8:9c:64:cc:44:90:f4:e1:23:
aa:77:88:73:f6:35:a1:0d:f9:c1:b6:06:ea:57:e9:cc:c7:0d:
5d:54:c8:90:4f:8b:12:37:55:09:b4:f9:d7:47:00:97:7c:dc:
d9:1d:29:6b:ad:a3:b2:8c:68:b7:64:59:7a:96:06:00:86:ec:
24:44:de:e3:a4:66:42:0d:aa:25:2b:0f:8a:7d:49:6a:c6:f6:
72:8d:35:f2:2c:eb:56:7e:ad:b5:25:62:30:57:12:4b:15:74:
91:cd:b3:95:7d:34:06:2c:09:41:26:2b:b2:79:1e:56:a3:17:
7c:aa:22:4a:0d:36:b0:66:e4:be:16:96:1b:78:1a:53:07:71:
28:19:28:82:cd:b8:a3:6b:6a:79:a1:57:92:c9:35:18:cd:97:
f1:91:b8:cd:b9:00:73:fe:26:01:c1:af:15:7d:9b:78:25:ce:
78:61:a2:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 18:17:46 2025 by rpki-client