Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
File: iPQfqz5j6vW98HFm31qmgWLq16Y.mft (raw, json)
Hash identifier: xeP5nDOgUEZ/4fC/E9qLymbik8xm5AJdwZnwluV0S2o=
Subject key identifier: E9:0C:93:1A:B7:AE:37:CC:02:FD:38:9F:5B:98:A3:0E:32:0A:87:82
Authority key identifier: 88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
Certificate issuer: /CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Certificate serial: 01992255EA4C394D2FF4397A1913C7018216
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 04:01:19 +0000
Manifest this update: Sun 07 Sep 2025 04:01:19 +0000
Manifest next update: Mon 08 Sep 2025 04:01:19 +0000
Files and hashes: 1: iPQfqz5j6vW98HFm31qmgWLq16Y.crl (hash: cVOcqlhVl8feaEn2sDRlPs5OoZ6yGv3FfOubFy6eUbw=)
2: uNj0vhcUK_UhfSxrxVZLYp2n6nk.roa (hash: xTRc4Rd4GJsupl0R/CzG6nNJAwdCcx0IPu8T4AbYP1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:ea:4c:39:4d:2f:f4:39:7a:19:13:c7:01:82:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Validity
Not Before: Sep 7 04:01:19 2025 GMT
Not After : Sep 8 04:01:19 2025 GMT
Subject: CN=e90c931ab7ae37cc02fd389f5b98a30e320a8782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:dd:cd:0f:24:1f:41:57:df:52:35:71:66:72:
a0:45:00:1c:cd:b6:69:88:87:b2:9f:87:b5:1f:49:
02:5b:fc:2a:0a:11:25:ef:dd:4c:49:e4:d4:3e:75:
b0:3c:a3:31:97:a6:a7:db:e4:e4:b4:8d:4e:ce:f1:
9c:8e:4a:81:b3:b1:3a:f9:d4:92:1a:8f:db:35:4e:
4c:2d:70:7c:66:e4:cc:de:63:ad:87:be:c3:ab:26:
df:f0:b5:0a:df:b9:76:b4:e3:bb:a8:52:04:a8:82:
54:4d:34:9e:c5:e6:45:b5:cf:5a:fb:be:fd:0a:f3:
0a:c5:4f:8b:c7:78:f2:68:76:b5:31:9a:90:dc:07:
06:d9:39:ec:7c:60:30:1d:86:f0:ed:19:31:f5:ed:
8d:f5:fe:89:27:86:94:bc:04:cf:5b:02:c7:d1:90:
dc:c9:6c:5a:63:d0:d5:e1:55:38:bf:6c:99:f4:67:
50:25:d9:6b:6f:c8:2e:b4:e5:bf:38:78:4b:f0:56:
28:20:72:db:8a:f3:c3:74:0a:60:18:9f:33:03:64:
ae:32:41:f4:a8:ef:7d:96:52:cf:53:ad:d7:e6:6e:
68:9d:7c:10:7c:c8:97:b2:01:83:f7:70:9e:77:cf:
5c:38:02:95:c2:e9:c2:35:ca:ee:0e:47:61:56:7b:
5f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0C:93:1A:B7:AE:37:CC:02:FD:38:9F:5B:98:A3:0E:32:0A:87:82
X509v3 Authority Key Identifier:
keyid:88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:e5:a2:4e:14:a2:39:79:45:72:af:36:dd:97:f5:2d:8d:83:
11:61:b1:0c:12:ba:41:0f:ed:63:af:58:90:d0:79:40:9a:0f:
da:9e:29:dc:6b:1f:b3:d5:6d:5e:8c:17:ea:e2:c1:28:e8:9b:
4b:3f:2b:e2:27:d9:b3:54:0c:a6:ed:e3:e4:c1:24:39:65:08:
85:5b:85:e3:2d:ba:08:b5:9d:fe:94:75:ee:87:2d:1d:a6:03:
09:03:73:11:08:de:6f:e5:7d:33:21:9c:f2:12:19:89:02:8a:
fb:60:b9:ba:4a:78:7d:1c:79:ad:23:29:d7:a4:28:0a:c0:fb:
30:e2:70:87:f3:82:9e:a0:c5:e8:e9:53:91:c4:b1:f7:0f:93:
c7:2e:5d:f9:2e:3e:bf:8c:6f:a8:c4:bb:58:0a:6e:a9:97:c0:
fa:b2:51:1e:2f:4e:8f:78:c3:4b:2d:0b:e9:52:1b:5a:8a:7d:
74:7f:c2:ff:bb:65:94:89:76:20:d6:3f:8a:cd:58:2b:d7:e7:
6e:40:96:2e:06:d6:f4:9f:6d:08:4b:f7:1a:45:60:5f:0e:28:
fe:3b:e7:8e:50:d1:b7:dd:d9:f7:67:1e:b3:87:e5:16:dc:c6:
a6:b0:87:17:a5:06:73:21:ac:73:9c:67:d6:3d:98:f3:23:4f:
87:cc:bc:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:11 2025 by rpki-client