Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
File: IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft (raw, json)
Hash identifier: fpF/YoPmsEMF1zIST4IDnVrkMhtffgjaQ62blKfG5kk=
Subject key identifier: E7:61:8A:46:91:D7:A6:4B:60:2F:D0:71:58:77:A8:6E:39:B5:BF:E3
Authority key identifier: 20:7E:90:D6:2D:E2:C7:27:CD:45:39:A2:F0:70:C4:E9:1D:F3:2B:B4
Certificate issuer: /CN=207e90d62de2c727cd4539a2f070c4e91df32bb4
Certificate serial: 019A71B7A4E24F029D838BFEFFCB3E0B71D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
Manifest number: 0363
Signing time: Tue 11 Nov 2025 07:00:51 +0000
Manifest this update: Tue 11 Nov 2025 07:00:51 +0000
Manifest next update: Wed 12 Nov 2025 07:00:51 +0000
Files and hashes: 1: IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl (hash: a2aiAGsstM/u/7steNOOy7+GZoVo9GFJd072dK2v2bo=)
2: QpNcCoA4Z5ottRskUsrVfwUI5R4.roa (hash: 3Ookyfb7wHO7/58EMfYEHBR9Z8xGK4lUfT1UByxh2SI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:a4:e2:4f:02:9d:83:8b:fe:ff:cb:3e:0b:71:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207e90d62de2c727cd4539a2f070c4e91df32bb4
Validity
Not Before: Nov 11 07:00:51 2025 GMT
Not After : Nov 12 07:00:51 2025 GMT
Subject: CN=e7618a4691d7a64b602fd0715877a86e39b5bfe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e7:f3:38:f4:d2:8e:be:fc:f8:3b:aa:f7:8c:
0d:7f:18:b7:98:88:24:35:7a:8f:ab:42:c4:ef:5e:
c5:1c:5c:7a:13:7d:ac:bb:47:53:81:94:51:e2:6d:
b4:6a:08:61:eb:d4:d8:bd:59:b6:34:fa:08:8a:4d:
aa:95:3b:42:25:64:39:0f:a6:5d:bc:05:b9:2a:e8:
f1:ed:4d:93:f6:ef:49:6b:32:3d:79:37:3a:38:f1:
5d:61:30:df:43:c9:cd:cb:73:07:6a:4b:e5:6d:b1:
04:83:0d:d6:39:8c:ea:71:cf:af:22:09:0f:37:c2:
2e:01:c8:59:a1:5b:88:34:a8:c7:6f:80:ea:b9:e0:
e9:4f:96:34:a6:eb:18:74:e0:1e:48:95:28:7e:9c:
de:ff:68:7e:86:65:e0:32:87:03:f7:3d:87:3b:99:
f9:86:87:09:35:30:73:62:0f:d5:9e:fe:4d:9b:4b:
fb:60:62:7d:28:a2:01:80:95:26:0c:78:28:e3:f8:
66:46:b6:5c:c4:9f:d8:17:09:1e:56:82:69:e3:d0:
5f:ff:a7:42:f1:52:4d:a3:5d:b4:74:73:3e:3b:19:
fb:db:f2:cf:f9:48:09:5d:7d:38:db:19:d5:15:a4:
d4:d1:a6:86:c6:c5:61:18:fa:8f:61:46:d6:af:6c:
7b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:61:8A:46:91:D7:A6:4B:60:2F:D0:71:58:77:A8:6E:39:B5:BF:E3
X509v3 Authority Key Identifier:
keyid:20:7E:90:D6:2D:E2:C7:27:CD:45:39:A2:F0:70:C4:E9:1D:F3:2B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/24e3d0-b556-4888-9f6f-fbe68ff627b2/1/IH6Q1i3ixyfNRTmi8HDE6R3zK7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:ff:ea:4e:1b:aa:20:3b:bf:92:a8:ea:5e:57:6b:42:8c:36:
56:cf:35:a9:8b:e0:99:50:c6:3b:cd:20:f8:88:04:ca:16:19:
bc:52:02:f3:e3:57:45:99:77:9f:ac:4b:44:75:f2:19:17:b6:
9c:25:67:28:e7:76:ae:ed:80:21:a4:42:6d:a0:90:09:0c:50:
db:8b:5e:7b:4d:25:f3:34:61:6c:fd:c6:5b:dc:37:6c:ce:10:
51:dd:e0:52:3c:f6:17:c4:a8:e0:bb:08:06:bc:4d:49:fa:5b:
ae:bb:60:9c:d3:bd:5b:b3:5d:34:42:5d:b1:bf:7f:21:2d:83:
8e:0d:9d:d5:1d:9f:30:6d:86:c2:30:ae:b8:33:81:aa:00:5a:
49:de:7b:33:ba:22:a9:36:44:29:e1:b7:b1:d7:5c:12:89:82:
24:5b:3f:04:26:75:a9:87:c5:e3:f1:8a:03:8e:7b:6a:8c:02:
a3:ef:f0:5c:59:11:34:a2:f6:e6:f7:6d:f9:7a:5a:38:15:0e:
b0:dc:aa:18:38:7a:68:6d:ae:0f:a1:13:e8:2e:43:6a:28:44:
ad:2b:e9:b6:8d:fb:3d:c0:db:01:c7:99:1c:51:78:ab:ad:ac:
98:18:45:29:4e:07:31:08:3f:ad:1e:d7:0d:9c:dc:00:6f:eb:
77:90:51:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:53:02 2025 by rpki-client