Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
File: iBLpJPysuGLPO2T1bnZ7wybyf8o.mft (raw, json)
Hash identifier: bQ4asQeKl5qCrVgx0Meg+mr5btY0mqGktOLZjFlxIFg=
Subject key identifier: 70:B7:42:47:4E:EE:FB:3E:8B:37:90:8A:26:A3:C9:90:73:D5:A6:E4
Authority key identifier: 88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
Certificate issuer: /CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Certificate serial: 019A7301500AE3BADCAFDE63C819CDEC8D51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 13:00:57 +0000
Manifest this update: Tue 11 Nov 2025 13:00:57 +0000
Manifest next update: Wed 12 Nov 2025 13:00:57 +0000
Files and hashes: 1: QKCpBgruuyz3i6ikVFdg6qQ3F0Y.roa (hash: G88p/gWLQ6tFindRbDEI4oT0jR5gYy6dY2FWfseB5AQ=)
2: iBLpJPysuGLPO2T1bnZ7wybyf8o.crl (hash: qu63AVaSGmU6KhybyeM9lv/hZWb+gqqGl1YsHNPS5gI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:50:0a:e3:ba:dc:af:de:63:c8:19:cd:ec:8d:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Validity
Not Before: Nov 11 13:00:57 2025 GMT
Not After : Nov 12 13:00:57 2025 GMT
Subject: CN=70b742474eeefb3e8b37908a26a3c99073d5a6e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cd:31:d7:a8:90:5c:8c:4f:f7:0c:11:58:0e:
66:d0:41:29:62:43:c8:88:87:3f:e7:93:ed:b5:51:
95:a9:b2:76:ae:86:4b:84:b7:ff:3d:04:63:f2:98:
2a:ca:ea:fd:83:62:c5:c3:96:16:4d:27:6d:32:6d:
bc:eb:80:b5:1a:74:28:d6:1c:2c:c2:1b:9f:73:b0:
b0:e6:52:13:bc:83:d7:7d:df:e3:29:69:17:89:43:
25:a1:70:3b:1d:dd:73:67:2a:27:85:83:33:12:bd:
8a:40:7a:c8:4c:14:70:73:21:b0:fe:c3:69:f4:15:
e7:25:11:23:05:f7:bd:68:1a:8f:50:28:6c:a0:48:
27:0d:ef:ba:13:91:b0:ff:8c:ea:e3:4a:ba:19:e2:
f1:f6:c9:82:80:6b:2e:69:07:72:ab:4d:e6:54:ef:
18:2d:d7:7f:66:d4:71:8e:15:de:59:53:86:31:16:
18:0e:85:1a:86:a6:f2:47:40:6f:bd:d7:7f:f4:e2:
3d:33:1d:13:80:6e:c6:26:f9:2e:0d:eb:fe:5e:57:
23:3f:11:4d:40:e5:61:04:cb:ec:72:ca:ef:20:da:
3f:8a:04:74:1c:44:a3:28:4d:eb:ea:d9:cc:85:19:
40:8d:d5:4e:7b:be:c9:a3:17:96:e3:e2:9b:66:a2:
a4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B7:42:47:4E:EE:FB:3E:8B:37:90:8A:26:A3:C9:90:73:D5:A6:E4
X509v3 Authority Key Identifier:
keyid:88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:16:67:a4:28:aa:97:aa:a3:7f:9d:ad:2f:f3:67:59:7e:57:
24:96:27:c5:00:32:0d:84:38:92:ff:50:8d:be:3d:cc:0e:4e:
24:76:b7:21:d6:ed:ce:b6:bb:63:26:5b:45:52:a6:35:1d:a5:
34:ce:a6:0d:13:97:fe:c1:a0:49:6a:d2:fe:b6:3e:91:26:b9:
69:f1:8d:47:56:13:ba:eb:3b:bf:a9:3f:e6:63:8a:e2:7a:7b:
42:16:1d:ab:0f:40:4d:73:42:8f:22:3c:94:e9:97:42:68:dc:
d3:d1:db:80:4c:df:8d:87:89:ab:8f:b6:77:dd:7d:d3:dc:ba:
41:fa:50:45:c9:93:de:66:3e:e7:c6:0e:19:54:f4:f3:5e:d5:
c7:8a:55:0a:96:95:fa:d1:d8:a0:d3:60:fa:c6:87:cc:b5:5f:
9c:1b:63:0b:bd:83:0f:dc:1f:4a:c4:02:80:c5:32:d1:4f:da:
1e:e9:57:da:b3:9f:80:7b:bb:cf:08:02:e9:ea:71:d7:29:5e:
67:be:d8:ff:16:87:15:2f:bd:9d:d0:9c:64:27:d0:68:58:c7:
a2:e2:9b:37:23:93:5e:f9:db:06:26:01:2e:87:48:7e:36:58:
ca:a4:7a:15:c4:4e:d0:e3:bf:57:05:ad:29:a4:af:69:a9:cd:
57:64:25:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:31:40 2025 by rpki-client