Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
File: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft (raw, json)
Hash identifier: vNrFKjwl4/1q0T267FkkQ/rZpkcvIiQFP48fcRtFnWg=
Subject key identifier: BB:54:B8:B2:E4:D7:14:D1:F9:4B:DF:E1:99:16:16:D9:39:A6:3B:11
Authority key identifier: 21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
Certificate issuer: /CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Certificate serial: 019A706E1882A7312D50EA52FA3E15F960D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
Manifest number: 06E1
Signing time: Tue 11 Nov 2025 01:00:54 +0000
Manifest this update: Tue 11 Nov 2025 01:00:54 +0000
Manifest next update: Wed 12 Nov 2025 01:00:54 +0000
Files and hashes: 1: BkDrM4-atcp10Br--qbvg_yK1zg.roa (hash: OQTXLqdYWvwdj8zXSXiFu8x5dJlCSPxgy4/Qhi1Yohc=)
2: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl (hash: vwpxMjCCdHidexAaCEhrgOdDAWlNBnO3LtFoQTzBSnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 01:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:6e:18:82:a7:31:2d:50:ea:52:fa:3e:15:f9:60:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Validity
Not Before: Nov 11 01:00:54 2025 GMT
Not After : Nov 12 01:00:54 2025 GMT
Subject: CN=bb54b8b2e4d714d1f94bdfe1991616d939a63b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:93:9b:04:e1:57:a4:8c:39:e8:a5:2e:23:d8:
ea:f0:d7:25:62:b0:4f:23:76:e0:f0:c9:39:b1:df:
86:b5:6e:fc:bc:44:d9:36:a8:b1:38:d9:0a:ae:53:
17:4e:60:df:66:7e:b9:8e:6d:20:ba:14:15:7d:c5:
a9:26:e6:a5:57:9f:2f:09:66:38:e5:cd:12:be:93:
4b:ab:d7:6b:8c:fa:56:c1:00:79:80:1b:95:fe:52:
31:3e:37:0a:a1:0e:75:7d:ce:b6:e3:53:6b:e6:67:
31:90:5b:82:00:14:4c:4e:26:09:bf:64:df:98:3a:
4d:59:36:d2:13:d2:a4:41:5c:38:28:2f:e6:f6:05:
fe:0b:44:87:6b:25:3d:1a:0e:78:7d:91:4b:6c:1c:
82:b1:ec:8e:43:6b:e2:66:60:d2:62:12:48:92:62:
e7:cd:92:fb:82:c6:77:88:bb:cc:fa:f5:10:e7:7c:
97:37:43:25:5a:b9:21:74:a7:7a:18:3e:b9:df:30:
eb:c3:b4:7c:84:bb:03:52:22:2d:45:55:d2:2e:8f:
16:6f:75:4c:d0:aa:93:5a:a9:28:f9:b0:84:5b:30:
97:74:de:8e:dc:18:70:3e:74:ed:e1:10:66:ed:d2:
58:83:4e:d9:01:12:c1:9b:51:b6:4c:08:1e:28:60:
cf:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:54:B8:B2:E4:D7:14:D1:F9:4B:DF:E1:99:16:16:D9:39:A6:3B:11
X509v3 Authority Key Identifier:
keyid:21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:41:db:79:46:0a:93:8a:c2:00:61:9b:c1:f8:cd:a3:45:dd:
99:21:ff:bb:c9:7d:10:20:90:5a:c9:43:dd:10:f4:27:7a:79:
c4:a6:a0:cd:11:67:9d:29:b7:d2:22:a7:e9:34:1b:6e:f1:73:
2d:fe:1a:29:ba:de:0e:df:6d:33:e5:94:38:fb:87:37:3c:4e:
4f:aa:4d:7c:89:57:4d:f2:79:2f:e6:0b:a4:c0:10:17:e9:a1:
59:2c:a1:30:a1:a7:9c:99:68:e4:35:9f:6e:4f:e6:2b:8f:2e:
c7:7f:25:94:1a:20:69:9e:94:7a:de:f6:c6:0d:6f:53:0f:a6:
34:af:fa:6f:c5:fc:5e:e1:d4:1b:91:74:04:83:cd:73:2d:26:
13:0f:c7:9a:cd:6a:7c:fa:68:29:ec:6d:c2:d9:08:f7:28:32:
75:bc:c4:b5:6c:28:9c:b8:72:2c:78:9e:aa:26:2c:e0:1d:fc:
45:c4:69:7f:5b:d2:a6:35:2c:65:d8:58:13:ff:37:d1:b5:28:
91:4a:b4:b1:cb:30:f1:ff:1b:cb:a4:d3:ed:8e:3a:61:64:fd:
6c:1f:d9:f2:e0:c6:7d:f9:ae:06:d9:d2:55:72:d4:62:ed:0e:
bb:35:be:5b:2e:6b:0c:d5:7a:03:1e:f9:bd:b2:ac:85:0c:77:
7b:ea:54:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:40 2025 by rpki-client