Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
File: ilZohaHW1VRFRs0oXYbE7_6qPCw.mft (raw, json)
Hash identifier: FsvDlj6wuyOtIpovA2M8FvgiAzwrzsxHkLbSp0G0GhI=
Subject key identifier: CF:44:27:64:43:08:67:AA:D4:4F:55:54:A9:18:5C:2C:0C:0B:3F:AF
Authority key identifier: 8A:56:68:85:A1:D6:D5:54:45:46:CD:28:5D:86:C4:EF:FE:AA:3C:2C
Certificate issuer: /CN=8a566885a1d6d5544546cd285d86c4effeaa3c2c
Certificate serial: 019A72CA37476385EE3087D9C5B1457BBA05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilZohaHW1VRFRs0oXYbE7_6qPCw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 12:00:46 +0000
Manifest this update: Tue 11 Nov 2025 12:00:46 +0000
Manifest next update: Wed 12 Nov 2025 12:00:46 +0000
Files and hashes: 1: Lb8vbukOa5hlTRoTkAdj0qnnj8o.roa (hash: gDIkSUwNSGV5eKv6/1wqJs7MzcoYqV9u1fGfL9hM0j0=)
2: ilZohaHW1VRFRs0oXYbE7_6qPCw.crl (hash: 9uFskk/KzxlrBh8QvcIzU8oKZ6bZ+2Ru9qGNnd8yMRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ilZohaHW1VRFRs0oXYbE7_6qPCw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:37:47:63:85:ee:30:87:d9:c5:b1:45:7b:ba:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a566885a1d6d5544546cd285d86c4effeaa3c2c
Validity
Not Before: Nov 11 12:00:46 2025 GMT
Not After : Nov 12 12:00:46 2025 GMT
Subject: CN=cf442764430867aad44f5554a9185c2c0c0b3faf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2e:04:68:ca:62:5e:e0:49:96:39:80:1c:92:
5e:1c:be:10:95:49:c1:15:06:5d:56:91:43:a2:dd:
45:ab:90:8c:b6:db:44:37:72:59:17:c7:6e:f5:bc:
2f:50:9d:0a:81:ac:60:6a:49:c4:c0:c2:a2:3f:0c:
22:19:d3:16:3b:96:fb:5b:04:2d:9b:29:60:55:39:
49:ee:0f:d4:13:a9:35:6e:04:4c:9b:04:e2:e6:a9:
d0:1f:0a:56:e0:02:43:32:c6:72:cb:f4:13:5e:9a:
04:1c:08:a9:10:f6:eb:3d:32:6a:4b:7c:10:98:b6:
a1:79:75:b6:99:b6:5f:63:15:02:c0:21:ee:e6:b5:
dd:ef:42:45:e9:e5:5c:10:bf:d7:c9:ec:07:fb:79:
c8:0a:35:8d:70:f5:29:03:aa:ea:7a:e1:21:e4:30:
61:e9:c2:7a:65:54:d8:35:10:2d:d1:da:76:d1:66:
17:02:57:3a:b3:31:c9:e4:fc:59:99:68:68:96:18:
ce:3e:46:38:94:5e:92:3d:da:eb:72:56:a4:59:24:
06:82:8d:85:d6:5c:f8:58:7f:10:8f:d0:cc:56:41:
ea:c2:2d:bd:26:e1:15:84:08:cc:42:66:37:66:f0:
32:90:a4:51:52:12:05:69:3a:af:ac:0c:d4:9e:e4:
0f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:44:27:64:43:08:67:AA:D4:4F:55:54:A9:18:5C:2C:0C:0B:3F:AF
X509v3 Authority Key Identifier:
keyid:8A:56:68:85:A1:D6:D5:54:45:46:CD:28:5D:86:C4:EF:FE:AA:3C:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilZohaHW1VRFRs0oXYbE7_6qPCw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/dcfbc7-64b8-4c91-89a0-1af05a2237c3/1/ilZohaHW1VRFRs0oXYbE7_6qPCw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:51:e2:d0:3a:9c:d3:da:52:b0:2a:a3:53:7b:30:9d:b7:7f:
d2:6e:6a:c4:1e:5d:ae:aa:cb:86:b0:cf:52:f6:25:18:dc:da:
1a:c8:fd:2b:a9:a0:05:73:59:4c:29:99:51:00:cd:8d:93:6c:
2c:4c:c5:33:38:00:c2:20:f6:1f:47:57:0c:f5:b0:28:89:f7:
ad:cc:32:3b:e8:9d:06:0a:67:18:ad:58:95:a5:38:00:38:14:
90:13:73:1b:30:b9:68:af:00:4d:75:83:c5:b7:39:0b:09:b5:
90:ae:ac:4e:cb:52:9a:da:e0:7a:03:c6:a4:b9:ad:f7:94:a1:
57:a9:cc:38:92:3b:72:c7:11:5a:bf:7d:7c:ba:6f:1a:d9:83:
b1:50:c7:68:64:bf:79:d4:70:3e:fe:64:c4:4d:40:eb:27:2a:
b5:bc:cc:2f:d8:36:2c:04:42:50:f1:a1:5e:2a:2d:59:83:6f:
7a:37:32:c0:3b:46:df:b9:20:78:0d:8b:9a:2d:42:07:9f:c8:
b9:3e:1b:51:bc:d4:c4:47:24:74:24:e7:49:62:aa:16:c8:a2:
df:99:06:0d:b6:ab:4c:7a:d3:62:4b:45:9e:69:bc:f8:64:a6:
3c:97:4d:82:9d:b9:63:0d:42:28:e5:a5:88:bf:ce:db:67:cb:
9f:ce:43:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:26:49 2025 by rpki-client