Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
File: iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft (raw, json)
Hash identifier: 2itwdF3jhWopFUoSU2C4CbMh3lXWqgBN3S6/jh0DLPM=
Subject key identifier: B2:BE:B9:29:35:17:C4:C2:C5:85:DE:B1:72:EB:4A:8F:00:41:65:F3
Authority key identifier: 88:E8:82:BF:96:4F:70:92:C4:3C:DC:F7:55:0D:E9:56:2C:26:A0:28
Certificate issuer: /CN=88e882bf964f7092c43cdcf7550de9562c26a028
Certificate serial: 0199FDD9623D89B944F3DA51958F75A738BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
Manifest number: 0333
Signing time: Sun 19 Oct 2025 19:01:46 +0000
Manifest this update: Sun 19 Oct 2025 19:01:46 +0000
Manifest next update: Mon 20 Oct 2025 19:01:46 +0000
Files and hashes: 1: UZVUY94sqKLEh0icWoOQh0bntwI.roa (hash: vpvG9SY3H1VjvlXeI35sSNyZFm3fdFFooAVPM0TU2c0=)
2: iOiCv5ZPcJLEPNz3VQ3pViwmoCg.crl (hash: jwV5MvGGt01MPTrB0A8rRUH4ugOaL2aDIC1AJzCHh0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:62:3d:89:b9:44:f3:da:51:95:8f:75:a7:38:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e882bf964f7092c43cdcf7550de9562c26a028
Validity
Not Before: Oct 19 19:01:46 2025 GMT
Not After : Oct 20 19:01:46 2025 GMT
Subject: CN=b2beb9293517c4c2c585deb172eb4a8f004165f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:42:89:cb:ea:b8:ff:c5:c0:ae:5f:6e:4a:0d:
71:37:69:a3:84:14:05:75:1f:88:2b:68:58:f0:d4:
4b:b8:ba:0e:1f:37:9b:d3:f9:78:f5:96:c1:82:12:
3a:bd:6a:0c:63:61:59:43:39:58:0a:43:f8:dd:46:
20:d2:05:87:de:f4:e9:e8:a5:3b:9a:fd:ec:43:76:
bb:eb:6a:ab:b4:b6:34:98:6b:7d:94:b6:0d:dd:a8:
22:0e:17:a3:5e:91:db:7f:af:1d:97:60:cb:b9:ca:
1a:31:29:44:d5:4f:87:64:fc:4c:c7:38:33:1b:58:
eb:be:9c:2d:7a:ab:08:41:eb:53:a3:98:9e:69:a4:
da:09:ef:cb:2a:07:7f:3d:2a:bc:52:4b:6e:90:60:
a5:0a:09:6b:c4:4b:28:bc:c0:a7:1f:dd:cb:54:07:
98:7f:67:76:d8:22:11:f0:81:79:da:22:1c:b7:16:
47:a6:ca:2c:6f:8a:72:64:f8:8b:c9:03:f6:8e:03:
49:bf:5c:f2:ca:9c:54:1b:e6:cf:04:38:8e:7c:35:
c8:d3:fe:23:7c:61:2c:93:1f:30:7c:88:3e:b6:c2:
1e:a3:5b:ac:a1:a0:0f:ff:67:e9:2d:13:7f:f2:7c:
be:06:31:c4:54:ee:93:df:2c:21:28:a6:8e:21:53:
fc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:BE:B9:29:35:17:C4:C2:C5:85:DE:B1:72:EB:4A:8F:00:41:65:F3
X509v3 Authority Key Identifier:
keyid:88:E8:82:BF:96:4F:70:92:C4:3C:DC:F7:55:0D:E9:56:2C:26:A0:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbff8f-0fcb-487d-8115-de7590f3f6b8/1/iOiCv5ZPcJLEPNz3VQ3pViwmoCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:ac:33:63:10:c2:f2:6c:5f:c1:c8:7c:3e:35:a9:39:41:e1:
aa:74:c0:04:ed:88:0b:f4:e4:f8:51:3d:4a:3d:df:e5:ed:ec:
81:10:1e:1c:61:fe:e8:7c:a0:d2:7d:b9:51:7f:0b:2f:8d:9c:
f7:fe:ec:a3:60:77:10:26:e2:85:2a:e6:83:b3:71:05:8c:1a:
0f:a9:57:5c:49:a1:8b:10:e0:88:f1:9f:76:0c:e0:3b:69:e7:
ea:b1:64:5a:50:f9:36:85:35:6c:9e:df:f3:ab:2a:68:97:51:
3e:08:64:86:b6:c2:40:83:46:5d:05:5d:f3:ca:2b:fa:eb:35:
b1:62:00:5a:f7:7e:f3:55:08:92:a0:e1:05:d8:3f:d6:52:c5:
04:dd:b9:67:c2:a8:0c:b6:a5:2a:18:2b:1c:0d:94:d9:a0:5a:
3e:73:cd:e6:aa:15:35:28:0d:e5:45:8a:ed:f7:8e:97:96:8d:
dd:15:f6:dc:fd:a6:d1:90:4e:4f:8c:1e:a3:35:03:70:52:f4:
28:85:db:32:42:f9:3e:86:da:e9:d9:91:68:55:c4:5a:74:a2:
09:0c:ee:7b:bc:19:56:a5:3f:f9:f3:e9:4c:58:5e:e2:9a:e4:
66:11:64:75:80:f0:2f:10:47:bc:ac:af:3b:c5:09:5e:05:6e:
1c:d1:3f:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:38:51 2025 by rpki-client