Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: p+Z4kluWcPXVS6pCmRNhsxzr0oCnkI0d2hTaMjY5z/s=
Subject key identifier: BB:97:94:4D:79:7A:B5:32:4B:CC:1A:1D:CD:39:72:85:0A:3F:DE:F1
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019A1F883ECE391E5B825FEFF59F507627E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 0EEF
Signing time: Sun 26 Oct 2025 08:00:13 +0000
Manifest this update: Sun 26 Oct 2025 08:00:13 +0000
Manifest next update: Mon 27 Oct 2025 08:00:13 +0000
Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=)
2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: 7tzmuG/2r6fLd3DNOSS9X1pxXMgXByy45S2WbGiIYNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:88:3e:ce:39:1e:5b:82:5f:ef:f5:9f:50:76:27:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Oct 26 08:00:13 2025 GMT
Not After : Oct 27 08:00:13 2025 GMT
Subject: CN=bb97944d797ab5324bcc1a1dcd3972850a3fdef1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a6:37:3f:15:b2:9c:68:2d:cd:19:60:a5:4b:
27:0c:b0:d2:6f:1c:a5:26:22:5c:7f:a1:09:8b:df:
9d:79:62:f7:48:bc:cc:dd:25:0b:bc:ed:2a:3b:12:
76:12:e9:a5:89:7b:fc:f8:c1:31:d3:1d:b0:d0:61:
c7:b9:21:9f:fe:b3:78:91:89:5b:a5:dc:0f:55:0d:
91:77:f5:a1:c5:6e:89:9a:9b:6b:55:88:9b:50:d8:
a6:ec:34:09:86:5e:87:90:af:82:63:69:ba:96:8d:
1f:51:c0:c2:a9:1a:d6:77:5b:8a:83:b2:67:ed:49:
d3:d1:35:6c:72:6d:29:dd:99:23:39:89:44:fa:6d:
8a:16:15:68:aa:57:fb:5b:45:ae:8f:ad:cc:c8:30:
fe:b6:56:c1:1b:17:11:6c:e6:35:0a:4b:ec:e5:3c:
64:cd:70:9b:eb:b2:e4:e0:8f:67:cc:5a:fb:fb:4b:
0a:40:91:1b:78:2a:3e:23:38:0d:76:26:d2:e0:ac:
57:32:6c:16:59:05:5c:e7:03:db:f4:47:0e:66:ab:
c5:77:3f:e9:28:cd:4e:a2:e4:f8:60:c2:a0:83:06:
26:50:2a:3c:c1:78:91:b8:eb:e5:d0:a0:f7:0b:ff:
e4:d8:5d:b4:a5:fd:be:73:83:2f:7d:5f:78:17:58:
64:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:97:94:4D:79:7A:B5:32:4B:CC:1A:1D:CD:39:72:85:0A:3F:DE:F1
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ba:00:6a:48:62:b0:a1:bb:a9:87:6b:63:0b:d7:db:ee:d3:
4b:3d:91:00:77:29:22:06:7e:dd:ec:56:a7:d0:a0:28:8c:8d:
ce:27:a3:4d:31:0c:da:04:37:fb:58:95:8b:86:65:21:26:c8:
5f:d4:e2:43:ed:5c:07:44:c5:2f:22:e1:91:e3:65:99:7e:c3:
72:b1:3c:3a:b1:00:1e:b4:07:4b:cf:8d:ec:50:f8:9f:d1:03:
eb:4d:8f:3a:80:56:4b:ee:f3:78:7d:33:e1:0b:bc:a1:24:74:
9f:bb:9a:8d:a9:65:18:3c:24:91:d0:5e:49:4c:f8:1c:f9:fb:
b3:dd:9b:19:58:0f:b6:ea:29:d6:27:48:82:89:63:93:86:a8:
cc:f7:55:d2:b9:e5:50:30:49:10:94:c1:19:03:51:7f:00:67:
e8:35:df:c8:99:73:83:d8:43:f7:78:d6:6b:dc:17:25:eb:e0:
06:27:6e:ed:b0:03:d4:a4:07:eb:b9:ea:e5:5e:44:d3:5c:ed:
05:1a:d8:3c:ac:60:df:35:05:7a:1e:10:3e:15:67:d9:19:6c:
27:7f:cc:d4:f5:28:e4:a1:71:67:c8:93:54:5d:bb:ee:af:5b:
90:9c:be:94:1d:30:d1:fb:0e:56:c0:42:7d:84:52:31:7f:aa:
f5:a4:a7:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 10:50:38 2025 by rpki-client