Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json)
Hash identifier: LxuAhMn4O7KDgLQx7kTQ7yXrgxU/PrTFu1+VzkNdaIk=
Subject key identifier: 72:9A:78:9F:38:5A:36:45:7C:29:CC:42:4E:A8:69:D5:5F:BC:C9:53
Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Certificate serial: 019A7225EDF8C4D502010087F3F77B40B4B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
Manifest number: 05C7
Signing time: Tue 11 Nov 2025 09:01:19 +0000
Manifest this update: Tue 11 Nov 2025 09:01:19 +0000
Manifest next update: Wed 12 Nov 2025 09:01:19 +0000
Files and hashes: 1: XBo1pVVrARNWOJzVGLIS7aXEyvs.roa (hash: LHmi+bbPW6X6RSAyxvQlIttnolx/pGqPJGLDRqAXVIU=)
2: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: Tc7v//MtzqEJSsR4/rSO5VDRiIth5TEDcIRf8sv9Sfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:ed:f8:c4:d5:02:01:00:87:f3:f7:7b:40:b4:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Validity
Not Before: Nov 11 09:01:19 2025 GMT
Not After : Nov 12 09:01:19 2025 GMT
Subject: CN=729a789f385a36457c29cc424ea869d55fbcc953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:05:a5:42:14:57:71:07:81:07:24:a6:4e:01:
10:2c:9b:69:0b:a2:42:4f:ae:5e:42:39:9f:2c:5e:
07:c8:a4:99:8d:ff:5e:e2:63:cc:fc:3f:a0:a5:18:
7a:7d:8d:df:73:f1:78:1f:1e:5e:32:f3:57:ec:6d:
15:78:0c:99:89:b6:77:ea:4e:83:69:b4:a0:2e:28:
b9:69:77:b2:0f:88:25:f3:0b:7f:a6:f8:a0:89:77:
ea:81:a3:23:f9:23:7f:c3:32:d7:19:f9:6d:7d:7d:
d4:62:f2:a0:a3:95:b8:e3:15:33:29:9e:d9:11:89:
41:40:79:06:d2:5c:54:64:e4:40:ba:4e:84:98:1b:
50:b2:4d:00:eb:b7:1f:1f:93:88:de:fc:19:4e:33:
86:43:d6:7f:64:2a:5a:df:b4:e4:45:e0:95:f2:1c:
c3:c6:d9:51:a3:0f:1e:83:c7:63:e3:c9:ae:f6:ea:
24:ba:e4:a9:9d:42:5d:90:7d:a9:cc:0c:bf:c2:81:
94:12:c7:c9:78:c3:df:d0:36:f8:89:bc:3e:05:a3:
5c:f0:e6:bd:76:58:ec:d9:20:d2:5c:d9:56:dd:54:
bf:cd:90:39:bd:4b:70:a6:05:43:8a:a2:cf:66:83:
24:2e:73:8d:c8:cd:6e:2f:09:6e:e4:90:f0:e5:0e:
ae:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:9A:78:9F:38:5A:36:45:7C:29:CC:42:4E:A8:69:D5:5F:BC:C9:53
X509v3 Authority Key Identifier:
keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:8e:10:a9:39:51:ae:82:78:78:7f:ba:b1:71:74:fe:c1:ef:
4e:73:78:d9:08:e3:71:fa:0a:9c:c7:eb:65:a3:f9:24:a6:4a:
fe:3b:1a:b3:ef:be:f3:d0:21:b6:ad:d0:fa:f4:1f:71:52:a6:
a2:7f:33:0b:4e:b4:1d:f0:37:fd:7b:ca:90:01:f7:02:2d:82:
dc:b9:46:ed:c6:af:c2:a1:e7:b0:a2:f4:5b:bd:4a:c2:84:19:
f0:74:92:a2:3a:93:f2:bc:2e:4c:5d:ea:fe:56:e1:6d:68:db:
c0:25:84:49:ac:86:bb:c3:49:1e:62:fc:52:9a:37:4b:a4:52:
cd:b9:6f:6f:d7:d3:af:25:5f:a9:8b:1a:75:f9:b4:f2:bc:7d:
90:8b:f3:df:15:55:ec:99:f7:67:10:b6:f6:39:d1:48:73:a5:
70:f6:09:5f:39:53:29:c5:8c:23:7e:43:bb:27:a5:ed:48:3d:
04:39:48:69:f7:75:b5:11:c8:4c:ab:a3:21:3f:c1:83:59:8e:
91:a7:da:de:1c:b8:61:47:f6:7a:b1:50:5c:33:a0:95:2c:ee:
60:e4:7d:cd:5c:f3:97:74:cf:53:39:2a:66:02:54:bf:aa:62:
11:7e:39:ba:13:d3:aa:5c:e4:11:80:01:21:09:bc:f1:b6:1e:
d8:d4:4c:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:45:19 2025 by rpki-client