Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
File: IO7gXaGD3uK4EYFBlWRiySQNeHY.mft (raw, json)
Hash identifier: 8rO77n+f3xRhw+zlbjdFCWwSed7fEnXAQ4cyvHB+n8s=
Subject key identifier: 13:46:9D:8D:31:2B:99:38:88:E5:02:5F:17:26:28:26:6A:DF:70:2C
Authority key identifier: 20:EE:E0:5D:A1:83:DE:E2:B8:11:81:41:95:64:62:C9:24:0D:78:76
Certificate issuer: /CN=20eee05da183dee2b8118141956462c9240d7876
Certificate serial: 0199221F44544B331809792EAC06992265CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
Manifest number: 147C
Signing time: Sun 07 Sep 2025 03:01:38 +0000
Manifest this update: Sun 07 Sep 2025 03:01:38 +0000
Manifest next update: Mon 08 Sep 2025 03:01:38 +0000
Files and hashes: 1: IO7gXaGD3uK4EYFBlWRiySQNeHY.crl (hash: aVAawgi3NjID7uiN5S+lMs8iBxHm7gVn7mAAc4TT2zQ=)
2: UOhBO5tiijOD2pDmpEzGmcmWS0c.roa (hash: xgr3YICoBLMfkC1gTEslMu1vKZNde/9vfYQRW1pAxzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:44:54:4b:33:18:09:79:2e:ac:06:99:22:65:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20eee05da183dee2b8118141956462c9240d7876
Validity
Not Before: Sep 7 03:01:38 2025 GMT
Not After : Sep 8 03:01:38 2025 GMT
Subject: CN=13469d8d312b993888e5025f172628266adf702c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:03:30:21:aa:2b:d2:be:be:26:1e:1a:1e:b5:
18:5d:cb:7e:d3:4c:54:9c:68:ba:cb:86:02:64:1f:
5c:ef:e0:73:ac:44:89:19:c1:fe:e1:5a:b2:96:ff:
83:57:05:3b:4b:7a:3f:d0:fc:aa:e4:42:08:35:b7:
96:0f:4e:b7:ec:d7:37:73:e9:88:a0:ff:c5:84:f5:
6a:07:f4:78:6a:57:75:5b:9e:3a:9f:85:26:24:c6:
ca:f3:46:5d:8f:07:c6:0d:91:a2:83:3a:5c:b4:19:
31:df:38:42:06:bd:ce:ad:07:df:46:a3:29:8b:1a:
79:03:0b:7b:c5:c4:90:64:b0:c7:f9:25:36:7f:a3:
90:5d:79:9b:19:30:f2:76:ca:99:88:4e:c0:40:25:
af:c8:8c:63:5d:c3:ce:b7:35:f7:1d:5b:30:0b:ae:
6e:ff:3e:c5:d1:0c:66:81:1a:49:90:e6:ac:df:07:
20:65:a5:d1:38:93:53:41:73:7f:fa:49:d6:fb:bb:
c3:fe:4f:24:70:4d:d7:2a:ef:b0:c3:e0:72:10:88:
b9:9e:0c:91:0b:82:2c:1c:e3:64:df:cc:75:e2:72:
b8:01:25:74:05:d6:77:d5:84:77:27:dc:d1:e6:dc:
b3:b5:c1:43:8e:5b:72:96:85:5b:c7:cf:ce:32:f5:
e8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:46:9D:8D:31:2B:99:38:88:E5:02:5F:17:26:28:26:6A:DF:70:2C
X509v3 Authority Key Identifier:
keyid:20:EE:E0:5D:A1:83:DE:E2:B8:11:81:41:95:64:62:C9:24:0D:78:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IO7gXaGD3uK4EYFBlWRiySQNeHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/cfc0d1-d095-4b1b-9b5d-3985299fad6d/1/IO7gXaGD3uK4EYFBlWRiySQNeHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:24:1c:43:f0:b9:ac:ee:f6:95:8e:18:0d:09:56:b2:7e:e3:
12:4c:a7:d1:9a:0d:17:26:fe:5d:07:ad:48:1b:1b:96:6f:0b:
e2:eb:fe:88:91:83:62:cc:05:44:0f:bd:3d:5b:0c:f7:8a:ca:
c6:68:52:24:22:49:b4:ec:1a:87:27:3d:75:7f:f7:76:72:8e:
3c:b8:e0:aa:e8:70:de:bf:42:b8:9d:41:75:c5:33:2c:87:1c:
36:8f:4f:6f:f1:45:8e:0a:8d:db:1a:0f:1d:35:c4:a3:75:b2:
11:47:9e:1e:f3:12:12:02:2b:dd:2c:81:e3:b8:86:22:79:4a:
16:dd:c0:4b:15:7a:26:46:42:9d:a3:c3:a8:17:1d:5c:4d:b5:
b9:20:d3:08:b2:55:f0:60:f1:e4:8e:19:35:ad:76:37:9e:f2:
3f:42:11:dd:3a:2f:86:89:da:6f:ee:8c:96:66:d7:14:ec:63:
b1:bf:64:5b:e5:1c:c5:49:d2:9a:01:ea:57:a2:dd:57:1f:4b:
58:28:85:57:74:fb:50:91:f3:49:b3:a5:ab:53:89:e5:fe:5e:
b3:14:28:c7:67:e7:1a:3d:8a:ee:e3:d0:21:dc:a0:7c:46:f2:
98:e4:b1:13:e7:98:e0:95:c7:04:66:57:12:39:66:3c:ff:3c:
9e:5e:e8:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:21:51 2025 by rpki-client