Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft
File: IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft (raw, json)
Hash identifier: Vq63syC+1lEoqQ8R4RyF+/esGXsUWHkISk49Exl+q1I=
Subject key identifier: E2:0F:09:C6:42:54:3B:47:02:5C:B8:08:74:79:FB:13:1B:15:2D:6F
Authority key identifier: 23:07:65:21:44:C9:12:7D:D6:26:79:60:56:C9:EC:29:32:A4:F2:05
Certificate issuer: /CN=2307652144c9127dd626796056c9ec2932a4f205
Certificate serial: 019A71B7FB991580A80C368F4458C94DECBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwdlIUTJEn3WJnlgVsnsKTKk8gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft
Manifest number: 01FE
Signing time: Tue 11 Nov 2025 07:01:14 +0000
Manifest this update: Tue 11 Nov 2025 07:01:14 +0000
Manifest next update: Wed 12 Nov 2025 07:01:14 +0000
Files and hashes: 1: IwdlIUTJEn3WJnlgVsnsKTKk8gU.crl (hash: D7kBvyFTmZuat6vYgHSxtXqEFcuX6dKQKLPTdiGD2Gw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwdlIUTJEn3WJnlgVsnsKTKk8gU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:fb:99:15:80:a8:0c:36:8f:44:58:c9:4d:ec:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2307652144c9127dd626796056c9ec2932a4f205
Validity
Not Before: Nov 11 07:01:14 2025 GMT
Not After : Nov 12 07:01:14 2025 GMT
Subject: CN=e20f09c642543b47025cb8087479fb131b152d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:30:0e:9e:19:a0:4b:c1:a0:40:32:a6:54:1a:
b3:9a:1c:b9:84:a4:06:67:ce:56:db:fe:58:a4:a1:
05:04:fa:33:6c:bb:6f:6e:81:92:34:16:3c:1a:e7:
0e:4e:40:e1:be:5d:e4:66:fc:89:25:0d:12:b8:ee:
d9:d6:9d:94:1d:df:45:44:81:84:22:6e:c1:7f:47:
98:b8:21:a4:95:31:48:ea:40:db:44:44:c9:ef:3c:
ba:7c:c4:fc:54:33:a8:53:62:c2:0a:1a:08:77:65:
64:1d:ec:30:91:8e:a4:26:ad:f1:76:26:76:b3:5d:
56:26:f6:75:1f:45:ea:8a:65:27:d4:10:7e:19:a5:
c2:8a:49:0b:e2:51:29:a2:fd:64:af:cd:c3:11:ab:
04:3a:60:95:12:1e:74:f3:b6:10:23:01:48:a5:14:
fa:e7:a2:9b:43:61:34:62:74:bd:4a:72:87:55:7f:
b0:b2:6b:34:01:67:01:68:c8:4f:96:ed:16:48:99:
88:e3:31:70:ab:70:f6:df:e2:2c:1f:aa:04:a5:23:
63:ea:e6:25:0d:2e:b1:5b:2c:4d:6c:95:f1:ba:ad:
de:38:f1:bb:9a:5d:b3:17:a5:31:de:17:1e:4d:cf:
01:59:ba:0f:27:57:c4:93:9c:bd:9f:70:74:ca:31:
f2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:0F:09:C6:42:54:3B:47:02:5C:B8:08:74:79:FB:13:1B:15:2D:6F
X509v3 Authority Key Identifier:
keyid:23:07:65:21:44:C9:12:7D:D6:26:79:60:56:C9:EC:29:32:A4:F2:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwdlIUTJEn3WJnlgVsnsKTKk8gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:2e:f8:28:39:c0:ea:ba:2e:dc:1d:d7:53:98:50:e4:58:7d:
03:91:cc:30:18:3c:75:f4:01:9b:58:50:3f:9a:bb:a4:ee:e6:
f8:2e:53:b2:fb:b4:a3:12:17:89:94:da:e3:6a:9d:98:bc:30:
30:b9:4d:2c:06:35:40:a8:b9:58:2a:ac:b2:ba:cb:d7:17:89:
9d:f9:5d:1d:92:af:0f:03:77:51:b7:96:2e:ec:2e:c0:92:41:
88:c2:70:bb:59:d3:20:12:ce:e4:f0:a8:c8:cb:96:67:bf:c2:
e6:66:eb:d9:1d:79:49:8c:da:7f:66:a2:5b:f9:59:66:6d:25:
b6:f9:ee:04:14:b4:d0:84:4e:21:1e:f6:b5:4d:3b:6a:ed:09:
ae:96:61:3d:da:e9:32:f6:7b:3b:fb:71:07:0c:32:1b:3e:65:
0a:91:65:4e:fa:e3:a1:b6:48:0f:0f:8d:ba:9d:c5:1a:b2:a3:
ac:02:20:e7:7c:26:d1:3b:7a:f7:5c:5e:e5:9b:db:a4:45:1f:
f5:a9:15:57:b3:6b:91:b0:15:1c:e6:b5:95:c1:51:5e:f3:35:
da:27:67:74:6e:10:19:fd:8f:34:1c:80:02:1b:1b:9d:0c:27:
d0:be:95:33:db:f6:6a:a9:3b:6e:74:41:c4:5a:97:96:1b:da:
16:22:8e:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:47:16 2025 by rpki-client