Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
File: iH0wEZNRUA8lmlfi_2hQeX0bTho.mft (raw, json)
Hash identifier: NI/zgejCh9zelVNEHiwCMPQdZQkyhr+s2q0vDJRcE2o=
Subject key identifier: 1E:E0:1F:27:39:80:9C:92:76:7A:2D:18:42:F4:F3:72:10:2A:C2:47
Authority key identifier: 88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A
Certificate issuer: /CN=887d30119351500f259a57e2ff6850797d1b4e1a
Certificate serial: 019A3D93D4696B9ED8F89C970675577BEF7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
Manifest number: 1706
Signing time: Sat 01 Nov 2025 04:01:29 +0000
Manifest this update: Sat 01 Nov 2025 04:01:29 +0000
Manifest next update: Sun 02 Nov 2025 04:01:29 +0000
Files and hashes: 1: iH0wEZNRUA8lmlfi_2hQeX0bTho.crl (hash: dUvXiBOaW1pGXbudtJBhEFLrR986tujye17xFAJylSs=)
2: qABhsOLWjcCV2-NCnGtwC8QlYyU.roa (hash: md9z/89P3sn3nXo5h/larqHDUL4eXCPfvLewxfl/iTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:3d:93:d4:69:6b:9e:d8:f8:9c:97:06:75:57:7b:ef:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887d30119351500f259a57e2ff6850797d1b4e1a
Validity
Not Before: Nov 1 04:01:29 2025 GMT
Not After : Nov 2 04:01:29 2025 GMT
Subject: CN=1ee01f2739809c92767a2d1842f4f372102ac247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:30:68:a0:7d:b5:41:7c:5e:01:41:49:89:f6:
69:44:8a:d4:b2:8d:0b:e5:b4:ad:d3:a2:50:e1:ef:
5b:ab:34:65:71:a5:95:1f:77:7f:d2:3d:4c:0f:a3:
b6:5a:59:19:b6:5f:df:20:96:de:f7:09:38:97:51:
b3:c2:1e:fb:6f:7a:59:b1:f4:49:8e:2a:46:8d:fa:
38:db:50:bc:86:23:2d:e5:9b:71:75:e0:55:38:d8:
05:3c:16:25:bc:ed:d1:a2:ea:ae:40:3b:3c:5b:45:
0a:8a:81:e2:47:e1:ed:f0:15:65:e1:04:43:c9:b0:
1e:3b:03:48:d7:18:5f:cd:c8:78:62:82:4e:b6:c8:
41:ea:6c:97:68:d6:0f:ff:ed:24:37:bd:fa:ff:69:
ed:7a:35:9a:ae:d9:a3:7f:6f:aa:62:22:c4:37:92:
1d:9e:92:10:50:99:c3:ae:ed:7c:44:c4:3c:83:d3:
25:da:66:5f:c9:11:b6:5f:b8:bd:56:15:5c:d8:d5:
b5:23:50:1f:60:67:72:69:1e:ff:c0:50:f1:1b:7d:
df:22:79:00:16:a0:48:44:7e:01:63:d2:b0:b8:db:
5a:87:e0:73:2a:cc:83:0c:36:92:e8:1c:da:a5:fc:
65:72:9d:81:eb:00:da:d6:8a:d4:91:d2:47:ef:7d:
82:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E0:1F:27:39:80:9C:92:76:7A:2D:18:42:F4:F3:72:10:2A:C2:47
X509v3 Authority Key Identifier:
keyid:88:7D:30:11:93:51:50:0F:25:9A:57:E2:FF:68:50:79:7D:1B:4E:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH0wEZNRUA8lmlfi_2hQeX0bTho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/febb2e-f0da-4d74-b547-f7401b4e4b4a/1/iH0wEZNRUA8lmlfi_2hQeX0bTho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:7f:b5:4c:dd:e1:b3:aa:04:a9:eb:65:27:68:10:33:db:46:
4b:c2:bd:b0:f2:d5:12:65:3f:1e:d5:a9:60:dc:da:0e:d9:51:
39:35:bd:1c:b3:ac:ae:9b:be:d0:91:71:ac:43:f2:d6:ac:ac:
29:7b:e7:43:79:50:d6:61:0c:fa:fd:3f:b6:11:d3:1f:48:19:
46:6b:d8:f4:28:cd:07:39:1d:8a:9a:40:63:35:ed:3a:37:15:
46:93:1a:88:b0:6f:21:db:2d:de:7a:ed:97:53:8f:6b:0d:2b:
00:70:cc:54:33:64:17:2d:72:2c:69:98:75:ed:50:36:9b:26:
a2:79:1f:40:99:c2:9b:d0:34:1e:87:f1:1e:d5:c5:86:7b:07:
07:82:b8:36:14:7b:d0:7f:76:07:46:12:48:9c:d3:60:59:cc:
ff:76:de:4b:08:45:44:fc:0b:99:4c:db:56:71:94:43:8f:1a:
2c:a8:59:6f:d2:9b:d3:01:04:83:f3:93:ba:83:fd:78:66:f3:
cc:6e:17:43:1c:32:17:64:a3:a0:3b:f0:c1:eb:c7:84:d9:d1:
b4:5c:8a:c3:f3:42:22:9c:93:3d:ec:b0:df:e3:f6:60:db:0d:
71:63:5b:f6:11:04:75:aa:0b:5a:fc:75:97:f0:53:74:a2:01:
80:02:72:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 1 07:40:07 2025 by rpki-client