Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
File: iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft (raw, json)
Hash identifier: c8uSRxFybjIOSN2j0C1w2wqZxI79iJNkswCOmgLkliM=
Subject key identifier: 87:36:AC:43:4B:19:C9:9E:C8:F5:4F:CB:C8:60:85:CA:A7:A0:24:B1
Authority key identifier: 88:E9:FA:23:DA:4F:E9:7A:A9:E0:F3:91:15:62:05:59:A2:9F:6B:70
Certificate issuer: /CN=88e9fa23da4fe97aa9e0f39115620559a29f6b70
Certificate serial: 019A70DC16DD46B85EA1E260FCAD220C48D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
Manifest number: 04C5
Signing time: Tue 11 Nov 2025 03:01:03 +0000
Manifest this update: Tue 11 Nov 2025 03:01:03 +0000
Manifest next update: Wed 12 Nov 2025 03:01:03 +0000
Files and hashes: 1: 0iDUFJnxa3p3pYn9wOd7dy5ufak.roa (hash: 3azQw0QyMVpE4/ttRjyWB6+sGCTH0gc4+eCuZ8gfhjY=)
2: iOn6I9pP6Xqp4PORFWIFWaKfa3A.crl (hash: BE9k71yEaFOjEb0SdlmV+DINz1shDy9SGR4Y0fv2+44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:16:dd:46:b8:5e:a1:e2:60:fc:ad:22:0c:48:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88e9fa23da4fe97aa9e0f39115620559a29f6b70
Validity
Not Before: Nov 11 03:01:03 2025 GMT
Not After : Nov 12 03:01:03 2025 GMT
Subject: CN=8736ac434b19c99ec8f54fcbc86085caa7a024b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:56:21:66:f6:92:65:54:64:28:cb:2d:bd:5b:
98:1b:d6:f7:34:60:96:56:15:90:01:56:e0:20:b4:
62:07:34:ae:2b:e5:22:b7:09:cd:a4:b9:d9:ab:1b:
50:ce:80:4c:f0:47:23:1d:48:35:eb:a8:7e:cf:7b:
4a:8e:5c:36:5f:b7:7c:24:29:eb:cf:6e:3c:07:9c:
f7:40:4e:f0:4c:42:58:36:b0:b6:26:3b:ac:0f:1a:
47:1d:46:07:10:ea:40:87:1d:51:40:0f:38:4e:f9:
da:fc:ba:3f:7e:65:16:9e:7f:f0:10:99:7c:d4:46:
1c:c7:b6:a3:ce:93:9f:35:4f:88:35:6a:3f:a0:14:
56:de:d2:56:9a:9d:99:fd:a1:68:d6:67:73:3f:cc:
d2:3f:76:cc:26:78:d4:6f:c8:b3:e1:ee:ec:43:be:
ba:62:62:73:99:44:39:07:15:38:6d:d6:eb:8d:52:
09:51:21:ae:58:3d:22:9b:ab:d5:14:d4:8b:70:f3:
ff:e9:e0:75:a3:a4:b2:32:e8:cc:a0:7c:4f:23:c6:
29:4d:8a:ef:23:94:eb:b3:3a:b7:63:79:f1:51:7f:
89:ee:34:1f:05:39:fb:0a:03:bd:88:e3:4e:21:c9:
ae:03:cc:ec:5c:77:99:23:4c:64:34:e4:8c:70:45:
0a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:36:AC:43:4B:19:C9:9E:C8:F5:4F:CB:C8:60:85:CA:A7:A0:24:B1
X509v3 Authority Key Identifier:
keyid:88:E9:FA:23:DA:4F:E9:7A:A9:E0:F3:91:15:62:05:59:A2:9F:6B:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOn6I9pP6Xqp4PORFWIFWaKfa3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6d15c0-80cc-4edf-8f14-3e2478947e6e/1/iOn6I9pP6Xqp4PORFWIFWaKfa3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:c6:42:e3:c3:0f:15:f8:3b:5f:70:21:ac:03:88:84:95:6e:
62:38:e8:1b:14:ee:40:ff:fd:dc:98:b5:21:b7:00:19:e7:26:
17:bc:75:b1:8d:4e:15:5a:d6:31:55:41:8c:1c:bd:68:c5:14:
0f:b1:44:d7:70:2f:72:af:d9:cf:fa:b1:f1:31:ba:83:81:17:
03:6d:6f:62:54:32:b0:cc:c6:c5:09:b4:69:24:79:a5:48:cc:
3f:83:0c:ae:0c:24:27:86:1a:c4:be:cc:d7:24:d0:70:f2:6f:
01:e6:78:af:9b:13:e5:c8:3f:f3:12:b8:f4:ad:0a:c0:5d:24:
95:67:cb:4c:03:6e:7a:42:f9:1b:1f:a3:e5:32:c7:53:ab:a2:
7f:45:6a:ea:63:44:e8:68:7e:bf:b5:20:d2:ce:2d:3e:78:d4:
e8:d8:21:44:fd:63:3d:71:ec:e6:5f:a1:2e:76:2c:fa:67:71:
2d:72:e5:ff:9f:6b:72:c4:ad:03:ae:c9:59:f7:4b:98:c1:04:
09:ac:68:95:90:95:c5:9a:66:ad:3c:65:70:a7:8e:cf:e9:4d:
4b:f1:4b:40:a0:9a:dd:6c:1b:31:cc:06:6d:be:76:d0:58:44:
e7:60:bb:a2:6f:c2:59:98:1c:10:53:58:59:26:a7:34:57:e7:
dc:29:2f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:46:51 2025 by rpki-client