Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: 0J0k6gxucGEEHoMz0IlGXFcHeY5g6sEkwi7FiXe4Zfc=
Subject key identifier: 99:7B:51:28:C0:F9:DD:99:62:0B:DA:28:9C:15:31:2F:B3:01:B2:74
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 019965B5EB1234328A4BD78D9440035C4210
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0D0F
Signing time: Sat 20 Sep 2025 06:00:44 +0000
Manifest this update: Sat 20 Sep 2025 06:00:44 +0000
Manifest next update: Sun 21 Sep 2025 06:00:44 +0000
Files and hashes: 1: BY3gmYE2jAUAzVYgNkSF1kzgx38.roa (hash: o+T/NGOLnxz7Wv8sLagAUwobjqcsqFCif9O5RgNrbi4=)
2: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: BEsMoOK7/HFNxUEmhho3oROvUhaJTcDabx4gOo5QQnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Sep 2025 00:54:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:65:b5:eb:12:34:32:8a:4b:d7:8d:94:40:03:5c:42:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: Sep 20 06:00:44 2025 GMT
Not After : Sep 21 06:00:44 2025 GMT
Subject: CN=997b5128c0f9dd99620bda289c15312fb301b274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:53:76:8c:23:cc:39:a0:70:1e:f3:f3:a2:20:
b7:f7:0d:6b:97:8f:fa:08:fa:12:35:cf:35:0a:d1:
e8:f2:2d:f1:44:64:23:51:c5:15:48:a9:8a:b1:39:
cb:24:bf:2c:4e:db:9f:0b:e0:32:e9:3f:de:10:aa:
8f:ad:73:3a:de:5e:ce:a1:e0:be:91:30:51:85:20:
09:d8:01:e6:95:90:28:88:01:55:b8:c5:5f:f3:a3:
4d:1c:0e:21:32:01:f9:29:32:4b:e8:bf:06:66:29:
78:dc:0d:e8:18:33:df:0d:60:d9:00:7e:89:75:25:
5f:bf:be:ed:ad:f0:ac:82:38:01:98:77:86:ed:4b:
13:63:a5:63:e7:b8:fc:a8:57:1f:0c:75:78:36:59:
1c:3c:8a:0f:d2:74:57:28:da:dc:ee:79:8b:dc:82:
b5:86:c8:ec:ab:b1:ca:17:bb:aa:1f:0d:d2:a6:06:
ca:73:38:63:67:44:14:1e:0e:f2:15:4d:1d:18:1c:
cc:f8:ce:3f:96:55:f9:d8:71:c4:59:e3:77:3b:53:
2b:77:8e:d3:d0:9f:b8:60:5a:ca:36:20:e2:be:b8:
e7:47:2c:24:e9:54:f9:06:44:3a:68:9d:ec:3e:51:
0a:b2:de:64:82:7e:01:e9:25:72:fc:0b:ea:b6:9c:
f9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:7B:51:28:C0:F9:DD:99:62:0B:DA:28:9C:15:31:2F:B3:01:B2:74
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:8b:7b:2d:27:97:62:23:bd:db:29:15:1f:d2:a8:46:7c:be:
88:15:ed:1d:64:7f:1e:26:44:87:e3:db:c4:bf:34:f8:27:d8:
1d:12:58:de:58:86:54:1b:9a:66:49:5b:a2:6d:1e:ca:5a:e7:
ba:29:57:48:f4:7a:f1:a7:82:0e:d5:cc:24:4c:b7:b9:93:ce:
12:cc:db:c4:2d:a9:e7:ec:13:82:8b:7b:cb:8a:f1:61:4b:09:
37:f3:83:05:75:3e:3c:9f:67:75:ab:60:fb:7e:c8:0b:ee:08:
e2:c5:6a:46:ab:d6:be:de:b6:7d:3d:a5:8f:6a:d2:a3:1b:9e:
d5:29:bb:5f:2b:f5:bf:90:a8:a9:10:b9:d4:c9:3d:3d:a7:24:
7d:1d:7c:cf:84:88:a3:69:d7:05:36:ce:4c:fc:e8:0c:7f:ad:
7d:99:ff:ee:25:e4:a4:81:5d:cc:47:e9:7a:ad:0b:bc:2d:2b:
72:fd:67:64:99:62:5f:cc:3e:54:00:bf:19:0a:af:f0:cf:3b:
a3:9d:1a:50:35:a5:aa:64:70:89:0e:ed:90:02:db:7d:65:48:
e9:87:b0:be:a3:0e:d2:c1:d5:c3:7c:d2:f9:48:e9:12:ce:78:
4c:4b:40:c4:ff:0c:e1:02:e6:f0:5a:67:2b:ed:9e:ae:a5:03:
0f:d1:d9:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 20 09:08:17 2025 by rpki-client