Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: 2K19LLFueYQ+PKV3iBzaSAtTfIat8lN5tDARC6NE8lw=
Subject key identifier: 81:95:B8:23:35:DE:65:8F:3A:64:6F:60:12:E2:75:94:47:36:2B:44
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 019A71B771D3B956181A31754714AEFE1CB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0DD9
Signing time: Tue 11 Nov 2025 07:00:38 +0000
Manifest this update: Tue 11 Nov 2025 07:00:38 +0000
Manifest next update: Wed 12 Nov 2025 07:00:38 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: 1uaRsHXON7wwqu4ZahGIdY4pMHBRJvptjBH+jlE5SSc=)
2: wnACGaMKOrsg5i1-6PAAx8VKQ0Y.roa (hash: kxRyBHTXArEsk0qrBdKwIl2FB5x6O/p6TWut1bU4JRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:71:d3:b9:56:18:1a:31:75:47:14:ae:fe:1c:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Nov 11 07:00:38 2025 GMT
Not After : Nov 12 07:00:38 2025 GMT
Subject: CN=8195b82335de658f3a646f6012e2759447362b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:32:77:62:b7:d3:71:80:1e:22:71:66:df:72:
bd:3a:e8:9f:0a:df:5b:3b:29:71:0f:04:ca:d7:25:
55:09:2b:b2:09:e5:1e:89:b7:ff:f6:23:61:1d:9d:
41:a1:87:70:d9:18:b0:36:b3:60:18:d6:f7:42:9d:
65:a7:59:98:e8:13:53:48:23:29:60:e1:ce:cc:31:
0b:dd:35:de:73:53:b5:e5:03:31:a6:0d:cc:db:c9:
0c:ba:0b:18:3d:05:e2:52:d2:02:50:5f:07:f2:c3:
46:96:90:63:fb:92:f9:b8:9f:19:ed:44:13:09:6e:
d1:aa:5d:00:6a:5a:82:18:87:01:55:62:32:03:89:
60:cf:b1:c3:ec:76:df:35:1a:e9:d0:85:c6:c7:fd:
c9:e5:23:8e:a5:89:88:d3:33:0e:8e:20:c4:1b:46:
a0:10:43:99:19:a3:e0:a6:97:87:56:8e:20:b1:0f:
99:a5:64:16:4a:74:0d:4b:cf:f3:d7:dd:42:55:a3:
f8:5e:70:20:9d:c3:93:15:7c:43:d8:6b:ea:8a:ab:
2a:41:46:68:c2:1c:e7:2f:2f:9c:bd:74:99:75:47:
d3:09:06:de:98:cc:1c:b6:68:6e:8e:60:45:bb:2a:
3f:d8:df:b5:e9:79:75:c3:43:25:a9:34:1d:19:10:
7e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:95:B8:23:35:DE:65:8F:3A:64:6F:60:12:E2:75:94:47:36:2B:44
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:f5:7b:b0:0b:7d:36:dd:41:87:65:42:84:39:5f:a8:13:9f:
67:4c:bf:d3:38:e0:45:a4:52:d5:4a:1b:35:3c:29:12:9a:da:
78:8a:33:1f:1b:b5:2c:60:ef:21:31:cf:61:01:49:d6:9c:64:
32:de:8a:22:d3:b2:0c:f5:3d:f1:d4:a5:96:f4:1d:6f:2d:fb:
39:32:80:b5:2e:7e:87:2f:6c:21:bf:31:d1:ad:d8:ad:a4:ea:
eb:19:32:23:38:8b:91:bd:db:32:77:5a:7b:a0:8a:c1:61:d5:
f9:7d:a4:ef:0a:d6:d1:7e:96:a4:f5:ba:04:b8:59:95:df:9d:
50:28:43:9b:c6:89:2a:90:77:52:65:e5:f1:cd:68:0b:17:6a:
f5:3a:05:db:9b:e0:b7:8c:f3:4e:ab:57:26:17:90:6d:6a:96:
b2:ee:f4:ed:5b:4c:14:e3:d3:e0:2d:0f:9e:1d:7c:4c:f9:b8:
30:7a:b2:3a:a3:f1:36:f1:ae:f8:19:7e:57:66:73:6d:4e:20:
41:f9:d8:b3:48:86:fe:d2:23:12:b7:2f:73:cf:2a:7f:5c:1e:
38:58:ad:6b:04:67:ef:eb:c6:60:fd:03:1b:2e:13:48:c0:de:
b3:6f:a8:24:f1:ca:7c:a2:e1:63:13:b1:cc:3d:4a:c0:b7:a9:
3a:f8:10:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:47:58 2025 by rpki-client