Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
File: IsOFEHH5YIjHtxGcteFGPLq5jFk.mft (raw, json)
Hash identifier: OmZrlNAuHjDl0Mm+G7ANxJq17G0jvxn4wz+dDA9nG7U=
Subject key identifier: 2D:77:D4:BB:4A:9E:72:4B:20:CA:F5:6D:B9:D0:4F:BE:FA:7F:B1:DE
Authority key identifier: 22:C3:85:10:71:F9:60:88:C7:B7:11:9C:B5:E1:46:3C:BA:B9:8C:59
Certificate issuer: /CN=22c3851071f96088c7b7119cb5e1463cbab98c59
Certificate serial: 019921B222AAD5926B43B6F10CE8C58311AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsOFEHH5YIjHtxGcteFGPLq5jFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
Manifest number: 10BE
Signing time: Sun 07 Sep 2025 01:02:26 +0000
Manifest this update: Sun 07 Sep 2025 01:02:26 +0000
Manifest next update: Mon 08 Sep 2025 01:02:26 +0000
Files and hashes: 1: IsOFEHH5YIjHtxGcteFGPLq5jFk.crl (hash: CPJiFQ8o+NX8ci86SIuFF1uxB2yB2eE43r5coD2UiWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsOFEHH5YIjHtxGcteFGPLq5jFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:22:aa:d5:92:6b:43:b6:f1:0c:e8:c5:83:11:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c3851071f96088c7b7119cb5e1463cbab98c59
Validity
Not Before: Sep 7 01:02:26 2025 GMT
Not After : Sep 8 01:02:26 2025 GMT
Subject: CN=2d77d4bb4a9e724b20caf56db9d04fbefa7fb1de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:73:5a:db:35:82:5d:1c:b9:ee:91:ce:31:ee:
80:ad:e8:c8:f4:20:45:f0:8c:1c:04:d1:80:dc:13:
37:b9:e3:5d:59:76:7f:a9:b1:92:9a:ad:32:82:7f:
11:72:cf:f4:4e:95:28:8d:8f:67:e5:2e:c9:ed:e4:
fc:20:c2:21:6e:24:92:33:15:e2:78:88:ea:4a:7c:
17:66:38:ab:c5:bc:79:9b:44:b0:4c:b8:e6:0b:59:
42:c9:fb:bd:ef:70:aa:85:0c:f4:55:9c:d5:3a:16:
4a:36:c8:9a:f4:22:db:a9:b8:c6:85:af:48:9b:90:
cc:66:d3:0c:db:a0:1c:2f:3f:ec:57:ac:9f:80:49:
51:a9:cd:16:ab:33:e3:7b:a1:27:5b:df:9a:60:29:
a1:21:eb:a4:53:f5:4f:9b:7d:29:67:f5:c5:91:5d:
d6:cd:92:87:e9:cf:90:e8:65:60:f7:1e:9a:51:87:
f3:f8:7b:5c:31:0c:56:8d:dc:31:e0:8f:15:70:e4:
84:63:b5:22:85:8c:8c:0c:7d:ce:49:4b:c6:28:b0:
9d:d1:13:33:8f:d1:c8:d7:b0:8e:e1:a8:2e:e6:82:
df:0d:2c:3f:95:9c:a1:e8:68:5a:83:63:6d:8e:73:
bd:96:70:27:f1:f9:31:59:90:0f:1f:e1:66:54:2b:
ff:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:77:D4:BB:4A:9E:72:4B:20:CA:F5:6D:B9:D0:4F:BE:FA:7F:B1:DE
X509v3 Authority Key Identifier:
keyid:22:C3:85:10:71:F9:60:88:C7:B7:11:9C:B5:E1:46:3C:BA:B9:8C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsOFEHH5YIjHtxGcteFGPLq5jFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:6a:74:28:79:12:09:10:2a:a1:f3:b3:db:a6:d5:d0:2a:45:
09:16:33:91:70:21:a3:b0:7d:a3:c4:24:aa:52:11:64:6e:18:
c2:2e:34:88:cb:56:13:b9:8f:d0:03:4d:18:e3:2b:c4:c1:50:
e7:24:19:28:31:ef:57:af:c2:fd:4f:de:26:d8:38:2e:9c:2b:
ef:7d:2e:bc:63:49:bb:20:43:97:95:13:88:66:02:5b:62:0e:
5d:fd:0f:6e:8c:ea:fe:26:ca:1a:eb:73:a4:d0:8b:f2:ed:d7:
5c:b9:aa:b9:c0:21:40:85:78:2c:11:59:cf:83:c0:f5:f1:2a:
9e:54:f9:4b:69:b9:35:b7:1c:2e:70:8a:e2:cb:59:a4:65:91:
17:1f:56:64:43:e0:f3:33:d3:20:76:32:35:92:55:88:5f:01:
f6:aa:be:53:12:0a:5c:0e:05:45:64:9b:7a:63:c5:3c:89:b7:
aa:57:f8:e2:2c:49:ef:5a:88:ad:aa:ac:08:b1:4e:1d:a5:03:
a0:5e:f6:8a:69:53:53:c5:fb:16:43:a5:3a:64:3f:65:2f:5b:
98:c2:0e:5e:3c:82:07:ea:1d:70:a0:9a:9e:03:f9:ee:f6:bb:
1f:11:42:81:66:e5:01:87:82:d8:69:9a:35:73:f7:21:f5:fa:
18:94:a3:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:59:52 2025 by rpki-client