Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
File: IT2HNcFEzxJWWEO2nrQKTRowGqU.mft (raw, json)
Hash identifier: y7rwx+OLbCwlCR70DIx2eLnC7bHVngb3jCXdRd9REKM=
Subject key identifier: 92:44:C8:AA:3E:5F:1C:79:62:95:33:EA:19:58:7A:44:4C:72:40:26
Authority key identifier: 21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
Certificate issuer: /CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Certificate serial: 0199228CA827FD1DF512575DCA56D3F8AFC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
Manifest number: 0FE2
Signing time: Sun 07 Sep 2025 05:01:07 +0000
Manifest this update: Sun 07 Sep 2025 05:01:07 +0000
Manifest next update: Mon 08 Sep 2025 05:01:07 +0000
Files and hashes: 1: IT2HNcFEzxJWWEO2nrQKTRowGqU.crl (hash: HHovU9/kXbhtlNOb7H9F5Q9B6l8/ioPEUwbkJx9M7vc=)
2: oYl1-NMXXzEXtTi3L5l80mvOKew.roa (hash: HGKJcqJks4x1KvA9MPs1IeJtaKWdWbE52yFjhD/1Aak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:a8:27:fd:1d:f5:12:57:5d:ca:56:d3:f8:af:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Validity
Not Before: Sep 7 05:01:07 2025 GMT
Not After : Sep 8 05:01:07 2025 GMT
Subject: CN=9244c8aa3e5f1c79629533ea19587a444c724026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:04:8b:ba:b1:0d:0c:af:eb:c9:ed:8e:7d:40:
f0:1d:74:98:7c:10:b6:a7:40:35:85:6f:8c:84:69:
8f:00:3c:80:7c:0e:77:24:f2:db:5c:6c:14:6e:61:
b9:12:ca:e2:5c:27:ee:d5:59:19:5f:84:2e:e8:d1:
1a:db:ed:87:30:38:46:bf:34:40:38:8d:76:12:c6:
f6:e6:7f:78:8f:f1:ee:1c:8f:cb:3a:81:5d:73:7d:
ff:53:6f:10:5c:8d:bd:b9:76:24:ed:6b:57:0a:60:
95:44:8e:2e:ac:2b:06:97:6e:48:86:4d:f4:d7:0f:
13:5e:71:ae:89:3f:89:09:d3:df:ee:d4:61:95:88:
ca:7e:6b:65:51:17:86:4c:a6:83:2b:a0:e0:6a:db:
c9:e5:97:4d:2d:87:d0:df:a0:d4:a8:db:ac:17:58:
6a:b0:4a:80:66:21:73:ab:74:bc:24:fe:0f:39:51:
ca:cf:63:36:9c:fc:d0:b9:74:20:b0:53:7b:cd:cb:
09:f5:0c:37:1e:93:85:59:f2:12:ba:ad:b5:ba:78:
24:35:3c:e9:8b:02:01:f0:0e:9c:53:27:0e:0a:7d:
6d:c7:7a:e3:ee:24:3b:6c:f1:54:f8:8f:9f:da:e3:
c9:d2:74:10:e9:70:75:43:3b:50:ed:05:77:c9:65:
5f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:44:C8:AA:3E:5F:1C:79:62:95:33:EA:19:58:7A:44:4C:72:40:26
X509v3 Authority Key Identifier:
keyid:21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:9e:c5:2a:b8:db:90:47:79:85:f4:13:eb:8e:d6:76:5c:16:
dc:d1:d8:7e:c3:8a:bb:4d:2c:97:30:1c:35:be:c3:bd:2f:86:
ab:35:25:78:bd:68:5b:19:79:2e:f1:5b:11:ee:a1:9c:0f:54:
17:e4:1e:b5:01:ee:ef:e1:ea:6f:8e:4d:b2:6c:bb:74:9c:c0:
e4:38:05:51:11:60:cf:c0:f8:ae:d0:d8:67:f8:46:ce:0a:dc:
3a:1b:6f:0e:35:7b:f7:a7:7f:a3:0b:d0:31:60:2b:34:f4:1e:
06:13:3e:b5:bc:bb:e6:87:38:6e:46:36:ef:c2:2a:9b:01:52:
58:15:92:20:83:74:4a:7c:3f:82:81:0a:48:11:46:2a:84:7a:
7a:98:23:a1:3e:2d:4f:fb:15:5f:44:c1:83:3d:35:61:b6:ae:
4f:37:46:58:41:d0:ff:21:96:23:28:1b:d3:51:e9:ac:ed:a5:
4c:c4:08:32:34:fe:77:35:f0:39:93:84:49:bb:50:ed:d5:89:
f7:75:25:bc:92:ea:ab:84:f8:50:13:84:d3:fc:7a:3e:9e:bf:
3d:ee:21:b1:27:77:b4:9a:7e:cb:aa:f2:9a:fc:49:35:9d:84:
d8:9a:9d:b6:00:22:84:22:ba:02:41:d2:9e:26:2f:ef:48:02:
52:76:7f:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:49:23 2025 by rpki-client