Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json)
Hash identifier: yQEl4IUleDeLeQsyu6uHUT/OTKIeVyWIN2NQ3hkIcXI=
Subject key identifier: 22:4D:25:0D:6B:D2:A8:2D:D1:BB:97:75:D4:B0:38:71:3D:FB:42:B4
Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Certificate serial: 019A2855DA782CEDCC9B30A4E2E960A20832
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
Manifest number: 0735
Signing time: Tue 28 Oct 2025 01:01:46 +0000
Manifest this update: Tue 28 Oct 2025 01:01:46 +0000
Manifest next update: Wed 29 Oct 2025 01:01:46 +0000
Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: 2xtdKm00+U/hXnJLjYqXxu36HSjO/ww9VoEbf8ScvX4=)
2: v5LwLHwuCUZrT_0G6r3v0bfLSQs.roa (hash: +ztaiH2S/aHDtgvKfj/YkXPsW58SyJ9uS27Ej7psyFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:55:da:78:2c:ed:cc:9b:30:a4:e2:e9:60:a2:08:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Validity
Not Before: Oct 28 01:01:46 2025 GMT
Not After : Oct 29 01:01:46 2025 GMT
Subject: CN=224d250d6bd2a82dd1bb9775d4b038713dfb42b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:74:96:d8:5e:d5:21:1d:a5:d4:ed:00:55:44:
a9:71:f5:4a:cb:00:4c:d4:fc:f2:b4:60:46:f0:95:
1e:0d:d7:04:43:8b:69:41:77:44:3b:8a:4b:5b:39:
ee:13:9a:ef:58:93:0c:44:56:ed:29:05:14:0d:fe:
c3:9c:1f:67:b6:a3:2a:aa:ed:9d:12:91:51:4f:1a:
7c:e1:bb:57:b6:ea:51:d3:b3:48:da:78:aa:bb:bc:
e7:7d:7d:d4:68:70:1b:33:aa:8d:eb:f5:98:67:7a:
27:e1:38:44:0c:ac:52:6c:d7:61:dc:5e:b3:50:a4:
ee:35:57:14:0e:53:bb:c5:36:8b:bc:27:2e:58:9f:
6a:d3:b6:01:c9:35:c5:25:86:7d:56:c0:af:c5:0f:
66:e4:d2:97:37:08:a7:f5:76:93:a8:46:40:91:f2:
e8:f1:d3:28:10:d2:cc:55:72:36:fb:5f:30:ad:aa:
f7:7a:cd:ee:e4:c4:05:6b:e6:1b:f9:d8:2a:e1:53:
bd:36:54:8a:77:6c:3b:bd:93:2f:92:d0:b8:ef:d9:
b9:f7:b8:d4:9d:33:e2:72:4e:0b:a7:27:0b:48:8c:
fe:95:0c:c2:6d:1f:30:ce:54:91:af:29:47:02:8f:
b7:78:ed:c8:4c:bd:2a:aa:6f:29:d2:e8:ef:b5:e0:
36:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:4D:25:0D:6B:D2:A8:2D:D1:BB:97:75:D4:B0:38:71:3D:FB:42:B4
X509v3 Authority Key Identifier:
keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:5a:1d:05:ba:15:b7:4d:ba:9f:07:7c:af:d3:11:37:e6:3f:
77:5e:75:e2:e4:5d:9d:ad:36:da:5d:78:6b:04:bb:42:6c:59:
fa:69:bd:9a:1b:24:e9:22:10:d2:b8:23:a8:15:98:7f:0a:27:
03:aa:dd:fb:09:d8:ed:29:54:50:85:50:d9:24:52:24:e6:25:
30:bf:2b:66:dd:f6:8a:c3:9b:bf:56:95:19:e0:32:19:62:dc:
13:2b:f8:b2:c3:2d:dc:a9:8e:90:8c:79:ca:1c:54:1f:25:7c:
31:42:14:12:f0:3a:1a:e0:69:b7:02:24:a4:6b:dd:b8:54:19:
9a:76:ab:2a:59:15:ff:0a:db:79:a2:1c:fe:71:4c:e4:b9:af:
2b:7a:45:b7:27:48:de:c5:ae:92:c8:63:0a:6f:94:30:cb:2e:
9c:c2:c5:29:f9:63:d7:af:6f:e1:c9:1d:e2:e9:fe:6a:48:d3:
74:fb:bc:c0:ae:4d:0a:49:ff:c3:5c:ef:fc:13:01:f4:dd:e4:
3d:40:c3:09:1a:32:37:0e:af:a7:ce:e4:24:3c:f7:ca:ea:c9:
06:27:84:ce:62:81:d5:3c:9e:20:67:23:12:fb:04:a3:9b:62:
cd:5d:ce:e4:0f:6a:57:93:41:8a:15:01:1d:06:94:59:a6:27:
46:f2:e7:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 07:09:24 2025 by rpki-client