Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
File: I5Vy3fyrYpHmQQzNToYO42AA5mg.mft (raw, json)
Hash identifier: 7sFdqbEKStWdCpnKsJXFgxMgvGznwfC0dyQmen9c4vg=
Subject key identifier: 3C:D0:27:49:96:DA:B5:A1:21:31:9D:CE:7B:B4:E2:1F:D0:AC:9A:AB
Authority key identifier: 23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
Certificate issuer: /CN=239572ddfcab6291e6410ccd4e860ee36000e668
Certificate serial: 0199239F2139615AEAED70D7A88C5CF5AE6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 10:00:55 +0000
Manifest this update: Sun 07 Sep 2025 10:00:55 +0000
Manifest next update: Mon 08 Sep 2025 10:00:55 +0000
Files and hashes: 1: I5Vy3fyrYpHmQQzNToYO42AA5mg.crl (hash: e68hWaNbtcdUZ19xalWQ9IOOlyAY33GIkWEMpJ2vVE8=)
2: cEnlNHZ35kSVNo2T27Ex45pap18.roa (hash: q/g4pWJ8XYH4irxAQK7i5w/oElgLduGOhld/VI56BOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:21:39:61:5a:ea:ed:70:d7:a8:8c:5c:f5:ae:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=239572ddfcab6291e6410ccd4e860ee36000e668
Validity
Not Before: Sep 7 10:00:55 2025 GMT
Not After : Sep 8 10:00:55 2025 GMT
Subject: CN=3cd0274996dab5a121319dce7bb4e21fd0ac9aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3e:55:d8:65:c3:e1:a1:bd:88:24:f6:64:ce:
1c:c7:f7:61:f8:0b:2f:cf:20:4f:4d:56:07:20:0d:
26:e4:2a:a4:13:ff:a2:cf:49:3f:da:f1:72:eb:c6:
e0:47:88:4e:c4:03:00:7a:9d:7e:20:5c:b7:ae:4b:
5b:53:aa:41:ec:bb:f5:f4:34:67:e6:86:e1:22:aa:
80:a6:94:23:fc:0f:8d:fc:cb:b2:04:5b:5d:62:f5:
2a:bd:fe:eb:aa:3a:84:db:42:09:24:40:31:8d:e1:
88:5e:64:98:d6:db:05:c6:89:2a:d3:f4:02:9c:41:
c3:e0:65:29:1b:d6:a1:5a:83:1b:4f:28:87:dc:96:
10:59:57:1e:79:13:4c:2a:90:75:ae:8d:b1:cd:96:
72:50:41:0e:75:52:41:88:6d:b4:14:86:9d:60:f6:
7c:cb:7e:c3:b2:45:48:43:61:10:c0:59:e5:0e:ba:
56:3f:16:53:0f:33:19:a1:c7:d1:ed:65:7b:bd:99:
12:d3:b8:97:c7:aa:6b:8c:14:cb:7c:9b:0c:ac:70:
11:6f:6c:38:26:6e:21:d9:6a:c4:1c:63:c2:41:51:
4e:c9:50:5c:71:81:f5:26:62:8f:4f:4f:b4:66:82:
ff:de:2f:bc:ba:85:93:59:c3:63:c2:ba:dc:eb:b0:
6b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D0:27:49:96:DA:B5:A1:21:31:9D:CE:7B:B4:E2:1F:D0:AC:9A:AB
X509v3 Authority Key Identifier:
keyid:23:95:72:DD:FC:AB:62:91:E6:41:0C:CD:4E:86:0E:E3:60:00:E6:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5Vy3fyrYpHmQQzNToYO42AA5mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/1d7f08-e77c-4338-9a39-8e19c0db86c2/1/I5Vy3fyrYpHmQQzNToYO42AA5mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:ae:6e:60:ff:1b:8f:b2:7a:b4:0a:8f:e9:28:ee:13:45:90:
f7:46:34:92:76:59:18:13:d0:98:94:15:24:bd:87:ed:5f:0a:
6c:62:45:02:6d:0d:2a:27:5b:23:18:38:a4:7c:d6:02:48:b4:
30:5c:8a:08:21:3c:c0:27:be:a3:ef:28:35:22:69:7d:95:40:
99:21:6f:54:d5:25:27:76:5d:ef:8d:5b:51:fd:5a:ae:c3:4c:
7a:50:f0:4c:0a:64:cd:c0:77:17:f4:ae:7e:5b:59:e6:c1:38:
1d:15:51:98:74:66:02:35:d8:25:74:3f:e9:9f:bc:3f:20:10:
5d:f6:d3:b8:45:93:2c:bc:6d:72:1f:cd:5e:74:44:99:ad:f8:
70:8e:b6:dd:ef:63:30:c8:cd:2f:d8:04:36:77:4a:44:7c:ee:
68:31:1b:c5:e0:b6:ab:89:52:02:f7:af:c7:1a:16:ae:2f:67:
47:5e:46:60:75:83:90:71:2c:2e:0c:0d:a1:98:cb:63:50:c2:
bd:ff:ac:e3:f4:1b:d9:34:3c:89:ef:01:45:75:8c:be:83:c9:
9d:c4:9c:92:4c:22:de:11:8a:b8:22:c6:6e:38:39:7c:13:24:
e4:43:71:57:43:c0:0d:c4:82:57:9b:77:3d:c7:cd:e7:fd:a0:
d2:67:ad:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:33 2025 by rpki-client