Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
File: IQm0ddOrXNHMHElnHnf_nbXOGfE.mft (raw, json)
Hash identifier: Wt3QENVc/bo5LbHpLKGgTrC5D+odR1oEOvBjMqVnVyI=
Subject key identifier: 37:FB:39:66:95:0E:A6:3D:9D:A1:DF:3B:FA:D9:DA:08:2A:9C:74:B9
Authority key identifier: 21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
Certificate issuer: /CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Certificate serial: 01992820B69F4ED7D3E123D7F94CA6244371
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
Manifest number: 106F
Signing time: Mon 08 Sep 2025 07:00:56 +0000
Manifest this update: Mon 08 Sep 2025 07:00:56 +0000
Manifest next update: Tue 09 Sep 2025 07:00:56 +0000
Files and hashes: 1: IQm0ddOrXNHMHElnHnf_nbXOGfE.crl (hash: c/8OW1tSHHI2tXwMaWJwAmHT9kOLpgO9tFcAJP0ziIw=)
2: gxfPyS5KakpFEwmfLQLrUMtzDuA.roa (hash: rxllc4raZ48lNaZN0VdX0i2mHb0wFctajLKxvoGGQes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 01:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:28:20:b6:9f:4e:d7:d3:e1:23:d7:f9:4c:a6:24:43:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Validity
Not Before: Sep 8 07:00:56 2025 GMT
Not After : Sep 9 07:00:56 2025 GMT
Subject: CN=37fb3966950ea63d9da1df3bfad9da082a9c74b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a2:ae:53:9a:1f:e5:3b:f5:40:9c:f8:2e:d2:
bd:49:e5:b8:b7:15:52:b0:90:c6:44:da:c6:22:bf:
66:a4:af:98:f9:70:9c:45:5d:e8:ef:06:b4:9c:1f:
ef:f6:36:e9:b1:9b:27:5c:54:97:de:e7:fb:e7:b3:
62:6d:1f:27:e9:09:99:8c:48:12:70:59:a3:83:e9:
b5:c0:4f:67:ad:00:5f:4f:4d:73:76:af:18:b1:e4:
e0:69:98:25:98:35:b7:b7:48:4f:21:f3:00:5f:69:
bd:1d:50:96:fe:b6:26:8b:56:26:26:52:81:d7:3e:
c2:ea:5e:cf:c3:04:05:cc:43:24:47:a7:62:21:42:
f8:40:27:41:7c:18:4c:34:52:20:a4:cf:3e:ad:08:
a7:6a:f3:7b:53:d3:47:77:1c:d2:e6:7d:2d:69:3e:
bd:8b:ee:5a:90:8e:68:70:86:5f:22:39:00:c0:21:
5b:88:14:5f:fb:e5:cd:50:76:c1:aa:85:c6:0d:6f:
ad:6b:dd:72:bd:2f:50:b4:27:57:06:4d:35:30:66:
6c:1e:d9:ee:c6:a2:79:bb:41:8a:e0:89:b5:0f:7c:
6f:fb:f6:4b:9a:72:0b:6e:93:93:fb:83:23:00:ba:
10:ca:e0:3c:e8:de:c1:8d:ba:be:0c:15:b9:fc:29:
d0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:FB:39:66:95:0E:A6:3D:9D:A1:DF:3B:FA:D9:DA:08:2A:9C:74:B9
X509v3 Authority Key Identifier:
keyid:21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:41:2a:2c:83:de:95:49:95:b7:f7:a3:c8:51:90:6e:9a:69:
5d:55:f9:ae:4b:0b:b3:e1:a6:b4:36:f1:ed:09:b1:05:5f:bd:
39:df:93:13:9d:e1:ad:92:3b:41:eb:ba:c0:c1:10:71:d3:8c:
33:69:d9:8a:48:14:cd:f7:fe:9b:3a:02:75:34:af:7f:1a:d3:
a1:5e:61:71:ae:4d:58:bb:46:d3:8b:52:09:8e:75:83:6d:d6:
69:1b:ff:8f:b9:69:77:12:2f:5a:34:cb:41:22:b2:0e:86:3f:
54:a7:87:2a:a8:d4:4d:f1:cc:e2:be:17:9f:3b:ff:21:e4:41:
d8:58:94:e8:31:06:90:9b:a9:02:73:df:08:6b:09:78:93:6f:
98:ce:c6:df:03:28:31:78:e6:75:21:e7:a6:2d:6b:e8:67:41:
22:e4:7b:4b:ab:04:e0:03:a8:e9:20:b1:07:c6:d9:27:f6:be:
b3:ed:e9:b7:ec:88:25:9f:ef:45:69:d0:92:80:68:47:96:e1:
9c:4a:56:b9:84:e4:cc:8c:0b:b8:d9:63:b5:64:31:40:56:1e:
7a:ce:de:94:01:15:d8:87:3e:c6:02:df:50:d8:c7:50:c7:be:
25:af:f1:69:ca:81:88:ab:b1:d6:69:34:f8:42:61:53:c8:75:
da:be:40:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:35:38 2025 by rpki-client