Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
File: ICZNUaES0LwizqcxTLBs9aGuM-k.mft (raw, json)
Hash identifier: shFje7oEipYZlK+dj2Hwwt1bQh+QZvrVB3Oy7xLjcCw=
Subject key identifier: DA:0B:2D:B2:CA:EB:B1:FB:D6:69:35:34:C2:B3:BD:5E:61:C7:06:41
Authority key identifier: 20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
Certificate issuer: /CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Certificate serial: 0199240D6CF758EB840881F52A402D8A8A17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
Manifest number: 1605
Signing time: Sun 07 Sep 2025 12:01:23 +0000
Manifest this update: Sun 07 Sep 2025 12:01:23 +0000
Manifest next update: Mon 08 Sep 2025 12:01:23 +0000
Files and hashes: 1: FXy87TSnS3zZKpD3cubdEzL9JTI.roa (hash: ev8YOzfcP94Okj6loLdeokLYKFfF9CSd4o8ZPprNj7U=)
2: ICZNUaES0LwizqcxTLBs9aGuM-k.crl (hash: AsxQ5tYH/J8Aj1xIU8t3BcEM3kDYj6XB012SmVheQ1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:6c:f7:58:eb:84:08:81:f5:2a:40:2d:8a:8a:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Validity
Not Before: Sep 7 12:01:23 2025 GMT
Not After : Sep 8 12:01:23 2025 GMT
Subject: CN=da0b2db2caebb1fbd6693534c2b3bd5e61c70641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b1:a2:04:6d:85:6e:8d:9a:d5:83:cd:79:72:
72:aa:6b:1b:01:48:e0:d0:8f:1c:67:eb:62:24:be:
c6:21:6f:d7:ef:07:5c:ab:69:14:08:9c:a6:ba:88:
97:8b:ad:e5:62:65:16:d2:77:c2:8a:e4:2a:48:a3:
07:22:ac:32:d7:3b:be:40:eb:d7:f7:d4:28:f5:d1:
6c:c2:da:13:fd:7c:7c:7a:d5:4e:86:65:d1:0b:7b:
79:cb:1f:f8:b0:68:0a:0d:42:33:6a:ce:7f:32:e6:
e8:d3:72:5e:7a:51:51:d7:a2:66:58:7a:18:76:f4:
35:cc:77:9f:51:9b:14:ea:6f:ef:09:2b:61:95:29:
9b:f8:2c:46:f6:21:7c:0f:23:9b:95:a0:92:85:21:
3c:39:7f:e1:96:9d:b7:1d:64:09:ae:50:aa:3e:6d:
4c:09:22:a7:6d:bf:5e:17:69:0f:57:05:b5:85:8b:
9b:88:c0:1e:52:a1:e7:f8:fb:aa:3d:8f:e4:b5:53:
00:30:89:90:4f:2f:06:ef:26:ae:32:b1:59:2a:5a:
a8:09:d2:c8:08:3d:c1:f3:a9:5e:f9:7c:d1:01:bf:
80:cb:6f:ba:ef:be:54:0b:d3:f2:80:20:26:60:70:
14:10:f8:37:b7:0c:22:33:01:5d:66:a3:5d:34:7a:
ad:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:0B:2D:B2:CA:EB:B1:FB:D6:69:35:34:C2:B3:BD:5E:61:C7:06:41
X509v3 Authority Key Identifier:
keyid:20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:60:40:70:bb:ac:c6:de:7d:c2:07:e3:8f:a6:78:cf:f7:7b:
c5:a6:3e:9f:06:93:a2:fe:f3:ef:87:40:88:31:a5:aa:c9:ed:
46:1f:2a:ed:8e:82:37:1d:90:59:f6:65:ba:58:38:6c:de:26:
5d:34:fd:9e:83:41:86:92:f6:19:05:1a:87:24:eb:cf:b2:2a:
20:67:3a:d4:c2:61:2d:79:77:52:7c:bd:8f:8b:ec:59:bc:a8:
3b:5d:39:29:91:b9:5f:c5:71:83:28:1a:1d:6b:32:af:be:5d:
2d:96:ac:c5:5c:bd:a1:92:18:8e:81:f0:38:df:a5:3f:7e:3c:
63:66:4e:b7:e7:cd:52:4f:b3:67:e3:d3:10:48:87:89:d5:38:
db:f6:42:c6:2e:d1:d9:d4:04:9a:45:c4:ba:fb:2c:35:fb:4f:
16:b2:19:92:36:2f:25:c1:02:15:39:f1:03:7f:62:4f:39:0c:
bf:c3:21:c5:d9:2f:b5:b1:7b:5b:62:8a:e6:8c:dd:45:34:36:
d8:fa:0a:50:9b:2f:f5:6c:a5:a6:1f:51:b1:9e:81:a3:65:bd:
cb:63:06:7b:60:a7:22:d3:4f:d4:5e:39:e7:1c:57:53:61:fb:
93:0e:29:28:8c:78:87:ac:ac:f6:28:15:b1:9c:d7:dc:fb:89:
dc:fa:90:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:50:43 2025 by rpki-client