Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
File: IwQieKfGvGylbuevokosgfPcvvs.mft (raw, json)
Hash identifier: olSt85wrlX0fvFXHUj63aIaW/DSfU39i5YM1p4Ytlxo=
Subject key identifier: 57:A9:FF:C1:10:60:BD:25:41:E6:A1:F3:9C:7F:85:D5:5A:80:EC:93
Authority key identifier: 23:04:22:78:A7:C6:BC:6C:A5:6E:E7:AF:A2:4A:2C:81:F3:DC:BE:FB
Certificate issuer: /CN=23042278a7c6bc6ca56ee7afa24a2c81f3dcbefb
Certificate serial: 019A714A1F6B66627350347EC5CDD447BF3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
Manifest number: D1
Signing time: Tue 11 Nov 2025 05:01:14 +0000
Manifest this update: Tue 11 Nov 2025 05:01:14 +0000
Manifest next update: Wed 12 Nov 2025 05:01:14 +0000
Files and hashes: 1: IwQieKfGvGylbuevokosgfPcvvs.crl (hash: JEZxSv3ONglSuXYCON80QM/a8E8fxygydvzAHWZqTKE=)
2: ManRoikqCH8KwvOz44LDMrdwCFo.roa (hash: qAyJuAPjcARXxe4I2UO3Ge3c4j/b7yjJiIwvOV306Hc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:4a:1f:6b:66:62:73:50:34:7e:c5:cd:d4:47:bf:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23042278a7c6bc6ca56ee7afa24a2c81f3dcbefb
Validity
Not Before: Nov 11 05:01:14 2025 GMT
Not After : Nov 12 05:01:14 2025 GMT
Subject: CN=57a9ffc11060bd2541e6a1f39c7f85d55a80ec93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4d:44:33:43:9c:5a:6b:9a:b6:b6:c8:81:c8:
49:18:a9:8b:ed:98:35:b8:d3:87:dd:ff:7b:97:e7:
3d:7d:90:cb:92:4a:37:41:dc:5a:36:2a:fc:3e:bf:
f9:3f:8d:4b:02:69:52:54:4e:4c:49:cb:a7:ae:cd:
0a:81:2a:7b:86:ef:03:55:c1:c8:4f:4d:82:a8:93:
94:51:7f:48:cf:61:44:19:41:f4:38:58:ec:8b:be:
0b:5a:bf:c6:f7:b1:8b:ff:e4:51:c2:00:ee:49:0e:
c8:aa:01:91:8b:ec:68:be:e3:ea:af:2d:a3:55:92:
0f:49:0b:fb:ce:70:35:fe:68:82:44:38:26:a6:cb:
44:5f:36:05:23:22:1a:2f:8e:37:b2:ca:77:45:e5:
6e:c3:a1:5d:a9:46:ab:b8:f6:72:83:60:be:6e:ae:
7f:8a:12:9c:8e:0e:f8:f7:6e:2e:fb:78:19:e2:1f:
75:5d:8c:be:5a:2e:c6:a6:93:a3:03:4b:f4:11:2b:
7f:e3:ae:45:e4:27:f4:98:e5:9f:42:f8:f0:8e:08:
74:02:e7:45:fe:5b:70:60:93:12:b6:85:70:66:29:
4f:28:c0:08:4a:4e:c2:0f:1c:13:a3:dd:02:a9:67:
88:52:c3:f9:a2:df:89:f9:e7:a2:f5:70:30:64:35:
be:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A9:FF:C1:10:60:BD:25:41:E6:A1:F3:9C:7F:85:D5:5A:80:EC:93
X509v3 Authority Key Identifier:
keyid:23:04:22:78:A7:C6:BC:6C:A5:6E:E7:AF:A2:4A:2C:81:F3:DC:BE:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwQieKfGvGylbuevokosgfPcvvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/78ebcb-dca8-42d6-af82-3ad6e5dc07d7/1/IwQieKfGvGylbuevokosgfPcvvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:88:50:20:bd:3e:d2:5a:b0:74:4d:94:02:1d:0c:19:ab:25:
d5:bc:3f:01:c4:a8:52:2f:83:d0:ed:5a:95:ac:ac:01:a2:b2:
61:70:03:bc:e0:97:ea:a5:0f:27:50:ea:71:28:49:f3:08:fd:
c3:3d:b6:20:0d:ff:a4:f9:9b:cb:dd:2f:d5:56:ea:7c:28:73:
a1:a2:94:64:27:c8:61:91:79:b5:66:44:90:e6:25:2d:a0:b7:
f6:a8:40:8d:61:d8:5b:43:7f:dd:83:3e:1e:20:e1:e9:73:b3:
48:4e:31:43:a2:37:95:fc:8d:37:e6:b1:41:eb:b2:ad:f0:00:
43:14:3b:30:03:7a:8f:ad:a2:f7:cd:e2:ac:df:39:49:8a:a7:
68:1f:df:08:34:2c:01:ae:03:8e:25:10:66:e0:99:6f:19:b9:
6c:7e:fb:f1:e7:77:01:0d:fc:06:6a:ad:d9:fc:91:f5:61:94:
b0:68:95:ce:f3:82:aa:19:b7:7f:50:3d:9c:b6:ee:89:5e:38:
e1:16:5f:e7:56:ef:11:65:a5:3e:ef:80:ae:6d:41:81:c6:15:
a8:55:82:fd:b3:c3:ba:f0:3b:30:2b:ce:42:ab:62:c8:87:e4:
9b:27:15:94:eb:d8:c0:3c:47:47:66:b4:b7:a7:a5:11:07:5b:
7f:ff:3a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:16:17 2025 by rpki-client