Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
File: iTr-zXEXBcR2t4XQyG71TCEkNUw.mft (raw, json)
Hash identifier: sn2SGZzHLrPP2uIx721WDavy4HTYNWSOqn7vMmL/qXM=
Subject key identifier: 6F:B9:19:5A:CE:90:4B:D8:58:FF:A4:2A:D9:1F:72:6C:94:4A:6B:BA
Authority key identifier: 89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
Certificate issuer: /CN=893afecd711705c476b785d0c86ef54c2124354c
Certificate serial: 019A225239356AABE5750C717280E7FB7AF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
Manifest number: 16F6
Signing time: Sun 26 Oct 2025 21:00:05 +0000
Manifest this update: Sun 26 Oct 2025 21:00:05 +0000
Manifest next update: Mon 27 Oct 2025 21:00:05 +0000
Files and hashes: 1: I3MDgaIPk5rQhFYqlKJ88u7QcKA.roa (hash: 9W6ILnGR89GeCDK+0ZtMLah7T+7H4VrTikrakuva5SY=)
2: hdbWZzPv8mKL7ila4Mhuuk01Www.roa (hash: CfHG1SiNzylmV2mCUzoHK+y9CvaZseJUgqyvhhx1NeI=)
3: iTr-zXEXBcR2t4XQyG71TCEkNUw.crl (hash: TTUykvS5HrykkezUu/jpcT+px3PBeX2yHFyf1w/LhrE=)
4: rO9T6t_WHUnkGmIleBFSGRnlKnY.roa (hash: wcBWF7o7prWlR7s8a04nO9bFFc8bqPRJlh3HL2eDAqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:52:39:35:6a:ab:e5:75:0c:71:72:80:e7:fb:7a:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=893afecd711705c476b785d0c86ef54c2124354c
Validity
Not Before: Oct 26 21:00:05 2025 GMT
Not After : Oct 27 21:00:05 2025 GMT
Subject: CN=6fb9195ace904bd858ffa42ad91f726c944a6bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:49:20:61:9a:f4:3c:a6:a7:60:f4:01:0d:00:
11:b8:e4:5d:98:67:7f:57:40:68:db:43:79:2e:93:
d1:a2:1e:14:b9:5f:65:5d:ec:d4:ef:4c:29:e2:29:
cc:a8:53:0a:ff:08:ae:4b:00:ab:2b:fc:eb:4a:84:
d2:b3:c8:a3:b1:18:cc:53:8c:36:d8:f5:ee:77:27:
be:23:e7:67:8f:b6:35:9d:95:df:15:fa:2d:8e:a7:
b2:a1:78:6a:5a:74:0b:67:95:c3:9d:2b:dc:9e:3f:
d0:80:d1:6e:c1:22:d6:e1:fb:ac:1a:e3:33:50:83:
1c:b0:e2:78:83:82:34:d2:6c:30:d9:d9:1b:dd:2c:
3a:fb:3b:9e:c3:3a:86:94:c3:e2:54:2f:a6:10:f2:
80:34:2d:11:48:97:f3:cb:9e:0f:72:34:a0:55:9e:
39:fa:9c:aa:7e:cc:68:74:e5:e4:38:11:18:fb:43:
cc:4a:d7:9b:fa:af:87:3e:dc:87:9b:20:49:92:06:
aa:cf:4d:4f:0a:11:41:fd:7f:e4:59:df:8c:83:91:
2e:53:32:76:96:98:b2:6b:9b:d8:c3:53:83:25:55:
8e:09:7d:1e:38:5e:b8:e4:7f:c1:25:f6:46:53:07:
cd:ad:2c:a3:a7:24:e4:63:67:85:e2:e5:c8:f6:bb:
48:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B9:19:5A:CE:90:4B:D8:58:FF:A4:2A:D9:1F:72:6C:94:4A:6B:BA
X509v3 Authority Key Identifier:
keyid:89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:c7:e2:eb:97:cf:16:4b:60:9b:dc:c6:25:a2:3d:5a:b6:9b:
c0:0b:e6:4d:eb:11:53:f1:57:a9:d3:de:b2:50:7b:f8:83:fb:
53:28:d7:df:b5:f8:8c:0c:e6:53:cf:9e:76:9a:6f:4c:88:c9:
59:fd:35:9c:24:86:b6:98:94:7a:af:75:5e:a5:48:09:80:6b:
0d:a1:ad:d9:99:50:96:1d:7e:62:99:a4:a4:92:97:cb:db:9e:
68:e5:11:51:1e:92:7e:7f:31:2a:e6:21:ae:b3:16:d6:18:f7:
5b:5a:a2:f4:cc:e1:a4:b2:97:a0:93:37:cd:28:fd:43:44:f5:
6f:15:08:87:c9:91:3b:2d:c7:30:42:f5:b9:8f:0d:aa:da:d4:
3b:ec:f8:bc:79:d6:f2:13:15:d8:e3:d6:0d:5f:51:83:88:d3:
67:b5:15:28:ff:cb:79:d2:43:f2:a1:70:ef:ef:5c:c7:52:8b:
c2:28:14:5e:30:3d:df:f0:1f:d1:37:72:59:91:8d:bb:20:36:
15:da:df:cb:be:83:4c:e8:59:01:b7:42:f9:ba:44:95:1d:f4:
a6:ec:44:e1:91:ed:6a:8b:f4:db:3f:56:6f:20:35:25:5e:0c:
e2:7a:af:86:95:ad:65:85:db:5b:ba:ca:d9:7c:ac:a8:e9:55:
cf:23:0c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:33:34 2025 by rpki-client