Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
File: I32X8VCOekR4mfWaVfuKpiQe9RA.mft (raw, json)
Hash identifier: HpNPh6NZxfSKzbprL4FmwlY+txgluBOOUIRdJd1Yhq0=
Subject key identifier: C3:B8:9B:F4:D1:F1:DB:74:1C:54:AF:17:62:9C:F8:2F:AB:C4:8B:8D
Authority key identifier: 23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
Certificate issuer: /CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Certificate serial: 019A26D4AB0F0CB94BA9C5A396648056564C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
Manifest number: 0584
Signing time: Mon 27 Oct 2025 18:01:02 +0000
Manifest this update: Mon 27 Oct 2025 18:01:02 +0000
Manifest next update: Tue 28 Oct 2025 18:01:02 +0000
Files and hashes: 1: AgvVH_Z5ZikBFIUyEGB_f4ftLfg.roa (hash: Ii6l1o1UjR6zsFk/Ik5xPFxEIQrzvV/YcOC6UeUTh7g=)
2: I32X8VCOekR4mfWaVfuKpiQe9RA.crl (hash: Buk3CPtj3qEXKd3Zp9T/e0WsgHYB1gA4V7QpheUS9sU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:d4:ab:0f:0c:b9:4b:a9:c5:a3:96:64:80:56:56:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Validity
Not Before: Oct 27 18:01:02 2025 GMT
Not After : Oct 28 18:01:02 2025 GMT
Subject: CN=c3b89bf4d1f1db741c54af17629cf82fabc48b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a1:af:67:52:71:8a:3c:40:bc:78:9a:25:0a:
78:6c:61:26:cf:a1:d4:4d:f2:06:c7:37:d9:de:51:
f3:aa:f4:56:20:32:48:6e:b2:54:35:8f:4a:d9:ee:
ad:65:23:0d:02:75:27:d9:62:47:b2:ba:b8:e8:ad:
48:c7:84:1f:45:ce:39:ff:60:e5:1b:ce:3c:50:de:
de:82:42:57:59:ec:43:e9:c4:44:63:bf:db:48:ad:
4b:cc:f8:4c:46:f0:f1:17:b8:7f:d4:a5:38:47:c4:
8f:e1:bd:59:4c:30:e2:87:c7:b0:13:31:1d:0a:f6:
63:03:85:0e:1a:c4:9b:f6:40:eb:d7:b7:9a:01:ef:
f5:c6:80:b1:17:6d:ad:63:67:e7:d6:ea:e0:05:40:
16:0e:4f:a9:db:1b:96:66:5d:99:a7:0d:a0:7d:47:
3e:d9:3f:be:44:54:b5:24:a7:6f:e4:d9:fd:03:f5:
aa:47:1b:f2:72:74:a9:c3:de:9b:89:e8:3e:3a:50:
59:48:62:36:af:70:fd:09:6a:d8:07:62:30:3d:06:
04:6e:24:d1:78:11:86:59:e8:03:67:47:52:f1:1f:
c6:fb:49:84:88:2d:41:c9:d0:0d:34:a1:66:a4:e3:
d2:10:f1:99:49:04:18:46:09:3d:26:b2:4c:b7:25:
71:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B8:9B:F4:D1:F1:DB:74:1C:54:AF:17:62:9C:F8:2F:AB:C4:8B:8D
X509v3 Authority Key Identifier:
keyid:23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:a2:d4:7b:5d:33:00:4a:bf:53:45:bc:19:29:1b:c2:e2:fc:
0c:71:73:a1:ef:61:82:ce:4a:ab:ed:51:7d:bc:c8:54:b6:79:
d3:df:d0:da:01:e0:29:ad:a9:6c:e0:f3:29:96:d7:2c:d6:0e:
17:b8:f4:ed:d2:59:a0:74:3d:45:85:e7:cd:6a:af:1b:e4:ad:
d8:fa:82:78:af:d7:1f:4c:a5:a5:ba:fd:33:34:d6:df:15:cc:
b8:dc:36:78:16:05:2a:9e:23:15:e2:29:2b:87:95:d9:78:18:
52:1e:62:f5:f5:af:d7:7f:e6:e5:b2:a4:de:3a:99:7b:de:1b:
4b:ee:2b:89:ed:1c:1b:23:8a:99:3e:e9:53:79:bb:c7:10:8a:
47:d8:73:ef:ba:6c:25:2c:6f:2c:3a:2b:37:c4:0f:ff:34:ac:
90:4f:47:3b:ba:c1:fa:fc:52:e8:00:81:da:03:e8:fc:74:c7:
59:90:c0:1a:77:82:8a:6b:89:73:b7:47:15:49:1f:fc:c5:51:
3b:16:83:ba:a3:4c:27:4e:25:c0:d0:fd:33:df:18:0e:78:c0:
36:09:85:f5:a1:35:7f:56:19:0f:70:63:e4:e8:ef:ff:ea:f0:
2e:c7:ad:08:eb:70:93:69:bc:ca:ac:bf:55:f9:79:df:12:b8:
e0:50:37:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 21:48:32 2025 by rpki-client