Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json)
Hash identifier: W5B07krrsZqR3y6Aq20v4TcBAifzomaT2A4nC2a170Q=
Subject key identifier: 79:A5:03:D8:96:50:B1:84:C7:D5:1F:3A:17:23:2A:C2:AB:9D:84:E6
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 019A0AEF6267580E4F06638E10383C9B7B06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
Manifest number: 1106
Signing time: Wed 22 Oct 2025 08:00:51 +0000
Manifest this update: Wed 22 Oct 2025 08:00:51 +0000
Manifest next update: Thu 23 Oct 2025 08:00:51 +0000
Files and hashes: 1: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: JV8HCxx6g9mXzM+UzrA/vgd7BuzgK1+5soax3vu6MZs=)
2: qaZCGy8ImKVej6couAVTC--aSzI.roa (hash: dKUZq0YlDWheyPATDjfQQ4lypZzKgD8qgqRTkln0uKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 08:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0a:ef:62:67:58:0e:4f:06:63:8e:10:38:3c:9b:7b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Oct 22 08:00:51 2025 GMT
Not After : Oct 23 08:00:51 2025 GMT
Subject: CN=79a503d89650b184c7d51f3a17232ac2ab9d84e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d0:52:ca:16:00:c3:e0:c2:26:cd:c2:14:c6:
14:3e:de:46:f4:0b:61:94:a5:70:b3:8b:02:3c:f4:
78:08:d0:a7:4d:21:37:c9:f4:76:e9:45:f9:b5:cb:
22:8e:fe:7a:ca:19:81:b5:37:29:9a:be:d0:8b:3c:
a0:53:52:ed:3a:e1:31:b5:07:25:99:71:c0:84:04:
f4:e4:a9:0d:f1:46:3e:be:47:3c:4b:89:a8:67:7e:
e9:fa:01:af:ee:ca:ff:ca:05:a2:bb:b5:7b:9e:4f:
c0:11:08:7b:8d:f0:2a:d0:f2:55:52:03:8e:74:3f:
1c:37:48:a6:8f:5e:3e:10:64:a1:33:19:ec:e0:1e:
b6:78:19:0a:3f:74:16:36:07:bf:c5:44:ac:bf:d8:
b2:bd:1f:c1:41:69:6b:74:b5:3b:fa:bb:2b:1e:0a:
ab:2a:e3:6e:4a:a0:9c:49:55:78:1d:43:51:03:d0:
ad:06:a3:74:5d:41:95:4e:a3:ab:b2:35:4f:2f:b8:
df:21:52:d6:d7:dc:ae:03:24:38:20:66:12:cc:57:
2f:ef:c8:5b:83:55:3d:19:5f:5d:b9:c6:f3:18:1c:
95:dd:e3:83:47:9b:a8:51:aa:ec:ef:0b:28:e9:f7:
b9:4f:2f:1f:92:b3:f5:63:5a:dc:51:1d:bf:84:4a:
b9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A5:03:D8:96:50:B1:84:C7:D5:1F:3A:17:23:2A:C2:AB:9D:84:E6
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:75:5d:fc:fc:1d:97:e7:48:66:08:26:78:d6:e9:fc:4e:a7:
c4:46:8f:3d:4a:5c:db:53:20:88:aa:8b:d9:73:31:96:03:09:
9e:f2:f4:e5:8d:26:f8:72:64:13:c5:32:da:54:c8:ae:76:b8:
26:03:d6:76:0e:79:f2:c0:11:8e:4f:d7:e6:f3:3f:02:08:f9:
e5:fe:c4:53:35:4b:2c:e4:94:51:5d:bf:cc:44:5f:8e:22:8d:
a1:95:5f:25:83:6c:8e:b6:e2:fc:60:be:04:36:25:55:7a:88:
c0:d5:96:7b:21:6b:3e:12:5f:75:c9:30:de:dc:98:9f:b2:d4:
e3:8a:88:14:6a:7e:43:ac:d5:3c:de:7f:ee:46:a4:25:48:f3:
95:ec:06:1d:75:1b:72:46:0a:2d:7c:52:74:f8:5e:e7:62:a6:
42:90:44:12:7a:f3:1a:60:d7:49:1a:04:80:db:f7:6f:10:38:
a3:bf:63:e1:a7:b4:f7:87:ab:26:3b:21:50:92:57:31:f8:6a:
31:c9:a8:28:09:f7:1c:8c:5b:fe:6f:a3:02:e8:c1:f4:13:10:
17:30:bc:37:41:7f:89:48:4b:d7:d1:03:a1:ff:f3:89:cc:12:
55:22:39:d6:bb:38:a6:fd:9f:d3:1f:fe:44:d8:a2:3e:46:32:
85:92:22:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 19:06:33 2025 by rpki-client