Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
File: iLda7v6O6hrFwhnYdQXS58XzL0g.mft (raw, json)
Hash identifier: AhpumAxNntNz5GMv8MoZZpIw7XxC7b2bM4vK5M4CA6Q=
Subject key identifier: AD:2F:CF:18:E3:92:CB:10:E0:58:C3:26:B6:90:05:5F:D2:85:33:E7
Authority key identifier: 88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
Certificate issuer: /CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Certificate serial: 019A209BB499A6910F34495DC20073B9857A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
Manifest number: 16F6
Signing time: Sun 26 Oct 2025 13:01:06 +0000
Manifest this update: Sun 26 Oct 2025 13:01:06 +0000
Manifest next update: Mon 27 Oct 2025 13:01:06 +0000
Files and hashes: 1: RmCRqlQnRe9rCwX7VMuUVE41d98.roa (hash: /tq1VC9HIJ7jRew5LuuwcJaQrPrPH8vbpHUg/uqU1rE=)
2: iLda7v6O6hrFwhnYdQXS58XzL0g.crl (hash: FddeFv5ihwZc5lk4W7RnZ2Wwtgjkoimpw9bamxhlH1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 13:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:20:9b:b4:99:a6:91:0f:34:49:5d:c2:00:73:b9:85:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b75aeefe8eea1ac5c219d87505d2e7c5f32f48
Validity
Not Before: Oct 26 13:01:06 2025 GMT
Not After : Oct 27 13:01:06 2025 GMT
Subject: CN=ad2fcf18e392cb10e058c326b690055fd28533e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:27:7e:72:01:27:77:46:ad:98:cc:23:ec:25:
45:e1:1f:c3:56:33:7b:52:88:de:56:e1:10:32:d8:
89:dd:d1:59:67:a1:d3:48:38:9d:5f:09:b9:49:51:
0f:35:1c:2c:95:fb:1f:fe:b1:7a:8d:8b:81:fa:bb:
8a:9c:df:13:f4:00:90:32:b9:db:e7:65:b1:b0:1a:
77:2b:95:ef:86:0a:c9:25:86:cf:0d:ca:32:55:bd:
3b:ac:d8:58:35:1c:26:ac:1a:4f:69:a1:5b:6e:7b:
3b:c0:a0:9c:21:10:90:50:61:2c:ae:67:cd:22:4b:
0b:d7:96:b9:e9:2d:f1:b1:c4:8c:23:bc:61:db:12:
6f:fc:d1:2f:14:c5:0c:5a:6b:6c:a4:a1:e9:64:81:
1f:bf:fa:0a:83:08:50:93:a1:e8:38:55:dc:f9:41:
65:6e:3b:12:b3:3f:a4:ba:1c:38:2f:93:3e:d5:46:
c7:d1:35:85:14:53:af:6d:ac:82:44:24:70:45:72:
1d:29:d1:fb:df:5f:ec:df:af:bf:76:39:fb:77:56:
f5:99:86:94:f9:4c:f9:2d:5a:da:98:91:6f:e1:55:
ff:04:2b:47:fe:81:99:8e:8f:38:91:8d:cc:74:cf:
63:e7:af:b3:db:b2:21:cb:32:b4:0d:0c:a5:25:77:
a8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:2F:CF:18:E3:92:CB:10:E0:58:C3:26:B6:90:05:5F:D2:85:33:E7
X509v3 Authority Key Identifier:
keyid:88:B7:5A:EE:FE:8E:EA:1A:C5:C2:19:D8:75:05:D2:E7:C5:F3:2F:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLda7v6O6hrFwhnYdQXS58XzL0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4d2831-12ec-4770-9cea-9ac08c3eaaa1/1/iLda7v6O6hrFwhnYdQXS58XzL0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:16:15:59:14:81:78:3b:db:29:08:fa:9d:51:a4:3b:d6:be:
b9:5a:08:68:21:8e:6e:83:4e:59:f9:2b:25:66:01:61:d9:ae:
5f:9a:3a:7a:66:ae:8e:74:6e:84:23:fc:9f:43:e9:89:b5:02:
b4:a8:09:e7:ee:1a:c0:5c:e0:be:bf:fd:c8:5b:ea:fc:d0:a7:
99:b2:13:3a:ff:24:e2:b1:7e:94:db:e6:fd:65:45:c7:1f:42:
ea:7d:78:45:f9:1c:84:39:6e:fc:b4:f8:39:19:8c:44:45:aa:
79:d2:ba:07:1d:c0:96:9f:28:2e:dd:ec:94:a4:6a:35:95:b3:
95:42:30:f5:bd:88:5f:d8:8a:56:d6:dc:1e:a7:a8:ef:ac:fd:
46:23:4c:a7:fa:d9:0b:3f:ea:03:50:d0:1b:1a:49:47:f6:08:
1c:c4:1a:1a:f9:f8:b6:8f:98:c3:45:5b:4c:33:d6:8d:aa:c8:
1c:db:31:cf:82:1b:55:d3:c3:15:1e:01:af:47:3b:9b:ec:cf:
a7:0e:c3:51:7c:a3:3b:c4:3f:06:8a:e9:17:8a:ae:a7:3f:00:
ee:57:91:b0:80:e5:ba:09:7e:e5:cb:b0:0b:62:ab:a6:f5:b3:
f3:19:00:83:96:e8:50:28:fe:56:ec:77:41:b4:5d:7a:c1:e3:
52:41:7f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 22:40:42 2025 by rpki-client