Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json)
Hash identifier: zuzmk1HrpdJOpuVm/XYRc9qXg9gNMjNf+4zSMAvdWmE=
Subject key identifier: 8E:CB:23:DC:EF:72:89:3F:73:56:00:F5:74:F6:AA:FA:0D:C6:DB:C7
Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Certificate serial: 019A09DC41E2303E6336290F4360B41AC90A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
Manifest number: 019C
Signing time: Wed 22 Oct 2025 03:00:20 +0000
Manifest this update: Wed 22 Oct 2025 03:00:20 +0000
Manifest next update: Thu 23 Oct 2025 03:00:20 +0000
Files and hashes: 1: XcIL6Sukfm7k1AWtWl445xp4QV0.roa (hash: 4UDRmx72tIl2+y56n6Ye2uGR21iaVE2WkWXR6GxV+6Y=)
2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: T01MBJ8cD44JbTwC/YbdTr4mECWhageJ7+u//8FZhuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:09:dc:41:e2:30:3e:63:36:29:0f:43:60:b4:1a:c9:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Validity
Not Before: Oct 22 03:00:20 2025 GMT
Not After : Oct 23 03:00:20 2025 GMT
Subject: CN=8ecb23dcef72893f735600f574f6aafa0dc6dbc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:88:ca:03:82:3c:1a:e7:49:c0:06:65:11:f1:
ab:60:0b:64:92:3b:8a:f0:5c:67:d0:a4:4d:10:42:
1f:c9:55:f8:5d:f6:c2:ac:15:dc:74:00:59:7c:3b:
9a:61:78:02:4e:06:14:83:9e:d8:9f:ae:47:99:d5:
e7:a9:15:e4:79:19:4e:c1:cc:37:ad:5f:12:bc:b0:
c3:aa:4d:b0:a6:c0:87:fd:11:24:7e:e1:5a:9d:40:
39:b2:13:6e:a2:b3:b8:84:51:18:ba:fa:7a:44:31:
54:42:9d:fc:c2:e2:f3:bf:7b:95:96:30:04:ee:73:
f3:24:6d:cf:7c:44:27:68:60:aa:92:a7:4e:07:4b:
82:83:3f:5e:57:28:3a:43:57:06:25:8a:a4:d2:16:
f0:f7:61:3e:41:52:44:91:fa:84:65:21:63:1b:12:
67:2b:aa:55:4e:45:8d:94:13:e0:ca:8b:e8:1f:1d:
aa:14:de:01:13:62:10:26:5b:d1:9a:ac:36:01:bd:
61:14:ba:a0:5e:85:6f:b3:e0:96:4e:7d:46:8c:7f:
64:4a:ff:3c:6c:f2:09:4f:d9:7b:09:7e:34:95:c2:
8d:9b:cb:17:33:d3:a1:eb:bd:0f:57:c0:5b:63:09:
15:93:37:2a:fe:67:42:4c:0e:2c:ba:69:a3:cb:94:
7e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:CB:23:DC:EF:72:89:3F:73:56:00:F5:74:F6:AA:FA:0D:C6:DB:C7
X509v3 Authority Key Identifier:
keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:30:b4:51:9b:87:3b:52:95:82:e7:5e:4e:05:64:e3:4d:62:
34:cf:5a:fd:64:ef:88:5e:75:f8:e2:78:ef:7d:66:ba:10:1d:
96:c2:4b:a0:fd:e0:3c:10:a4:68:a3:59:c2:26:38:9d:58:d1:
90:6b:13:73:4d:a8:45:e7:20:7b:fd:d0:50:a1:0b:48:6c:87:
cd:b0:34:4a:40:e3:a1:6e:90:e3:af:5a:26:03:cf:98:df:ee:
65:3a:da:ce:9b:45:38:ad:2b:11:40:f1:7b:5f:8c:53:08:2f:
d3:3a:7e:30:8b:2b:f3:4c:43:bd:7c:af:f0:e1:0f:9f:6a:0c:
89:ee:70:ea:12:8b:51:fd:76:8b:7e:40:c6:70:37:71:8c:c7:
2d:f6:12:c3:1b:4e:3e:cb:ec:74:08:a6:d3:7c:24:66:f7:80:
87:dd:27:5c:d7:d6:68:45:2c:72:8e:5d:9b:a4:36:39:2a:09:
4b:19:5d:85:c8:ac:7c:b1:18:57:9c:18:96:51:ac:01:3c:1c:
55:c2:ef:f3:38:86:71:85:59:3d:1e:df:19:2c:6a:66:e4:ed:
21:a3:66:80:13:e0:ac:bf:5d:62:b5:9d:5d:88:f0:1f:cf:01:
51:a3:17:83:6e:6c:27:90:4c:88:2d:6e:3b:30:6a:e4:de:83:
5c:9d:14:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 05:27:38 2025 by rpki-client