Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
File: IsX-stJfrE3YuqT3HY3CJoGGoDk.mft (raw, json)
Hash identifier: dbnBgTKt+SFQFlH0IfFLtxnVTrav5aQAdJk9Hdj8iqI=
Subject key identifier: EB:CD:7F:86:3D:6C:B4:0D:E9:E8:D5:10:46:E8:F6:6D:72:B2:55:6F
Authority key identifier: 22:C5:FE:B2:D2:5F:AC:4D:D8:BA:A4:F7:1D:8D:C2:26:81:86:A0:39
Certificate issuer: /CN=22c5feb2d25fac4dd8baa4f71d8dc2268186a039
Certificate serial: 0199221F19D42311383439D48231AD70527E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 03:01:27 +0000
Manifest this update: Sun 07 Sep 2025 03:01:27 +0000
Manifest next update: Mon 08 Sep 2025 03:01:27 +0000
Files and hashes: 1: 7CgbMHxuJajLgebxzNfnlB8hYAs.roa (hash: 9Cs5URgUgIByAdH61MOA1mCVhVWDEosP+T03kfLMOlI=)
2: IsX-stJfrE3YuqT3HY3CJoGGoDk.crl (hash: MnR22VuCu49dGr4bFGu5PIDYZkD7sicog1FnV24+Kt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:19:d4:23:11:38:34:39:d4:82:31:ad:70:52:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c5feb2d25fac4dd8baa4f71d8dc2268186a039
Validity
Not Before: Sep 7 03:01:27 2025 GMT
Not After : Sep 8 03:01:27 2025 GMT
Subject: CN=ebcd7f863d6cb40de9e8d51046e8f66d72b2556f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2c:7f:0b:35:e3:cf:46:e7:28:69:90:2b:25:
db:bd:1c:a1:c2:c0:76:99:f1:a8:7c:d3:f4:53:5a:
7c:82:4f:fa:0d:3a:7f:db:89:25:b2:91:4b:ce:52:
5f:a0:e2:97:da:8f:aa:74:23:2e:c5:53:d1:ee:cb:
80:60:2a:f9:5b:df:67:31:5f:1e:1f:c2:bd:86:32:
e2:82:6d:84:75:26:66:21:c2:2d:87:07:41:4a:9e:
cb:17:ea:42:01:a1:fc:9a:fa:0c:89:44:db:d1:27:
ac:49:7f:fc:5b:10:dc:36:6d:63:52:fb:b3:98:64:
7d:fa:e9:78:8a:63:32:23:f5:4f:0e:6f:6f:d5:80:
92:cd:cb:47:88:bc:8c:34:e2:6e:df:1a:f6:c5:a6:
66:5f:01:60:2b:05:a2:07:fb:74:6f:70:07:4f:9f:
c0:29:dc:1f:3f:f6:74:b3:e0:15:25:a1:8b:59:47:
fd:55:d2:ca:3f:22:c3:a1:df:52:ee:bc:d8:f5:bd:
a0:d3:cf:cf:6e:ea:92:8e:b1:67:bc:9d:37:12:50:
ff:53:14:f2:e7:51:b7:e4:a2:4b:5b:9e:bb:12:4a:
9b:6b:82:5a:05:67:57:b0:62:5a:d1:44:a5:79:86:
c7:11:ca:79:74:d6:d0:41:6e:87:76:a2:70:82:c5:
8c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CD:7F:86:3D:6C:B4:0D:E9:E8:D5:10:46:E8:F6:6D:72:B2:55:6F
X509v3 Authority Key Identifier:
keyid:22:C5:FE:B2:D2:5F:AC:4D:D8:BA:A4:F7:1D:8D:C2:26:81:86:A0:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:fe:53:35:77:f7:0e:e5:f8:59:89:fb:b2:20:6c:77:d8:dd:
b4:28:ac:3c:ec:5a:4c:dc:9f:c2:96:19:7f:c8:1c:13:9f:3a:
76:56:01:19:50:de:2f:d1:b2:0a:9b:e2:5d:af:c3:f8:ed:e0:
9b:25:e7:3e:39:5e:f9:e2:3f:e7:b8:d6:a1:95:82:3c:e2:6c:
cd:b6:49:c5:86:fb:59:ea:b3:d6:af:0e:7b:22:78:c3:b9:e6:
ac:7e:28:09:ff:a2:2c:d5:29:e4:2d:e5:6a:85:c4:eb:f6:7e:
a8:79:3a:82:97:53:34:c9:6c:4f:ea:40:8e:30:c3:ab:5a:d5:
e1:89:9f:c2:2b:79:69:92:68:22:7f:53:9c:3c:e2:c0:1b:8a:
7e:77:87:76:6f:fe:29:fa:6b:ec:e9:94:df:96:00:7f:b5:48:
b8:a3:c1:08:6b:65:e7:b9:c1:16:59:ab:8e:f5:2c:ae:b9:cc:
f8:52:59:8d:a9:83:26:6e:e4:d2:c1:b0:2f:b6:17:4f:ac:83:
fc:dc:b7:7a:c5:3f:48:1d:18:c7:5f:93:f9:d0:70:74:13:5d:
2b:13:aa:3d:bc:93:12:8a:7f:8b:bc:eb:76:8f:a2:08:ea:4b:
aa:c3:33:9a:c7:70:b0:8b:13:b0:de:91:49:82:be:41:c1:fd:
92:c6:19:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:39 2025 by rpki-client