Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
File: ioNVXKoizpubFoNQOhTjzdg24Bs.mft (raw, json)
Hash identifier: MYIB6hc6Fq9E7TRB0cyi/S61cAgpFMCb4krbJ65LdW8=
Subject key identifier: DA:AC:79:DA:44:FE:E0:C6:D9:A7:9F:17:AA:26:36:A0:46:CD:B5:57
Authority key identifier: 8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
Certificate issuer: /CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Certificate serial: 019A722683A47A2763E72BAF599C2D27E6F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
Manifest number: 0F8D
Signing time: Tue 11 Nov 2025 09:01:57 +0000
Manifest this update: Tue 11 Nov 2025 09:01:57 +0000
Manifest next update: Wed 12 Nov 2025 09:01:57 +0000
Files and hashes: 1: 8ltVewMht9tkkoh6ikhHpmbvP28.roa (hash: qZH42qz06gavyuSaiRbHo+yLoZK1W5iI0G1jpEdB8DA=)
2: ioNVXKoizpubFoNQOhTjzdg24Bs.crl (hash: g8C3FO3ycG10NEOrEHPIc0KPS9vCwuRCueF2l6lUqdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:83:a4:7a:27:63:e7:2b:af:59:9c:2d:27:e6:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Validity
Not Before: Nov 11 09:01:57 2025 GMT
Not After : Nov 12 09:01:57 2025 GMT
Subject: CN=daac79da44fee0c6d9a79f17aa2636a046cdb557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9c:36:c4:22:ab:82:20:78:04:e7:24:2b:d4:
fe:6f:3b:28:e8:6a:ba:a1:79:05:62:6e:01:df:d1:
bc:dd:8f:e9:14:43:9e:35:84:56:1d:58:ae:48:82:
51:34:0a:b2:04:98:69:d2:14:1e:9c:98:3d:f4:49:
43:a1:88:00:97:c9:70:d8:95:48:98:69:c1:17:e1:
5a:b0:33:db:b2:ea:08:1a:4b:81:00:45:8f:d3:73:
1c:99:14:64:c2:23:82:93:ae:99:d9:36:5d:3d:ef:
f5:f9:24:94:77:95:b9:d4:7e:fd:1d:ca:a0:46:82:
97:51:37:dd:b9:ea:6c:23:8c:cf:79:38:67:52:20:
9b:b5:4a:70:6e:d6:b5:ad:4d:2c:24:c3:b3:b4:cd:
b2:fa:2b:c1:2a:18:63:2c:ae:17:89:28:cb:d6:62:
a0:4c:fd:93:82:27:65:24:26:30:61:7c:aa:f2:29:
a2:02:73:20:0f:fb:fc:5a:c3:b0:06:79:a1:bb:df:
9b:0d:fa:5b:6e:f5:ba:b6:eb:b7:66:08:44:ca:1e:
88:f9:9a:39:76:3e:d7:a5:e1:7e:64:ba:9a:33:4e:
66:70:9a:28:75:bb:cc:da:12:1a:87:af:65:a0:e7:
61:8c:84:f3:79:51:8d:f3:95:93:2a:97:22:b4:55:
b0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:AC:79:DA:44:FE:E0:C6:D9:A7:9F:17:AA:26:36:A0:46:CD:B5:57
X509v3 Authority Key Identifier:
keyid:8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:0e:0e:60:3e:21:94:9a:1e:79:da:99:24:65:a1:ac:ca:5e:
74:78:2b:6b:8d:f9:d9:da:18:43:af:a6:d2:43:93:f0:0c:e2:
70:bc:da:c5:fd:75:01:f0:c6:10:0f:0a:4e:08:84:2d:18:72:
a7:6b:af:88:0d:58:a7:b3:02:5a:d3:89:21:95:60:ab:20:2a:
3b:44:2d:54:33:c2:15:14:6d:47:69:ed:24:08:fb:cf:59:a2:
9d:22:b8:6c:58:32:6b:db:e6:d2:35:91:a3:b0:b1:35:16:84:
aa:c9:f2:44:a8:0c:64:05:e1:f4:53:41:92:8d:60:56:3f:8a:
ca:24:c6:65:88:fd:0f:56:3c:4c:88:59:27:0c:57:3b:92:df:
37:54:e8:c9:19:f8:26:cb:9a:23:62:80:36:2d:cc:87:5e:53:
a1:3e:d0:bf:dc:f4:90:81:e3:ff:0a:e1:77:97:74:70:76:d3:
4a:c1:1f:d7:07:ad:c5:c6:7c:61:cb:17:ab:ac:e9:7f:b0:f4:
51:51:d7:6a:e8:0d:8a:37:23:a1:eb:c2:a4:a6:26:59:b9:23:
4c:db:ac:86:fe:c5:7f:fe:5a:33:76:81:9a:a2:4f:8c:61:8d:
91:f5:ec:ff:79:36:c7:82:92:b0:4c:67:59:3d:fd:0b:7d:d5:
44:84:3a:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 18:38:22 2025 by rpki-client