Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
File: ia6mmISBzqS5W2UTHMSYhPPtDj8.mft (raw, json)
Hash identifier: E+mFUGUgsD2w6ShhooMQ83Exv9cvToL875lM2ufSdLc=
Subject key identifier: 10:EB:67:26:D9:A1:47:1D:6E:7A:E4:38:62:8D:7E:80:07:5B:46:89
Authority key identifier: 89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
Certificate issuer: /CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Certificate serial: 019929A12673C5AA6D61C71AFA71D5A7F895
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
Manifest number: 1675
Signing time: Mon 08 Sep 2025 14:00:50 +0000
Manifest this update: Mon 08 Sep 2025 14:00:50 +0000
Manifest next update: Tue 09 Sep 2025 14:00:50 +0000
Files and hashes: 1: Fl6pOlPLU-YJzCc-HkB3wwedcd0.roa (hash: jlDQ+VkQoTEiq8ZQ7EeJUmtKUn70x3pUuA4q7simdPM=)
2: ia6mmISBzqS5W2UTHMSYhPPtDj8.crl (hash: KV7KcL9blmzZBniQweShnZ09I+et9CUeqw1wMbhXd5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 14:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:29:a1:26:73:c5:aa:6d:61:c7:1a:fa:71:d5:a7:f8:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Validity
Not Before: Sep 8 14:00:50 2025 GMT
Not After : Sep 9 14:00:50 2025 GMT
Subject: CN=10eb6726d9a1471d6e7ae438628d7e80075b4689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fc:a9:17:31:42:16:1f:a3:1c:1c:ef:fe:35:
f0:ed:7f:5e:e2:59:32:35:f1:be:f9:f5:5c:11:7d:
46:71:13:00:ec:f9:9a:e5:f3:75:ba:30:e7:26:85:
c6:9e:a6:51:c6:80:f9:77:73:37:ea:82:20:54:da:
dd:b4:61:ef:8a:d5:8b:50:99:fa:90:e5:01:1e:a3:
11:ac:d1:50:3d:4c:92:43:76:47:84:1c:97:31:9c:
6a:81:c2:d0:19:36:6d:70:f3:f7:6f:bb:bf:0b:27:
1f:6f:42:da:34:9c:e4:5e:dd:3f:8d:66:2c:9d:28:
6e:e2:2f:ae:bf:ad:4a:7d:ce:ff:ea:28:c0:26:5f:
b5:b0:9c:5c:07:64:24:fb:aa:dc:15:9e:51:c3:65:
5a:ec:8b:81:cc:f4:9c:eb:06:82:10:c0:6f:fe:12:
eb:d9:69:01:f8:bf:a7:92:60:f4:6b:4b:bd:71:4c:
b5:57:fb:79:06:f8:a5:12:da:c1:d2:09:c6:87:8a:
1a:ba:47:a0:99:a3:b2:b1:03:a6:53:1e:5f:1b:e6:
46:d1:1f:fe:86:2a:e1:25:48:d1:15:06:92:80:58:
6d:90:a4:9e:67:58:e6:c6:1b:69:f1:34:e1:69:89:
67:1f:18:de:3c:2b:fa:a5:53:10:3a:79:49:43:a0:
6c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:EB:67:26:D9:A1:47:1D:6E:7A:E4:38:62:8D:7E:80:07:5B:46:89
X509v3 Authority Key Identifier:
keyid:89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:b5:1e:50:75:73:6a:57:fe:36:a7:04:b6:7b:05:a1:60:be:
ed:1c:73:4a:15:19:26:18:3e:6a:4f:2a:73:32:2b:50:e4:8d:
46:c1:35:1f:a8:5e:90:97:66:3a:ed:00:89:56:5d:d5:bb:21:
18:46:fe:a2:4a:04:43:51:da:f5:91:32:08:c5:35:37:e1:22:
3c:29:8e:db:f5:ce:77:a8:47:a1:ac:25:85:9b:2c:a3:d8:ca:
70:3e:15:00:19:af:07:07:81:29:7d:7e:98:e7:5a:82:53:51:
83:11:11:fa:5c:8f:38:d0:f6:ca:58:f4:6b:ba:60:17:30:28:
03:d7:51:61:02:7c:0c:36:0f:5b:37:a8:b2:16:11:39:a6:cc:
95:89:fa:fc:c4:b0:b1:35:2e:c8:dc:30:50:4d:0e:4d:ef:1e:
86:ba:bd:67:65:90:4c:13:0e:ca:29:94:2e:0c:ba:67:36:a0:
2c:9a:f7:ed:05:1f:40:ad:61:85:18:1f:ae:13:2a:92:e5:55:
68:fd:3c:4e:13:12:b9:01:86:69:f3:6f:8d:94:c6:9b:0f:ad:
35:9d:60:71:d2:6f:6d:3d:4d:0b:e9:d4:66:bc:58:38:d8:4d:
bc:23:d6:28:d4:47:12:7a:2f:ab:ee:56:f1:f8:24:b5:dc:5c:
c1:5b:a3:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 16:05:58 2025 by rpki-client