Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
File: I9NN09IR5cLqe9L1J6E-HploIOw.mft (raw, json)
Hash identifier: LaB/AQlzNSnMO687H1/3wCbL9q1Et09hK8HlQBuUItI=
Subject key identifier: 38:00:4C:25:B9:28:BE:1F:91:E0:EB:4C:07:CD:66:30:BF:45:B7:79
Authority key identifier: 23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
Certificate issuer: /CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Certificate serial: 019A71B7ECEB881C1202AA1B169DBE8979EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
Manifest number: 1119
Signing time: Tue 11 Nov 2025 07:01:10 +0000
Manifest this update: Tue 11 Nov 2025 07:01:10 +0000
Manifest next update: Wed 12 Nov 2025 07:01:10 +0000
Files and hashes: 1: I9NN09IR5cLqe9L1J6E-HploIOw.crl (hash: o2niyRkxqSBHzFavhZriEm4x6Ds5rqSUQIgcJGU2p6Y=)
2: LposyqjV73-zT4I-NkDoALIwk_k.roa (hash: OHnWiOPJ0+vl8RYqLw+3oMseEcMGYzbghowhWqyDjck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:ec:eb:88:1c:12:02:aa:1b:16:9d:be:89:79:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Validity
Not Before: Nov 11 07:01:10 2025 GMT
Not After : Nov 12 07:01:10 2025 GMT
Subject: CN=38004c25b928be1f91e0eb4c07cd6630bf45b779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7b:c9:ce:e0:9f:8e:eb:99:81:ec:c4:05:bd:
c6:1a:57:7f:3f:a0:93:26:4c:15:5c:9d:ce:91:96:
e7:f7:5f:46:84:66:aa:8c:c7:56:c0:74:71:ce:f3:
f6:12:fb:79:e1:43:15:f0:b8:2b:26:d2:b0:38:b3:
cd:09:3b:11:5d:c3:d0:16:41:54:eb:5e:4d:ab:69:
cf:1a:44:f7:0e:64:87:91:6e:87:38:c6:59:bc:8d:
0e:92:96:97:fe:b1:fc:f1:ee:cf:b0:40:93:bf:55:
1e:4e:69:c0:61:e0:25:14:37:1a:ca:18:81:35:bd:
a6:af:10:ff:61:d5:28:2c:df:9d:c5:67:82:e4:08:
57:e3:2e:0e:f6:ca:52:91:79:33:cf:6b:0a:20:8c:
3e:38:48:25:4d:50:89:36:b1:33:60:92:35:de:50:
74:d6:b3:1a:22:65:94:dd:6e:82:79:22:8a:df:41:
85:cd:54:c4:3f:a8:13:a0:80:97:da:98:7c:33:18:
16:f4:7a:b7:88:48:32:65:8e:18:21:73:d2:3b:72:
9e:bf:02:a3:67:a3:75:ff:b7:30:88:b8:cc:d8:43:
6d:f2:06:8b:8a:c8:f7:a3:28:62:96:70:4e:16:fd:
da:37:55:ce:3b:e7:64:6c:8b:a5:40:ca:db:62:d2:
7f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:00:4C:25:B9:28:BE:1F:91:E0:EB:4C:07:CD:66:30:BF:45:B7:79
X509v3 Authority Key Identifier:
keyid:23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:f5:c2:15:fc:b0:7f:ae:34:f7:ec:a6:18:1e:d0:a9:c5:55:
3d:6c:a5:5a:45:0e:3b:f9:62:e7:58:93:8b:53:29:54:46:c1:
e7:20:fd:96:db:ae:92:93:0d:ba:5a:e5:82:e5:c2:c0:73:f2:
26:d8:6c:b5:29:dc:c1:6e:ec:79:74:bb:de:3c:fe:4d:1d:00:
f4:44:35:a1:07:08:a1:ab:cc:6b:e2:b2:87:39:0a:4c:b3:c2:
d7:39:d3:12:c2:06:0e:87:30:7d:d2:c3:ac:48:f8:93:45:ff:
ed:63:d5:6e:ba:b7:c0:0f:69:a5:87:80:59:3e:4e:59:ec:6a:
33:3c:5b:63:fb:89:f8:d5:ba:6c:aa:cc:c7:19:10:d7:b4:48:
4b:e2:d7:0a:ed:8d:5b:05:c0:fe:52:15:32:1e:40:a1:c7:b1:
78:bf:0f:6c:ab:84:a3:86:1f:cc:bd:2b:b8:29:51:bf:ae:71:
8e:9b:15:01:b4:3a:36:3e:04:fe:a2:ba:76:aa:59:1d:9d:29:
ec:a1:33:12:f3:22:d4:11:a7:3f:a9:f1:42:2b:54:51:83:a7:
60:82:df:8b:ea:51:3d:2e:a0:0d:fe:a9:53:05:06:c5:8c:37:
b0:43:8a:0b:32:ea:11:76:51:7a:6d:cb:7a:ed:0f:ec:8e:c3:
7d:b3:96:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:25:07 2025 by rpki-client