Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
File: I9NN09IR5cLqe9L1J6E-HploIOw.mft (raw, json)
Hash identifier: 8mb8akFmn2I8etgzTkBCHN60XIsIyfT2aSoGM5kc9TY=
Subject key identifier: AE:C0:8D:3E:DB:AE:8C:34:0C:7F:B8:52:77:FD:16:34:0C:0E:6B:AE
Authority key identifier: 23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
Certificate issuer: /CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Certificate serial: 0199239F8A8026AF7C53C949C6D67706822C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
Manifest number: 106C
Signing time: Sun 07 Sep 2025 10:01:22 +0000
Manifest this update: Sun 07 Sep 2025 10:01:22 +0000
Manifest next update: Mon 08 Sep 2025 10:01:22 +0000
Files and hashes: 1: I9NN09IR5cLqe9L1J6E-HploIOw.crl (hash: +Ef9B7Tk0fHnrv23VvLLAomr4EIj7UH6ruHbFLVY4zw=)
2: LposyqjV73-zT4I-NkDoALIwk_k.roa (hash: OHnWiOPJ0+vl8RYqLw+3oMseEcMGYzbghowhWqyDjck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:8a:80:26:af:7c:53:c9:49:c6:d6:77:06:82:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d34dd3d211e5c2ea7bd2f527a13e1e996820ec
Validity
Not Before: Sep 7 10:01:22 2025 GMT
Not After : Sep 8 10:01:22 2025 GMT
Subject: CN=aec08d3edbae8c340c7fb85277fd16340c0e6bae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1e:99:d1:f0:42:fb:5e:89:b1:2a:fd:50:cd:
38:aa:44:b8:96:66:f8:9a:4c:54:d9:b3:ae:c7:fa:
74:84:b0:55:9e:39:dd:3a:6d:04:bc:7b:31:4c:e4:
ca:8c:82:7d:57:2c:3a:af:37:2c:16:80:45:40:71:
2c:c2:2b:83:c7:55:8f:21:47:d5:be:08:76:75:7f:
e7:5e:f4:07:15:d4:81:09:b5:59:3b:bb:9a:26:ca:
9e:4e:7a:11:a7:86:25:04:32:69:28:16:50:20:12:
46:f8:fb:a9:02:88:3f:b2:13:49:62:78:c5:4a:f0:
84:26:4a:ec:5b:33:1b:9e:4d:c4:08:35:d9:05:89:
50:65:bf:51:67:9c:4d:df:9b:cd:04:07:6b:e3:97:
51:9c:26:6a:e2:2f:a1:e0:c1:82:7a:e6:64:d6:fc:
66:39:1d:15:3c:5b:93:25:98:21:4a:6e:7e:40:0a:
84:6e:13:78:7c:f3:4f:3b:a1:75:47:5d:ca:32:f8:
eb:ea:19:5b:7f:cf:a4:1f:38:7d:ea:25:fa:1b:61:
6e:3d:9e:2a:78:8a:9c:64:4e:f8:c5:e1:68:3d:32:
3b:8a:de:f9:d7:0a:52:25:ca:80:ca:d1:8b:02:5e:
23:a5:f4:8c:05:5f:2b:63:8a:89:a2:64:a4:30:56:
69:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C0:8D:3E:DB:AE:8C:34:0C:7F:B8:52:77:FD:16:34:0C:0E:6B:AE
X509v3 Authority Key Identifier:
keyid:23:D3:4D:D3:D2:11:E5:C2:EA:7B:D2:F5:27:A1:3E:1E:99:68:20:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9NN09IR5cLqe9L1J6E-HploIOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/dc2c04-59f6-4f22-b7bd-fe671c1d5150/1/I9NN09IR5cLqe9L1J6E-HploIOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:8d:d3:3c:0f:72:9a:32:d1:e0:41:61:67:8c:61:bb:ec:45:
e2:6b:91:c5:4f:66:d9:eb:ee:96:ba:79:63:03:f3:9f:b3:bd:
bd:88:bf:30:62:11:87:40:ef:1b:fd:9d:1b:79:6d:a8:a4:66:
10:a5:1c:73:1e:83:6b:46:44:25:17:c2:32:43:2d:82:c6:af:
e5:72:50:22:eb:37:5b:e3:a8:32:3b:ec:d3:c8:73:e4:4a:74:
34:9a:18:15:0a:37:fc:99:8c:97:76:5b:f5:4d:c2:af:e9:90:
ab:2f:de:45:42:17:c6:e9:0d:ea:50:8f:04:96:43:f4:7a:84:
d1:52:b3:1d:f9:91:4b:ac:eb:5c:75:39:ed:6f:41:48:55:cb:
fd:4d:8e:81:05:d7:f6:15:ef:f0:40:fd:8e:66:f8:83:76:e2:
58:bb:ef:65:30:06:60:f7:be:0a:33:51:5c:f1:b2:75:7e:24:
9b:ad:66:36:88:f2:59:2c:ba:7c:7b:d6:a2:c4:ad:f8:fa:59:
f4:63:f1:28:e7:cd:d0:11:b0:f6:b4:45:d4:62:47:99:fd:2e:
f6:bf:41:9d:23:20:2e:dc:98:72:fc:0f:46:88:49:e5:95:15:
e2:8a:87:f7:b5:4a:75:47:05:3d:cd:1c:85:0a:9c:ed:ec:11:
40:66:1e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:53:49 2025 by rpki-client