Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
File: IOI90FhJzIEyVauNG4U_ucRdhpQ.mft (raw, json)
Hash identifier: rVwmJYZtjmzl42MfUUsLr1Ze0ndow07oVbVBQeOAvm8=
Subject key identifier: 05:D4:D3:84:56:FD:57:71:FF:81:C4:B6:50:4F:EF:CB:1D:AD:EF:AA
Authority key identifier: 20:E2:3D:D0:58:49:CC:81:32:55:AB:8D:1B:85:3F:B9:C4:5D:86:94
Certificate issuer: /CN=20e23dd05849cc813255ab8d1b853fb9c45d8694
Certificate serial: 0199239FC1EFEC4A018B101D84F5C4463FFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
Manifest number: 6F
Signing time: Sun 07 Sep 2025 10:01:36 +0000
Manifest this update: Sun 07 Sep 2025 10:01:36 +0000
Manifest next update: Mon 08 Sep 2025 10:01:36 +0000
Files and hashes: 1: IOI90FhJzIEyVauNG4U_ucRdhpQ.crl (hash: HlTbMbYNQHR9Ky1vo/fL0YsbK05L9LlrL0PldvISOdM=)
2: WnjDTxLEaqOui0Ha0cHV61JSgqM.roa (hash: /Hg6cfcRzcdPSVYjlpQQ2lt5H6wf7ZaOp41HGAyx/Ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:c1:ef:ec:4a:01:8b:10:1d:84:f5:c4:46:3f:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e23dd05849cc813255ab8d1b853fb9c45d8694
Validity
Not Before: Sep 7 10:01:36 2025 GMT
Not After : Sep 8 10:01:36 2025 GMT
Subject: CN=05d4d38456fd5771ff81c4b6504fefcb1dadefaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:85:dd:42:61:b9:23:0f:38:ae:db:2e:ea:aa:
7e:01:b0:93:9f:11:a9:bb:ee:97:b7:6e:c3:bf:f8:
5d:57:a5:74:85:9e:f5:5c:a0:8c:38:3a:ea:98:b0:
3e:b4:c1:e4:7c:90:53:15:14:98:00:ca:2e:11:5e:
5b:1d:fa:1b:4f:28:b4:9f:8c:7d:76:43:09:07:f1:
0d:e2:16:c6:ff:1c:74:d2:cc:32:29:b2:0d:09:54:
26:b6:ed:36:24:ee:37:03:26:56:7d:b9:e8:09:48:
6e:28:8d:a8:6a:ac:4a:17:28:24:23:a1:82:8f:41:
a9:f3:7e:2f:04:6d:9f:ce:3b:a7:8a:41:ee:2e:23:
d3:a5:8c:c3:a8:57:8b:5f:d4:e1:81:d9:38:8a:40:
76:01:2a:a7:82:d4:5a:8e:0a:89:10:13:a3:2c:d7:
1a:83:79:f8:8a:71:01:1a:d4:2e:6e:dc:9f:73:4c:
92:13:4e:c5:2c:a1:3f:5e:8b:68:20:86:e8:cf:7a:
c0:c0:f5:ad:56:99:41:42:7f:fa:0c:bd:1b:40:09:
58:a0:cd:ef:85:0f:74:74:83:19:39:5b:6f:b9:af:
e9:aa:e8:0c:95:3d:81:fe:df:c0:42:98:f2:13:5b:
02:56:79:1b:7b:9a:f3:3a:31:ad:77:4c:fe:44:06:
6f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:D4:D3:84:56:FD:57:71:FF:81:C4:B6:50:4F:EF:CB:1D:AD:EF:AA
X509v3 Authority Key Identifier:
keyid:20:E2:3D:D0:58:49:CC:81:32:55:AB:8D:1B:85:3F:B9:C4:5D:86:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:ea:51:1d:21:b3:e3:36:8a:9f:14:04:9d:0a:30:51:2e:dd:
df:d0:ae:b0:33:04:52:62:75:05:92:a8:bf:af:b5:75:63:bc:
79:97:cf:57:2c:37:15:00:ee:64:2f:53:02:79:74:17:6c:41:
93:ca:40:d3:ea:bc:33:30:12:f2:60:e1:43:2e:d4:41:81:46:
4b:53:04:6b:4a:a6:cc:19:8c:fe:7c:f3:1c:98:87:80:33:3a:
c7:4e:45:d2:97:03:4f:21:d0:17:72:38:c0:5b:dd:95:77:51:
33:26:8d:00:d0:b9:d7:be:33:40:60:0f:f3:d2:fc:b6:af:0d:
09:eb:ae:b6:d8:23:3f:1d:81:56:0e:02:dd:d2:11:88:bd:89:
2b:a0:1a:05:b4:92:a3:33:b1:3b:ae:76:cb:8e:4f:67:71:af:
2c:7b:9d:88:4a:13:91:e4:5b:12:0f:53:7c:ba:39:c7:36:a9:
c5:2d:15:6b:0f:42:f3:51:2e:5c:eb:cd:1a:c9:61:88:ef:48:
53:e6:69:a8:c2:40:14:f7:b2:04:cf:95:1f:1e:08:af:bf:83:
28:b7:6c:29:df:49:3e:df:d6:d1:fd:22:3f:67:30:69:8c:c3:
07:40:c7:fe:62:e3:a9:2f:1f:8b:36:c5:d1:7d:fa:fd:0d:c5:
28:04:2a:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:25:20 2025 by rpki-client