Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
File: IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft (raw, json)
Hash identifier: Ph0kJiE98NLbmU4VCVCC8f6LrwvWCeQWvYeV50weEyo=
Subject key identifier: 6B:72:97:2B:69:AB:98:A8:61:2E:FE:3F:2C:47:29:5C:21:02:6D:F8
Authority key identifier: 22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B
Certificate issuer: /CN=2224fd65003c39490abeaa9e1efe5f20246dc77b
Certificate serial: 019923A0ED83D80B7FFAE33D4B18C5F834E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
Manifest number: 0CEE
Signing time: Sun 07 Sep 2025 10:02:53 +0000
Manifest this update: Sun 07 Sep 2025 10:02:53 +0000
Manifest next update: Mon 08 Sep 2025 10:02:53 +0000
Files and hashes: 1: IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl (hash: RET9OwrEw8EAbvdhN+ce/SgFHUwH0hyShU8w4nisccY=)
2: gJhF5evxe8g-iDe3hBXACq-nKPk.roa (hash: qM5+n5uw27ndltKhnl7N0lO0fW10CmbET7TyhvcxHok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:ed:83:d8:0b:7f:fa:e3:3d:4b:18:c5:f8:34:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2224fd65003c39490abeaa9e1efe5f20246dc77b
Validity
Not Before: Sep 7 10:02:53 2025 GMT
Not After : Sep 8 10:02:53 2025 GMT
Subject: CN=6b72972b69ab98a8612efe3f2c47295c21026df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8d:a3:04:44:76:9e:ec:bf:43:70:78:95:41:
52:c3:ab:c7:20:36:67:4f:6f:58:94:db:cc:21:6d:
ab:40:b1:f7:7b:18:fc:bc:35:50:3f:9c:d0:a6:47:
9f:32:5c:32:05:bf:50:43:4e:76:2f:7f:19:4b:7c:
a9:a9:fd:b4:11:79:23:3b:d2:02:e3:7b:ab:be:14:
34:41:09:8f:a8:f7:92:08:69:e4:c8:95:d8:92:40:
e2:33:67:0f:f5:7e:d8:62:6e:c7:29:d5:0b:97:3e:
22:f4:90:1f:e2:79:af:05:be:5c:2d:ef:43:23:75:
23:77:e3:95:a3:14:0e:89:c0:c6:b8:87:5b:3c:ab:
fc:62:9d:a5:32:81:f4:3d:88:8d:6a:8d:6f:6f:97:
87:26:b7:8e:ee:ef:a6:d8:1e:28:f2:08:85:61:a1:
b5:54:82:39:36:9c:c5:71:fa:f3:6b:4b:6a:32:9c:
1f:5b:e8:9a:00:38:27:b4:62:d7:8c:07:b6:38:15:
fa:1a:3b:73:0b:f7:17:d6:c6:f0:59:84:96:c6:73:
35:3f:f5:a7:4f:df:91:cb:23:d3:39:b0:a2:95:10:
1a:b1:23:a4:9f:04:3e:7a:af:6b:ef:87:dc:cb:b0:
bb:d3:67:65:8b:69:89:d8:66:a0:b2:dd:6f:08:36:
ed:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:72:97:2B:69:AB:98:A8:61:2E:FE:3F:2C:47:29:5C:21:02:6D:F8
X509v3 Authority Key Identifier:
keyid:22:24:FD:65:00:3C:39:49:0A:BE:AA:9E:1E:FE:5F:20:24:6D:C7:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IiT9ZQA8OUkKvqqeHv5fICRtx3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/9b4900-085a-4a0e-a98f-c6db34c2f7e9/1/IiT9ZQA8OUkKvqqeHv5fICRtx3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:58:26:a4:09:62:72:bc:00:e3:82:c7:5a:46:ad:c4:c0:ee:
52:79:1a:83:2a:ca:cd:73:72:d2:6b:9c:68:5d:05:79:85:83:
c8:57:81:42:b8:ff:22:80:ba:b9:fd:7d:b8:5f:85:db:fc:a9:
7e:a8:55:cb:78:46:ce:ce:82:14:aa:09:f9:55:3e:65:a7:6f:
36:ef:55:a3:9d:27:27:a3:24:58:ba:40:9c:aa:44:16:3b:50:
2f:5c:b9:fe:96:ac:1e:62:44:35:6e:33:33:ed:73:9c:dd:e3:
9c:0e:28:fb:4c:3b:77:41:02:d6:54:6c:86:c7:cd:47:68:e7:
1b:3e:6d:74:f1:fe:4e:44:23:d4:51:4c:03:7f:30:9e:6d:bb:
ee:71:30:7d:ee:80:14:a5:9a:d2:9e:6a:26:1f:5d:1a:10:14:
dc:0a:10:da:52:aa:b4:87:ee:e7:b8:11:16:75:67:98:31:b6:
3f:6d:8f:0a:3c:22:91:d0:c7:c7:d5:0c:16:6b:64:c2:ce:4f:
9c:8d:ce:b9:6f:28:c3:11:e9:73:f4:b7:8f:a1:06:87:3c:f4:
7d:70:cb:57:26:20:bb:c7:4d:33:ef:a7:70:e8:61:00:24:65:
ca:38:7b:a0:ba:a7:2e:2d:85:78:a5:76:65:89:f9:54:f6:8d:
fb:7b:4f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:41:39 2025 by rpki-client