Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
File: iAsPesuH0TTDhZ1y0NGmHkdRusA.mft (raw, json)
Hash identifier: vSBDQN/s/3yQ3774IgV/A4yhaE07DEryFRnPtXDteBo=
Subject key identifier: BA:1B:48:F0:B0:C9:F8:B6:5B:C8:6B:C3:F4:ED:31:77:94:40:CE:43
Authority key identifier: 88:0B:0F:7A:CB:87:D1:34:C3:85:9D:72:D0:D1:A6:1E:47:51:BA:C0
Certificate issuer: /CN=880b0f7acb87d134c3859d72d0d1a61e4751bac0
Certificate serial: 0199FAD7C86D2D04E0D39D4971888E6352D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
Manifest number: 0D8C
Signing time: Sun 19 Oct 2025 05:01:09 +0000
Manifest this update: Sun 19 Oct 2025 05:01:09 +0000
Manifest next update: Mon 20 Oct 2025 05:01:09 +0000
Files and hashes: 1: UubezK0uH4JLqxbhgPEY0N-6nSw.roa (hash: Oagl7z5x1jSe2CWCzxXuth3kqDf2dweMIxQL2+jadVg=)
2: iAsPesuH0TTDhZ1y0NGmHkdRusA.crl (hash: 7FahWBhzNeZZJcDCwVLrQOZLeUnMeebHbt1lEWj7eFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:c8:6d:2d:04:e0:d3:9d:49:71:88:8e:63:52:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880b0f7acb87d134c3859d72d0d1a61e4751bac0
Validity
Not Before: Oct 19 05:01:09 2025 GMT
Not After : Oct 20 05:01:09 2025 GMT
Subject: CN=ba1b48f0b0c9f8b65bc86bc3f4ed31779440ce43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:97:53:06:be:10:0c:33:6b:65:c8:5d:1b:e5:
5d:c9:b2:8c:84:fe:15:14:82:01:d4:e9:bc:74:be:
9c:bc:34:e9:a0:52:1a:10:48:ff:73:96:e2:57:9f:
82:52:c6:f5:c9:f6:9e:6d:90:88:d6:38:a1:8d:a4:
04:c2:03:a0:5f:b8:31:6c:14:ce:ef:52:b0:3a:30:
23:b4:90:fe:90:b4:6f:52:66:2b:e0:20:f0:36:9a:
2e:86:48:3d:e8:7f:ce:ac:2f:9c:c8:6b:8a:2e:11:
e1:e9:ce:b6:cc:93:d1:d6:0f:08:ea:61:85:96:9f:
c9:16:e1:1c:80:a1:2b:e3:91:0f:22:66:d1:2f:e8:
10:4a:c3:ed:fd:07:96:5b:3f:a3:6f:43:93:ce:88:
dc:4f:99:8a:b8:e9:eb:0f:92:eb:59:6d:25:b8:84:
8f:b4:4c:3e:38:8a:84:56:fa:97:d0:39:b8:76:be:
58:3b:ec:8a:d3:aa:df:f5:41:b2:fa:fc:78:8a:fb:
5a:d8:cc:96:4d:d5:80:3b:74:43:32:49:79:96:2c:
44:32:54:1b:ca:d2:9c:cd:c1:7d:1c:87:13:c8:50:
92:4c:a1:72:ce:26:eb:f4:25:e4:d1:92:cb:bd:68:
2c:40:25:6d:e8:c3:9c:4f:d2:0f:b3:5d:59:39:5f:
6e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:1B:48:F0:B0:C9:F8:B6:5B:C8:6B:C3:F4:ED:31:77:94:40:CE:43
X509v3 Authority Key Identifier:
keyid:88:0B:0F:7A:CB:87:D1:34:C3:85:9D:72:D0:D1:A6:1E:47:51:BA:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:7d:6b:b6:07:6e:4a:25:dc:e9:51:ac:f1:ed:87:7f:8c:50:
e2:ae:1b:3b:da:1c:9d:46:8d:20:60:4d:11:2b:d8:a8:53:2b:
ee:bd:b5:b9:84:74:08:b1:80:86:d8:65:b4:15:54:72:6c:62:
e5:65:4d:a5:d6:4f:08:7f:07:00:ae:a8:07:51:29:e6:2d:e4:
89:06:69:e3:57:0c:c8:a6:2c:ca:d9:99:ce:c6:7b:8c:42:c0:
9e:c1:de:60:a4:2a:5d:65:d1:17:00:b2:3b:58:fb:01:2d:7e:
9e:9a:de:b0:5c:73:64:76:15:ff:21:82:c3:6d:34:e2:80:19:
6d:71:45:0a:a9:b6:f7:2d:df:fa:ae:3c:bc:93:4d:1d:66:16:
9d:00:c0:09:47:6a:72:3a:41:f9:4b:1a:34:9a:40:92:80:6a:
0e:8f:fa:51:0f:fc:93:45:2b:d1:ef:50:85:3c:cd:7c:69:49:
b5:47:42:e8:03:a2:74:f8:9a:86:4c:4b:4b:cb:67:81:c2:ed:
24:88:23:b8:cf:fb:09:7c:d5:f7:93:19:f7:f0:5b:59:f5:8d:
a6:b0:9b:4a:a0:3c:d3:d7:84:e3:32:ad:48:a0:21:37:9f:1a:
36:86:53:e6:8b:48:ef:72:1a:81:63:b8:29:a9:50:72:da:b2:
9a:5b:bf:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:14 2025 by rpki-client