Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
File: IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft (raw, json)
Hash identifier: OngaU8l8p26noBrRF1DZagHZRmlJmI+lyX3DaRkUFLo=
Subject key identifier: E6:DF:C2:14:5D:50:E0:51:2B:7C:4B:48:9C:95:A5:5D:25:C1:EC:97
Authority key identifier: 21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
Certificate issuer: /CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Certificate serial: 0199FEEBF9E42B4239E1F90AA75E6388AF5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
Manifest number: 1237
Signing time: Mon 20 Oct 2025 00:01:41 +0000
Manifest this update: Mon 20 Oct 2025 00:01:41 +0000
Manifest next update: Tue 21 Oct 2025 00:01:41 +0000
Files and hashes: 1: EJEuDnvuXiXSyssiuX3zmzznLmY.roa (hash: Oz6+eDgQ3iUmX8LJR3oXdjyr343hyansN3/KTvsHwJc=)
2: IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl (hash: OZR6f87PXJhSPsLvPYivSBcAJomNFQQp+94Hti/TXZQ=)
3: nrEMql0zV0P3dpHmZH6RSxKuJFg.roa (hash: 1gVFTzoG8NuAbMx8im63wNse5kBK1gIOddqrPu/oX6A=)
4: oCdnapI8_jAqvSx-q8QqfeZBfpI.roa (hash: 4dP+f2erpGi6jIqWI+u+ltnYaQjR1Rx/ox+mHYa6aIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:f9:e4:2b:42:39:e1:f9:0a:a7:5e:63:88:af:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Validity
Not Before: Oct 20 00:01:41 2025 GMT
Not After : Oct 21 00:01:41 2025 GMT
Subject: CN=e6dfc2145d50e0512b7c4b489c95a55d25c1ec97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:26:b9:39:e4:10:f0:67:c7:c3:e1:db:24:63:
18:e9:e2:30:29:85:04:d3:38:3f:c5:d2:13:07:4b:
71:4e:4c:8b:4f:7b:c8:cd:71:54:24:e8:0d:d8:31:
5e:6f:21:22:34:73:0c:dd:0d:7a:33:05:1a:74:35:
90:2b:d3:9c:e4:c7:02:ce:93:23:5d:c7:3e:2d:89:
b8:da:90:8a:b5:50:30:ba:5c:b2:97:51:3a:c3:11:
75:d0:be:a2:5c:7b:a6:97:20:25:78:84:fa:4a:5c:
28:59:44:53:ee:12:7d:9f:59:58:b5:b9:65:38:3a:
93:42:74:79:4d:6c:33:b7:ef:48:f1:66:be:cd:4a:
9d:e7:95:72:fc:96:a8:96:49:4c:27:20:80:2b:64:
eb:ce:4c:38:47:54:ed:95:94:90:be:4e:1c:99:d0:
b7:2b:04:b2:bf:2e:b4:92:93:d5:13:b0:c5:18:6e:
e6:7b:c2:27:29:47:4c:d9:21:30:ca:fe:6d:10:1f:
62:a5:68:89:0b:28:74:2e:a1:ef:d4:5b:ba:05:bb:
99:8f:32:0c:98:0c:9e:b7:33:6d:16:aa:43:f6:db:
19:8b:dc:64:5a:13:64:25:3e:f7:1a:d5:d1:eb:77:
46:2b:df:13:ba:f9:a3:d8:99:06:1c:90:cf:0b:a4:
d3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DF:C2:14:5D:50:E0:51:2B:7C:4B:48:9C:95:A5:5D:25:C1:EC:97
X509v3 Authority Key Identifier:
keyid:21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:62:ea:86:96:1b:23:54:87:43:0c:20:40:95:76:1b:d2:bb:
2c:82:4e:b4:71:dd:53:67:2e:c4:17:40:79:bf:6d:cb:a8:e2:
e8:97:c3:42:34:ce:b2:2d:a8:79:b0:b0:4b:3d:c5:67:8d:3e:
a4:25:c0:70:4e:9d:88:c5:fd:14:d4:53:24:74:fc:d1:d3:bb:
82:16:d3:3e:22:22:2f:ad:46:06:49:da:77:ec:50:27:56:3f:
7e:19:52:2a:4b:60:9f:9f:e7:ee:6f:39:fb:37:1d:9a:55:da:
f7:a9:c4:9f:b3:cf:1c:ec:0a:16:b8:f1:ba:e6:33:f7:1a:77:
d7:df:55:a2:b0:92:42:19:ff:dc:51:d0:b6:f8:a4:bb:8b:88:
e5:9b:e6:02:13:5a:74:8f:c4:ea:51:95:77:9e:46:a7:fa:f5:
8a:db:f5:d2:75:7c:f3:02:ad:0a:aa:31:fa:3c:a6:86:43:5a:
f7:ee:83:9e:21:9f:1b:8b:84:b6:73:40:a0:15:8c:9f:05:69:
a3:3f:ce:4a:2d:2e:34:e7:73:5f:db:67:a9:1b:89:7f:17:22:
c4:4d:5d:9c:91:92:00:5a:1e:d8:d0:5a:39:10:bf:98:32:56:
53:79:84:51:e0:43:ca:88:70:f8:0e:4d:aa:e5:d0:6b:12:15:
5a:d2:ff:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:54:39 2025 by rpki-client