Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
File: IEBQzFlTby2UB2koI4kMzdqFRQg.mft (raw, json)
Hash identifier: 5Af+Dattih0ctyIeETyy9REJy4ZIa7gcE+GiwTFafYY=
Subject key identifier: C2:DF:14:E8:F8:3D:66:16:37:13:C4:61:ED:BC:22:DB:B7:96:54:1D
Authority key identifier: 20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
Certificate issuer: /CN=204050cc59536f2d9407692823890ccdda854508
Certificate serial: 0199FBEA96E89A86E9D638D97696899D1C2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
Manifest number: 04F1
Signing time: Sun 19 Oct 2025 10:01:19 +0000
Manifest this update: Sun 19 Oct 2025 10:01:19 +0000
Manifest next update: Mon 20 Oct 2025 10:01:19 +0000
Files and hashes: 1: IEBQzFlTby2UB2koI4kMzdqFRQg.crl (hash: ppLYK7y0wi4r+ZWwDcPJJL+kIbFDDIUrfREH4NYUAE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:96:e8:9a:86:e9:d6:38:d9:76:96:89:9d:1c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204050cc59536f2d9407692823890ccdda854508
Validity
Not Before: Oct 19 10:01:19 2025 GMT
Not After : Oct 20 10:01:19 2025 GMT
Subject: CN=c2df14e8f83d66163713c461edbc22dbb796541d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bd:9d:36:e7:a5:35:94:35:93:fe:d2:91:f2:
b4:28:24:e3:a8:be:f0:41:71:c2:0a:fa:9f:32:c9:
2a:3b:8e:c5:ea:f4:58:a7:d8:12:49:2b:0b:4a:d4:
f3:60:5b:3a:ae:cd:e3:26:cb:6d:30:c1:0f:c6:9f:
3f:a2:ea:82:07:2c:b7:9d:d3:d3:1e:97:79:3b:9a:
7b:3d:bd:02:ef:c5:f1:88:cc:c8:43:0f:1e:82:aa:
7f:8c:0b:0a:86:af:92:fa:bd:cc:55:6b:87:b5:15:
ec:35:3c:f3:1f:32:b4:c5:79:b5:d9:15:16:ff:66:
49:d1:bf:3c:bc:8d:16:3b:b9:f3:48:f1:6e:86:2d:
95:0e:e6:9e:20:25:85:0f:cf:da:9c:a3:9e:b7:2c:
dc:70:d8:16:88:e8:39:97:76:9c:35:ea:cb:92:eb:
6d:62:84:5c:39:ad:e1:67:06:29:a2:b8:d8:d1:6f:
14:f9:52:0c:13:31:69:77:4c:34:1a:25:29:36:19:
39:ce:5c:b7:a5:c3:c8:f2:83:01:08:fc:1e:35:47:
c1:9f:89:6e:de:e2:bf:2f:76:3e:78:bf:cc:8d:22:
52:40:64:cd:18:43:f0:49:8b:b0:bc:ff:8c:65:57:
c7:82:25:ac:08:c3:8c:63:f4:0b:f4:6d:ac:cb:9b:
0b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:DF:14:E8:F8:3D:66:16:37:13:C4:61:ED:BC:22:DB:B7:96:54:1D
X509v3 Authority Key Identifier:
keyid:20:40:50:CC:59:53:6F:2D:94:07:69:28:23:89:0C:CD:DA:85:45:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEBQzFlTby2UB2koI4kMzdqFRQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0455d5-ae56-4820-a1e9-9b437dbfd353/1/IEBQzFlTby2UB2koI4kMzdqFRQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:29:0b:19:25:e0:05:28:b7:24:f4:e3:8c:54:3b:9e:7b:cb:
6e:f1:5a:ff:12:72:8f:05:8d:5a:ec:ce:b4:b7:cb:3b:f3:95:
53:ab:17:68:35:62:a1:aa:0b:b8:ac:2c:68:d1:9c:3b:32:cf:
54:36:46:92:e6:0a:f2:02:f2:17:dc:d0:07:ff:27:e4:3d:49:
d2:a2:a6:f1:38:b6:0a:af:6e:ee:d0:ed:36:3e:30:f8:9d:56:
51:dd:f8:bb:11:89:b9:09:16:dd:af:15:f2:59:de:17:30:78:
09:55:15:a3:b0:e7:5f:a0:86:cf:85:24:1d:71:04:c6:06:97:
7f:bb:3e:17:3b:37:f9:b7:b6:2d:58:44:39:2a:24:ae:9f:90:
17:57:b4:a2:66:04:fa:a8:f5:99:f1:7f:d5:6f:7d:40:9d:35:
2f:ef:69:c2:33:7c:fd:fe:c4:cd:aa:f0:8c:8d:ec:d0:8d:8c:
53:b0:a0:41:1d:8a:3e:f1:41:97:00:66:69:3c:dd:61:8a:eb:
98:ad:08:f8:b7:f6:79:f2:8b:18:89:23:c1:ef:c1:b7:7e:ea:
03:85:47:5a:95:f4:be:49:4a:8e:e1:b4:40:75:6a:98:93:9e:
5f:5f:36:42:fa:e9:eb:ef:08:d5:81:07:6b:d8:c8:36:93:c2:
58:65:20:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:30:41 2025 by rpki-client