Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
File: tIoonrst1oBtYLjFrQNseY9mugY.mft (raw, json)
Hash identifier: owno/c9LotKnCEm96Ojc8O0veY7dq425m94e4uzaJ7g=
Subject key identifier: BA:28:F2:BA:90:EE:02:B7:9A:85:04:CF:7C:21:C4:F4:C5:BD:07:00
Authority key identifier: B4:8A:28:9E:BB:2D:D6:80:6D:60:B8:C5:AD:03:6C:79:8F:66:BA:06
Certificate issuer: /CN=b48a289ebb2dd6806d60b8c5ad036c798f66ba06
Certificate serial: 0199FCFD2A8BD3B13E8C2B93CB1DD6E8D1C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
Manifest number: 059D
Signing time: Sun 19 Oct 2025 15:01:13 +0000
Manifest this update: Sun 19 Oct 2025 15:01:13 +0000
Manifest next update: Mon 20 Oct 2025 15:01:13 +0000
Files and hashes: 1: nKxswHwUBE_XIOIyQ1Qpw5XOFvo.roa (hash: xZYcCOMTf00TiuBXWvG+qaD8S6ouJ5YlmrR2oW0i9z0=)
2: tIoonrst1oBtYLjFrQNseY9mugY.crl (hash: c6isXQJlrW/We5xoivAupE4CaX37pg2yEbK2dN0yias=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:2a:8b:d3:b1:3e:8c:2b:93:cb:1d:d6:e8:d1:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48a289ebb2dd6806d60b8c5ad036c798f66ba06
Validity
Not Before: Oct 19 15:01:13 2025 GMT
Not After : Oct 20 15:01:13 2025 GMT
Subject: CN=ba28f2ba90ee02b79a8504cf7c21c4f4c5bd0700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:17:e7:d8:d2:17:02:39:5b:06:5b:b0:44:c7:
82:6b:52:24:48:69:64:5b:63:2e:36:2e:64:3f:7b:
3d:62:e4:64:bf:e8:1e:6b:ba:de:f1:e7:8a:ed:5a:
46:59:7b:96:76:13:bf:f0:b3:9c:a5:1f:29:bf:d2:
5b:5f:2a:d5:aa:ec:e0:58:22:34:ed:8e:14:f3:a0:
02:11:d1:7b:d3:1c:f2:c7:be:4a:db:1b:1a:eb:04:
32:d1:0a:a2:ed:bb:4b:cb:4d:4b:f1:0f:fd:08:e9:
6a:c2:8c:28:e3:bc:b7:94:10:6e:1c:b7:a3:3a:c4:
06:67:6a:45:b9:f6:b0:7e:10:be:48:2d:84:93:37:
9b:f5:83:3d:da:21:fc:d1:55:f1:71:5a:6b:0e:ff:
62:d0:f4:06:22:f4:c6:b9:03:18:85:da:9a:ad:93:
ff:63:49:a3:a5:7e:57:9e:7c:b6:be:05:5f:86:a0:
d1:99:70:93:c6:ca:a7:3d:4a:c0:39:93:ac:fb:1f:
a6:ad:7e:af:90:64:5a:68:ef:08:b0:28:73:16:d5:
de:cd:04:c1:c7:e7:06:c2:d9:a9:3f:45:07:0c:43:
bf:63:09:59:f6:c2:ca:0f:09:f1:b3:42:aa:12:de:
18:69:b7:4b:5a:aa:6c:49:5e:83:a7:cb:6a:4a:7c:
4f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:28:F2:BA:90:EE:02:B7:9A:85:04:CF:7C:21:C4:F4:C5:BD:07:00
X509v3 Authority Key Identifier:
keyid:B4:8A:28:9E:BB:2D:D6:80:6D:60:B8:C5:AD:03:6C:79:8F:66:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIoonrst1oBtYLjFrQNseY9mugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5992eb-4b82-4fd3-9121-fee137c890bc/1/tIoonrst1oBtYLjFrQNseY9mugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:47:bb:24:9a:6d:c0:64:3a:be:0f:ee:df:7e:6c:41:21:53:
8c:93:2b:6f:21:97:92:15:eb:38:d1:44:4c:b4:27:28:92:62:
e0:fe:c5:56:a3:75:fd:80:df:fa:11:14:7b:08:21:ca:55:3e:
45:e6:d8:99:13:dc:7e:ff:e7:36:2c:cb:62:60:4d:09:c2:fe:
de:25:7f:4d:99:89:ee:c8:f0:f2:c1:2b:5e:35:c3:b8:8d:40:
e1:a1:e0:a1:c0:95:20:88:f3:71:7f:31:59:e6:fd:00:bc:ff:
5a:3d:58:44:0b:bd:05:39:c0:37:31:5a:1a:3c:ca:10:9d:e6:
6a:91:20:fd:f4:21:df:c3:4f:23:9f:e3:3b:cb:20:4e:39:2b:
1a:3e:9f:3e:09:07:33:6d:4e:61:3c:51:e7:03:ec:06:54:e5:
32:a3:e0:a2:5d:98:b0:2b:68:e8:dc:42:f3:00:d6:dc:53:ec:
a1:8c:fc:03:15:9e:35:62:bc:5b:4c:e5:3b:16:3b:f8:fa:6f:
2e:af:95:35:c1:32:d3:75:3a:c5:c4:fa:31:09:ab:0d:3f:2d:
71:c3:fd:6a:33:f5:56:9f:63:d6:98:4f:5f:12:e0:e3:c5:8b:
34:f1:b6:7e:42:b2:31:a1:f3:6b:9d:90:b2:17:c8:21:9e:72:
5a:3f:83:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:58:34 2025 by rpki-client