Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
File: iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft (raw, json)
Hash identifier: ApmkH9Fg2ONDONYQ+VDouHdBz5OXu4qK2ZCbzIcAufo=
Subject key identifier: 2C:C4:AE:D8:30:89:39:07:34:7F:B5:01:56:03:1F:5F:1E:08:1A:CD
Authority key identifier: 88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
Certificate issuer: /CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Certificate serial: 0199FD341ADBF86AA52B16DED3C3C5BEAB3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
Manifest number: 1636
Signing time: Sun 19 Oct 2025 16:01:14 +0000
Manifest this update: Sun 19 Oct 2025 16:01:14 +0000
Manifest next update: Mon 20 Oct 2025 16:01:14 +0000
Files and hashes: 1: Qv6t4wP7j-uLsxcfTWHv2ZFQWD8.roa (hash: eR47NrGWjMdNEp9FBa07vBAWwdqKIDeSc8imYvJOwfI=)
2: iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl (hash: Zw9Rj+qV0w3LzCD3f6C8AodxO4jeV8g5Gdm0JhurIkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:1a:db:f8:6a:a5:2b:16:de:d3:c3:c5:be:ab:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Validity
Not Before: Oct 19 16:01:14 2025 GMT
Not After : Oct 20 16:01:14 2025 GMT
Subject: CN=2cc4aed830893907347fb50156031f5f1e081acd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:66:b6:96:1c:88:71:64:06:f9:97:af:a5:80:
32:8a:a8:49:64:1e:61:d4:64:ac:1c:ea:d1:7e:15:
f0:68:d2:fe:3d:7c:8c:aa:eb:b6:c2:62:d5:e5:f9:
39:2f:41:37:22:7b:76:58:d8:cf:c0:e1:e8:3c:a5:
08:18:5c:9f:96:f8:c2:6f:a7:77:45:b6:3a:cc:ae:
b2:e6:83:fd:bb:79:cb:41:74:b8:c5:62:a5:0f:85:
e5:57:fc:03:1a:4b:68:da:69:cd:85:38:b5:0c:d1:
50:5b:cc:96:a1:19:08:d9:9c:94:11:23:5e:b4:43:
9f:77:13:99:3f:58:6f:0a:92:c4:76:dd:73:2e:6f:
a5:10:c5:1c:a7:2b:7e:d9:af:2a:7a:13:ff:c8:13:
73:6a:a7:4c:d7:c0:0b:66:5b:23:e0:82:71:e8:db:
33:c7:ec:a1:c3:fc:49:27:19:ad:55:66:df:c2:cf:
f5:81:41:cf:17:0c:88:9e:80:db:7d:3a:df:eb:98:
fc:87:e6:14:5b:51:93:35:34:0b:d0:33:40:0d:74:
71:d7:09:d8:3b:be:2a:22:db:c2:c7:a9:38:80:41:
5c:0b:e5:a4:d1:10:a9:7c:1f:2d:d1:5f:0d:7e:1c:
94:3c:f8:6d:e8:06:61:a5:32:15:53:13:43:f3:00:
30:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C4:AE:D8:30:89:39:07:34:7F:B5:01:56:03:1F:5F:1E:08:1A:CD
X509v3 Authority Key Identifier:
keyid:88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:da:f9:8f:3b:e4:e1:4e:58:d7:1f:d8:12:7a:aa:b8:57:1f:
2b:04:83:a1:44:95:35:0e:98:be:fc:81:10:62:99:07:5f:23:
63:5e:01:71:8a:f9:b3:02:52:8d:16:28:cc:06:f7:2c:04:7c:
83:f6:aa:65:99:b4:18:77:e0:a4:d1:3b:af:6b:5c:7e:58:4d:
dc:08:06:49:43:5a:08:a4:64:75:ab:f2:04:e0:9f:59:2b:f3:
8a:c5:01:1b:70:44:60:df:11:e7:df:a1:a6:a4:c4:24:0b:03:
ac:81:0c:ff:e1:d5:71:8f:b8:0f:95:67:7a:b3:3c:ef:47:16:
d2:41:20:98:0c:f6:1b:96:13:8a:06:ca:02:49:85:e8:0b:17:
a3:4c:eb:24:5f:51:80:4e:00:5f:7f:fd:76:61:7b:f6:2a:4e:
aa:be:5e:09:7f:6f:53:86:22:25:bd:22:a3:ba:10:98:b7:4e:
cf:55:3b:fb:7c:bb:71:1f:46:ac:6d:3e:d5:3f:c2:c6:f7:c4:
a1:75:71:f0:62:68:3e:0c:01:73:b7:09:45:20:cc:fc:dd:0b:
42:f2:22:42:d3:0d:21:ed:c0:50:51:24:3d:4e:11:64:30:2f:
a0:78:03:9c:ef:7f:6e:03:3a:0b:43:2a:12:7b:c8:5b:51:f4:
bd:0b:41:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:01:44 2025 by rpki-client