Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: ZIhitcjwhCqhMNaSnJidoqatAaX6bf223V+xEhZie+o=
Subject key identifier: F5:3D:42:0F:20:9F:E1:20:F1:76:C8:F3:68:07:89:9A:CF:69:37:4E
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 0199FC587AF36285EFE2D5DB463D1106B2A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 1383
Signing time: Sun 19 Oct 2025 12:01:21 +0000
Manifest this update: Sun 19 Oct 2025 12:01:21 +0000
Manifest next update: Mon 20 Oct 2025 12:01:21 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: PoBBvzSQ2esntDJ+rZjqkgo9Xye5orn6dPuroXV8n6E=)
2: aEJUX-P3iWzm8iZ2YmNhX1BUm-w.roa (hash: UCW6fp2JBu8X3L8wVEatff2uZp8yn3edNh91K1NyH88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:7a:f3:62:85:ef:e2:d5:db:46:3d:11:06:b2:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Oct 19 12:01:21 2025 GMT
Not After : Oct 20 12:01:21 2025 GMT
Subject: CN=f53d420f209fe120f176c8f36807899acf69374e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:94:c2:cd:ea:a7:9a:8a:53:42:61:75:d7:c5:
a9:40:c8:22:22:fb:a3:7d:f9:90:f3:40:ea:0e:f7:
43:e5:62:94:4b:dd:c4:e9:db:ee:9c:ce:c0:45:bc:
d5:2b:11:0e:cb:8f:74:db:7c:05:c5:35:de:6d:8f:
20:c3:b9:bb:16:68:d7:a0:49:1d:a8:78:92:b6:a9:
e5:59:fb:56:a3:97:c9:6c:e0:46:92:23:f9:0c:98:
c2:ea:bb:77:14:ae:28:9f:ec:ac:76:65:bc:91:48:
a3:bb:bb:80:f3:05:33:05:1f:3b:00:89:73:c0:97:
e3:3a:bf:32:3f:2c:8b:e7:e8:5b:b8:86:61:da:61:
64:44:28:63:be:2a:ab:09:45:44:ce:a9:e5:0b:07:
82:da:ac:e3:97:8e:74:e9:6d:c9:0a:94:58:9e:ac:
a2:8e:5f:5a:30:65:a1:11:7b:54:25:d7:15:d0:f5:
91:63:85:dd:e0:22:fa:1b:f1:e0:57:20:28:0f:ba:
ee:b3:a1:78:cb:8d:92:53:03:bd:d0:b1:5b:e2:ff:
a6:ba:80:bb:24:1c:32:98:f3:b2:5d:6d:7e:9f:68:
6e:94:db:18:a9:ee:33:23:45:45:83:cc:9c:2f:cf:
ec:35:e4:fb:6e:d7:61:27:0c:ed:da:ee:da:ab:eb:
d4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:3D:42:0F:20:9F:E1:20:F1:76:C8:F3:68:07:89:9A:CF:69:37:4E
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:e8:c2:16:ca:ee:0c:a7:8f:f3:74:c8:49:8d:b9:de:0c:b2:
11:ee:aa:65:61:9f:57:7b:66:51:86:d8:3d:cb:e1:32:5a:5e:
ee:1f:b5:58:39:2a:01:ff:fb:d9:7a:a9:b8:ee:66:3e:4b:44:
a0:5d:d9:a3:87:1a:0c:5a:9d:41:dc:c4:ae:87:d0:4a:21:b1:
43:c6:88:bf:38:1b:73:15:1c:64:19:5f:6d:95:7a:2d:03:ef:
3c:94:5b:7a:ea:92:12:53:e9:53:aa:fc:12:48:92:cd:d3:43:
0f:36:ae:f3:e4:f4:9d:82:b5:ea:17:2e:dc:01:44:5d:03:ef:
e6:ee:02:c7:64:2f:17:f8:d5:3e:ce:3c:f3:a7:1f:b4:70:29:
28:74:e1:cc:bd:6e:f7:49:13:df:c5:af:52:d5:8c:f2:97:be:
04:f3:e3:b1:23:4c:72:0b:af:b6:d3:4b:81:6f:ba:5f:77:42:
8c:b2:d2:ea:b9:c0:fb:09:2d:ce:c1:06:8e:b6:2e:5e:3c:7e:
d0:31:32:50:11:33:9d:00:f2:ff:ce:62:25:a7:f4:dc:fe:a6:
7e:94:f6:c8:5c:e5:e6:b8:df:02:13:1d:66:9e:76:29:12:6d:
74:cd:5a:50:86:33:a9:e0:c4:33:b7:12:a0:49:a5:4b:12:85:
6f:46:e3:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:13 2025 by rpki-client