Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft
File: iWxjRnXxe_ak81-hi7hVYBoYpbU.mft (raw, json)
Hash identifier: 6twBx+3QmbyZFI7OI9EEccYJ4XdWfeTEze+hpBwoZPI=
Subject key identifier: 29:61:B9:70:A3:7E:4D:79:59:FF:FA:30:5C:24:B1:A9:E3:C6:5F:3A
Authority key identifier: 89:6C:63:46:75:F1:7B:F6:A4:F3:5F:A1:8B:B8:55:60:1A:18:A5:B5
Certificate issuer: /CN=896c634675f17bf6a4f35fa18bb855601a18a5b5
Certificate serial: 0199FBEBDAC92778B40C5542FFBD3082ADAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWxjRnXxe_ak81-hi7hVYBoYpbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft
Manifest number: 94
Signing time: Sun 19 Oct 2025 10:02:42 +0000
Manifest this update: Sun 19 Oct 2025 10:02:42 +0000
Manifest next update: Mon 20 Oct 2025 10:02:42 +0000
Files and hashes: 1: iWxjRnXxe_ak81-hi7hVYBoYpbU.crl (hash: RNpvkE+KV07bG8lXiquTAeQKhjxB/ag/h26aee1xV+A=)
2: yulwp-3vKKFAdXVOa4nXVzHSFWU.roa (hash: q4+Kq35pmEpGGWwSszRZa770efG6x8cdf3PGbgipeks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWxjRnXxe_ak81-hi7hVYBoYpbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:da:c9:27:78:b4:0c:55:42:ff:bd:30:82:ad:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896c634675f17bf6a4f35fa18bb855601a18a5b5
Validity
Not Before: Oct 19 10:02:42 2025 GMT
Not After : Oct 20 10:02:42 2025 GMT
Subject: CN=2961b970a37e4d7959fffa305c24b1a9e3c65f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:72:01:4a:a0:42:8d:53:47:ce:2b:60:82:0a:
a3:0d:10:b5:1b:0b:d2:19:54:c1:76:b0:39:71:44:
b7:b0:96:92:df:a8:52:90:86:c8:3b:d5:b3:06:3d:
49:03:fe:b7:0a:c7:f2:86:1c:69:82:ed:bf:2c:db:
02:55:46:3e:4a:2c:00:9d:0d:e0:36:80:1e:5c:3a:
70:d6:6a:b8:86:4b:2c:bc:3b:ea:cd:e1:62:42:a9:
54:74:f4:e5:0f:d4:d4:13:24:72:69:9b:e7:0b:64:
2b:95:ae:c1:53:ca:f6:6f:5d:ab:51:d0:fd:18:51:
c1:37:96:53:89:fe:c6:ba:db:d6:8b:0f:08:4e:77:
be:9a:b9:b7:41:40:08:da:3e:3e:eb:1b:1d:d4:9a:
38:aa:9c:72:96:a2:da:8e:ca:a3:0d:98:43:fc:28:
d3:aa:97:ec:2d:ef:59:73:02:a4:0a:27:26:e1:50:
45:1c:c7:67:a3:0e:e7:14:88:7f:12:65:16:53:ae:
26:bf:ac:a0:9e:70:80:63:ce:5a:62:11:6c:15:71:
f9:ef:86:60:1b:58:a5:9f:17:16:b6:97:ca:2e:d5:
47:cf:4d:f5:ac:2e:fb:30:1d:99:9a:a1:02:07:c7:
ef:6a:3b:52:87:ca:04:5c:56:ee:d6:f9:a4:ae:4d:
c7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:61:B9:70:A3:7E:4D:79:59:FF:FA:30:5C:24:B1:A9:E3:C6:5F:3A
X509v3 Authority Key Identifier:
keyid:89:6C:63:46:75:F1:7B:F6:A4:F3:5F:A1:8B:B8:55:60:1A:18:A5:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWxjRnXxe_ak81-hi7hVYBoYpbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f45c5c-b645-4be4-a74c-320e1459a40a/1/iWxjRnXxe_ak81-hi7hVYBoYpbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:2e:fe:11:d6:d8:e2:d7:74:42:bb:f9:5a:fc:f2:54:ec:c5:
e9:b0:13:7a:57:c8:f1:ea:4b:fa:91:fb:15:e2:08:74:8b:4f:
ef:e8:a1:a4:af:3e:43:8e:4d:06:8d:63:46:4f:f1:0a:f0:e1:
e5:12:c1:4a:9f:84:71:8a:dd:91:07:3c:ec:7b:00:85:f6:e8:
57:11:11:60:6f:b8:aa:4b:8f:39:11:eb:53:ee:14:45:ea:db:
13:bd:30:21:f5:0a:10:dd:68:e3:44:50:4b:ce:f5:57:9a:61:
4d:ca:e0:1d:50:c3:e0:dd:b2:42:90:e6:83:af:e6:48:1e:37:
d5:d5:af:d4:54:c6:65:3a:f8:4d:3a:02:80:09:b4:2a:5b:42:
de:c9:86:04:d2:da:1d:0c:87:d4:bc:b2:99:42:6f:5f:97:3c:
2c:35:6d:d8:68:08:5a:68:3b:30:e8:9c:e0:35:cf:cc:7d:07:
76:32:c5:fe:44:68:d1:9a:85:93:ed:63:92:2d:0b:b6:01:76:
77:1a:52:c6:6f:d1:d4:12:2f:3c:41:19:18:af:31:6b:c2:ee:
8b:49:b4:96:14:8e:af:b4:fb:09:25:c9:3f:42:ca:4c:19:61:
aa:99:c1:f6:0d:a5:da:19:b6:53:a9:d7:46:0e:6e:5b:76:e1:
08:d1:64:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:48 2025 by rpki-client