Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
File: ISApS0bJAtk8B5wWhs_kW7ozGMs.mft (raw, json)
Hash identifier: CkUx/96yxflDW+uYPart2Y5/l3FH3gMZeHuwTuJpen4=
Subject key identifier: 6D:70:B7:86:98:4F:70:3A:6B:9F:96:D7:87:10:F6:06:15:B5:54:5F
Authority key identifier: 21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
Certificate issuer: /CN=2120294b46c902d93c079c1686cfe45bba3318cb
Certificate serial: 0199FBEAC572A7451F33F2369036AA08B77E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
Manifest number: 0E78
Signing time: Sun 19 Oct 2025 10:01:31 +0000
Manifest this update: Sun 19 Oct 2025 10:01:31 +0000
Manifest next update: Mon 20 Oct 2025 10:01:31 +0000
Files and hashes: 1: ISApS0bJAtk8B5wWhs_kW7ozGMs.crl (hash: C/iI3c7FCItN3/SBj2vvL/K3nr3o15xajTee70fbrnI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:c5:72:a7:45:1f:33:f2:36:90:36:aa:08:b7:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2120294b46c902d93c079c1686cfe45bba3318cb
Validity
Not Before: Oct 19 10:01:31 2025 GMT
Not After : Oct 20 10:01:31 2025 GMT
Subject: CN=6d70b786984f703a6b9f96d78710f60615b5545f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d2:57:c1:72:b4:48:0c:05:d1:36:dd:55:eb:
38:73:99:86:7c:67:fe:f0:35:e4:92:4e:f6:81:51:
80:a4:fc:09:32:ae:8f:5b:91:ec:06:ee:55:22:c1:
52:22:2b:39:bd:50:c8:b3:f0:ba:4c:0b:25:fa:14:
c3:00:cc:b4:59:3c:36:a7:c6:ac:5a:17:46:61:0b:
a4:41:12:59:2e:bf:00:61:8f:13:51:4b:2f:4f:2b:
8c:9d:4e:d8:73:73:c8:6e:a0:c9:66:00:f9:ff:37:
aa:c1:c3:5b:37:2f:ee:50:79:82:21:39:66:6c:0a:
d4:38:4d:ec:dd:f4:39:ba:07:8f:5e:3b:c4:aa:10:
1b:64:26:ce:d4:93:6e:5a:44:8c:07:ee:e0:29:3f:
6a:b7:cf:54:16:5f:03:7f:3c:11:b1:d4:f0:8f:b8:
52:76:23:79:dc:5c:a7:cc:b8:84:2f:ad:db:78:15:
85:20:bd:04:2b:e4:a8:5c:5d:62:5c:52:e2:3f:d2:
60:12:3f:51:bb:ca:48:ea:e0:db:46:43:df:d1:88:
b4:65:28:79:20:96:bd:86:e8:32:db:0d:d0:2e:04:
c2:9d:33:cf:25:6d:8a:08:66:f9:7b:dc:54:9c:22:
f0:f1:ed:f0:58:3e:a1:79:90:85:7f:a9:69:4a:77:
b2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:70:B7:86:98:4F:70:3A:6B:9F:96:D7:87:10:F6:06:15:B5:54:5F
X509v3 Authority Key Identifier:
keyid:21:20:29:4B:46:C9:02:D9:3C:07:9C:16:86:CF:E4:5B:BA:33:18:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ISApS0bJAtk8B5wWhs_kW7ozGMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/d7bcb7-94f2-4908-977d-a20da56c4184/1/ISApS0bJAtk8B5wWhs_kW7ozGMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:1f:e5:e7:e6:33:92:9d:6b:77:7f:df:d7:c8:9d:fb:3c:54:
d5:5e:04:97:b3:82:c0:67:28:51:ea:3e:3a:48:fe:0f:32:94:
e2:7b:fe:3d:95:69:d9:5c:86:a0:38:1e:e7:aa:61:71:dc:1e:
8f:9b:b9:1a:61:94:eb:7e:dd:9d:f5:f5:4c:11:68:75:6e:0e:
ab:68:6e:52:8f:4e:ef:b5:11:f7:8b:ac:19:5f:44:ad:f9:eb:
38:de:26:35:4f:19:07:03:cb:d3:d6:92:8f:6f:7d:3d:89:08:
bd:e6:dc:82:83:90:f4:dd:7e:fd:94:d9:18:24:11:e0:31:9f:
74:18:b3:8d:6d:6b:71:e8:82:ca:6e:1a:dc:fb:66:c7:52:e5:
2c:aa:ef:27:6c:54:e2:40:08:12:b2:36:ff:5c:41:c8:43:49:
3b:17:dd:bb:4b:23:63:8a:8e:42:f1:e1:7e:72:5e:8f:7b:67:
f0:6b:90:b1:d1:81:6c:57:72:e6:28:79:bb:52:97:50:07:1b:
79:9b:8d:c2:27:36:1a:65:3b:ae:ee:c5:8e:27:56:d7:b8:9c:
1f:54:d0:c9:f1:57:7c:c4:f9:7e:79:b3:6c:b3:9d:e5:a3:88:
26:7e:85:c3:ae:74:42:fa:6e:e2:75:b6:4d:b5:66:67:67:b1:
e9:3f:05:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:04 2025 by rpki-client