Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: asUt8rZGUXnBTnu8ngLZ9fvKfM3g5eWTf/p0ViwX8q4=
Subject key identifier: 9B:7E:D5:28:1E:D8:C0:67:F1:1A:68:85:EA:A9:95:31:E4:71:BC:44
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 0198D65FE5A28A25B0B6B87B7014CBC7CEFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 10:01:05 +0000
Manifest this update: Sat 23 Aug 2025 10:01:05 +0000
Manifest next update: Sun 24 Aug 2025 10:01:05 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: 88i3s5EI77/dst7WyXXmxz7e87FZNAO31IQmc+us1wc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:e5:a2:8a:25:b0:b6:b8:7b:70:14:cb:c7:ce:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Aug 23 10:01:05 2025 GMT
Not After : Aug 24 10:01:05 2025 GMT
Subject: CN=9b7ed5281ed8c067f11a6885eaa99531e471bc44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:be:79:81:21:9e:3f:fc:6b:b1:5b:aa:cf:31:
17:4b:cc:e4:d7:cb:26:e5:d2:2f:d9:bb:b6:df:4e:
4d:c7:68:b5:ea:f4:d6:ba:72:c6:b3:b0:5b:56:c5:
c0:65:93:8b:27:be:94:34:b1:67:9d:66:db:b4:5e:
fc:d8:1e:c4:61:5d:68:37:c0:c8:d1:12:67:aa:65:
2c:25:5f:8d:fb:1a:5f:62:dc:a1:cc:5a:f3:f3:22:
2c:ef:ea:45:57:07:33:19:45:e1:9c:64:e3:f6:86:
0d:17:b9:6d:88:b6:26:23:51:a9:0c:97:d3:77:8a:
01:15:5a:ee:a0:0f:3a:49:76:ac:91:91:0a:d0:7d:
d1:8d:bd:d1:22:a3:f4:95:d8:9a:d0:1f:8e:96:39:
ed:a5:7d:bc:8b:ec:ff:16:bb:7b:43:f4:bb:db:a4:
ce:6e:0e:f1:23:da:97:fb:0a:40:35:95:b5:78:68:
8b:e8:4d:11:23:33:7e:b2:81:48:74:1e:e9:b4:98:
66:f7:aa:c9:ef:6f:b4:5a:e6:b2:83:08:45:eb:2d:
b5:e3:6e:65:c1:19:5d:36:7c:67:28:da:83:7a:b6:
93:0e:cb:02:b2:59:69:c4:0d:e6:82:69:3c:8f:77:
e5:13:6c:63:8a:9b:11:be:04:d8:bd:d3:01:19:23:
73:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7E:D5:28:1E:D8:C0:67:F1:1A:68:85:EA:A9:95:31:E4:71:BC:44
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:c8:5d:a6:45:0e:3b:c5:99:52:06:5b:9b:53:16:6e:d1:e3:
41:40:75:67:b2:ee:f8:13:5b:81:4d:8f:29:3e:6d:fb:b0:0c:
a1:0b:b5:c5:25:ae:86:53:d1:b0:5b:96:a3:db:06:6a:87:3e:
de:80:1a:9f:e9:fd:b5:bd:3c:a9:34:7e:34:a3:3f:62:f1:b7:
62:97:48:d2:57:dd:59:ee:fc:a4:c9:66:48:f7:f9:cc:66:d2:
e7:8b:ba:c9:f5:e5:06:e1:ee:0b:a1:be:38:59:e4:71:1b:eb:
fa:03:b6:79:30:2a:27:d0:c9:68:b1:83:f1:23:ea:7a:87:b0:
65:ad:98:4b:49:2d:de:74:03:19:37:f0:d3:e7:31:c7:61:db:
59:28:29:78:cb:08:e6:27:18:16:73:ad:f0:58:96:4c:b3:4b:
d8:6a:45:16:ba:59:f1:69:6a:2d:65:65:7b:68:49:a0:60:70:
c7:41:71:53:73:a6:67:c7:7d:c6:ca:7e:1f:04:75:96:f1:e0:
9c:0d:13:bc:9c:55:01:e9:4c:e2:17:53:7d:51:5c:6d:2a:1f:
e8:5e:bb:67:d5:ad:c4:57:68:4e:55:61:4b:f0:23:37:b6:20:
e6:37:3f:a1:d4:7b:53:3c:41:e0:d9:57:74:0e:be:48:dd:66:
90:88:3f:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:21:13 2025 by rpki-client