Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: jLz2BaxgTYjYQNSGE2r0fsxq7YyNzW28U+fhyflywuM=
Subject key identifier: D6:23:97:AE:0F:DB:57:C7:57:80:61:7A:4C:AE:31:75:1B:F5:1E:D6
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 0199FDD9EBEF9A1C5CECDB504CCC0042C294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 19:02:21 +0000
Manifest this update: Sun 19 Oct 2025 19:02:21 +0000
Manifest next update: Mon 20 Oct 2025 19:02:21 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: Nh852N+nBZN9EfWho/jiWiMXsW/loP21ClwQHn0P9n0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:eb:ef:9a:1c:5c:ec:db:50:4c:cc:00:42:c2:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Oct 19 19:02:21 2025 GMT
Not After : Oct 20 19:02:21 2025 GMT
Subject: CN=d62397ae0fdb57c75780617a4cae31751bf51ed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:64:7b:07:ea:5e:f9:dc:42:58:8b:1f:60:e2:
9f:50:7c:06:66:5e:0a:05:43:34:74:7d:2a:ae:9a:
bc:cc:e6:79:d9:7f:0c:ce:b7:5d:1e:75:e5:2e:b8:
32:0f:74:3a:45:4a:31:b6:58:b6:06:1d:37:05:9a:
89:a3:9f:97:62:17:33:25:3d:9f:c7:e4:07:78:e9:
bb:a0:08:20:de:6b:79:28:9e:b2:3a:dd:f3:05:13:
70:25:ac:23:3c:31:06:7e:8c:b1:a9:64:e7:37:e1:
a6:33:a0:63:a2:81:73:d1:a1:f9:0c:49:06:0d:a8:
5c:4e:82:3e:22:c0:28:87:29:5a:3b:07:89:04:7c:
5e:07:8b:7a:ad:ac:46:a9:81:7e:34:20:d8:f0:eb:
35:c9:9d:66:16:ba:6e:4d:14:7e:5d:23:d2:dc:97:
3a:46:1d:b3:e8:65:2c:60:d3:2e:d4:21:10:49:49:
27:a9:69:b1:c8:c4:02:8c:9c:ee:20:ba:9c:0b:a0:
e9:1c:d6:95:29:b1:b0:81:68:60:99:4a:0d:d4:7e:
7c:74:75:6a:c5:a2:00:87:2a:aa:ea:87:d1:55:29:
3a:5d:5a:b7:c9:43:d9:ce:05:94:d1:d9:23:b1:40:
57:cd:8a:4c:a8:22:04:21:91:20:05:51:a6:c1:6d:
96:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:23:97:AE:0F:DB:57:C7:57:80:61:7A:4C:AE:31:75:1B:F5:1E:D6
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:73:59:ea:bf:f2:e0:b9:08:ee:e7:72:98:74:dc:49:9a:e0:
9c:4a:2f:87:8b:16:fe:b2:87:bd:aa:7a:6a:f6:d9:f9:a0:02:
7a:ea:5c:7b:e0:69:a3:a6:7c:da:cb:f2:fe:fb:e4:c8:84:13:
6d:e8:7b:36:6f:8f:74:87:cb:a3:d7:d8:0d:9c:dd:e9:4d:3f:
c5:87:4c:6b:40:a4:45:a4:4a:7b:3a:41:8f:76:49:d7:27:8b:
cb:11:7b:af:97:76:b3:e6:04:1f:90:fe:ca:1d:72:e4:47:d4:
a7:39:48:4e:4e:2c:e7:27:55:d8:22:42:e3:6d:b6:2b:f6:1b:
00:98:d6:b3:3b:e7:c4:90:04:63:39:e0:ea:22:91:c7:13:c7:
27:19:42:76:7f:f1:09:dd:b7:06:2a:2e:c0:e4:e4:d5:cd:df:
2d:be:48:e5:fe:4c:38:84:e8:04:43:5e:98:de:64:f9:ae:23:
be:f1:65:68:9a:ea:a3:87:68:f4:a5:6f:28:98:0f:19:a9:f2:
cb:80:c9:e3:49:7c:72:3c:18:48:be:66:93:0f:f3:6e:11:ce:
cc:18:d1:e2:62:83:ce:c7:6e:08:00:85:b1:16:48:fa:1b:e4:
31:e5:c4:3a:59:32:98:9c:09:90:6a:cd:d7:22:58:d2:0c:e0:
2b:de:d9:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:40:21 2025 by rpki-client