Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft
File: I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft (raw, json)
Hash identifier: 7hiLbaLq2tWT4R2azkbOeQbvIj5TEpZHb43Du/7Uank=
Subject key identifier: BE:D5:B8:EB:B6:AB:D2:78:81:96:D1:44:74:18:CD:02:14:4D:D0:FC
Authority key identifier: 23:F5:C2:58:53:82:08:47:92:F1:3A:D1:97:20:5E:FD:D2:75:2D:F2
Certificate issuer: /CN=23f5c2585382084792f13ad197205efdd2752df2
Certificate serial: 0199FAA10CFCC44FDD140B5B7EF83BF571A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft
Manifest number: 8F
Signing time: Sun 19 Oct 2025 04:01:22 +0000
Manifest this update: Sun 19 Oct 2025 04:01:22 +0000
Manifest next update: Mon 20 Oct 2025 04:01:22 +0000
Files and hashes: 1: I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl (hash: sCOfpv5ApuSh5WSvxy0Sn5W9Mz/hez8a37nItD8jwNA=)
2: PwxQMG9ujj6pfZhzC7G_kz3NsYA.roa (hash: 09V39ykqveB1AyZv1j7X/quqHqzhf0uH/toO7YLzAy0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a1:0c:fc:c4:4f:dd:14:0b:5b:7e:f8:3b:f5:71:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f5c2585382084792f13ad197205efdd2752df2
Validity
Not Before: Oct 19 04:01:22 2025 GMT
Not After : Oct 20 04:01:22 2025 GMT
Subject: CN=bed5b8ebb6abd2788196d1447418cd02144dd0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fe:d2:d4:3e:75:82:c0:59:66:ae:b3:f4:ca:
d2:60:2d:da:57:8d:83:a7:96:b0:9f:fc:28:07:e9:
ba:c7:f5:50:6c:b7:ca:b4:9f:21:f6:41:60:73:f3:
ae:2e:fe:3b:37:6c:95:85:f7:14:30:bb:81:63:47:
0a:77:77:0d:f2:45:4f:f9:9b:44:ac:51:32:9f:f6:
38:17:b2:90:8e:4e:dd:03:d9:6f:96:fd:2c:26:03:
f2:58:66:0f:aa:9b:b9:0c:c9:e7:d9:ce:56:26:d4:
0b:20:d9:44:6d:11:2e:89:88:a0:b2:2a:8c:80:6c:
2a:e7:f9:55:d9:25:ca:52:96:cc:28:0c:ca:1c:54:
59:a7:a8:54:5f:90:6f:ce:d8:a5:df:d1:d3:4d:50:
ab:d2:1f:cf:31:4f:49:c4:91:0a:d8:55:74:89:21:
81:d8:72:c4:be:28:b7:06:b8:bb:dd:bb:c9:cf:7d:
58:6a:72:98:ce:b0:8f:89:6d:2f:7f:92:43:43:49:
4e:cb:c7:d2:04:d7:60:3e:4f:cc:2c:f2:47:12:71:
bf:6c:af:6d:54:72:ef:6e:6a:21:27:03:d9:51:e3:
fa:bd:70:90:0e:60:bd:96:fb:f4:d6:28:47:e0:41:
20:c6:33:f3:0f:17:a0:e4:de:01:d6:55:85:2d:0e:
9b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:D5:B8:EB:B6:AB:D2:78:81:96:D1:44:74:18:CD:02:14:4D:D0:FC
X509v3 Authority Key Identifier:
keyid:23:F5:C2:58:53:82:08:47:92:F1:3A:D1:97:20:5E:FD:D2:75:2D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/f83d09-3413-4651-96ce-8fb5244bc256/1/I_XCWFOCCEeS8TrRlyBe_dJ1LfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:d0:c7:7b:84:7c:b1:c5:4f:1d:1b:56:77:b1:cd:31:6e:e7:
a2:06:05:d7:63:80:26:57:4e:45:0d:b4:5f:c0:47:d9:b0:75:
f8:94:86:7f:cb:39:5c:34:e3:be:b4:ba:96:8e:6a:f8:38:9e:
04:9f:4f:ac:6a:89:c6:5a:3e:49:a7:ee:3d:ad:89:48:22:cd:
eb:38:2e:30:9a:5d:8a:53:e1:20:2e:2f:2d:c3:5a:50:01:3f:
29:7c:64:97:90:7b:98:f3:1a:22:0b:60:5e:aa:7d:0e:5c:e7:
ec:ba:bb:95:79:4a:66:99:9c:8b:2b:44:c5:d7:8b:f2:26:9c:
1e:ad:42:2b:e9:c7:d3:3c:8c:8e:0d:fd:3d:e5:f1:46:56:fd:
7c:2b:8d:ed:84:56:10:c6:fc:12:f5:3b:a6:7e:61:39:a7:0f:
3c:2d:ff:4f:b5:51:39:9a:8d:e3:96:39:69:25:1a:ea:38:1b:
d2:f3:23:f9:cf:d9:61:75:79:1c:1a:e7:d3:8f:b6:d9:6f:0b:
22:39:1a:73:cb:e9:29:22:a9:52:52:51:3d:99:87:2b:a4:d6:
4e:27:00:44:cc:6e:59:32:ad:c7:7e:a1:32:50:fd:95:e6:b6:
33:09:f0:0d:89:d7:80:76:8c:05:61:49:11:e9:0b:b9:3f:53:
7f:18:79:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:21 2025 by rpki-client