Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json)
Hash identifier: 4sLifxwXwdGhvY2ExZ5PenfT2DjJW0muzSPqgr+wg+Q=
Subject key identifier: FB:00:7B:6A:08:1B:91:E7:EA:28:05:AD:84:56:CC:4F:A9:C2:20:5E
Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Certificate serial: 0199FBEB9D81A5E95DEC8E279AE77BC84EFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 10:02:26 +0000
Manifest this update: Sun 19 Oct 2025 10:02:26 +0000
Manifest next update: Mon 20 Oct 2025 10:02:26 +0000
Files and hashes: 1: BIaGV9Zs8uGBriNQ8U7uQ0gnNfA.roa (hash: 7T5AV/yHdfgZicPaqkaiWb9Osz7vZVkyB1rTGAClRcg=)
2: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: EfYMX/W2J8ztRDIciKW+MznQtiXCcbRR1NE8is+OWWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:9d:81:a5:e9:5d:ec:8e:27:9a:e7:7b:c8:4e:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Validity
Not Before: Oct 19 10:02:26 2025 GMT
Not After : Oct 20 10:02:26 2025 GMT
Subject: CN=fb007b6a081b91e7ea2805ad8456cc4fa9c2205e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:03:a7:8a:da:1d:b9:e0:a0:44:0d:b1:bd:dc:
6e:fe:87:65:5d:13:ea:7e:46:4a:65:9f:19:04:7d:
c6:ea:7e:12:41:5b:97:9e:91:a2:2f:0e:55:a8:9d:
16:56:5b:88:b2:7b:dc:f0:0f:b5:1a:f2:24:c8:7d:
25:34:37:9f:01:ce:5f:b8:f6:95:16:52:32:11:62:
1f:8f:4d:67:06:02:e2:2a:6b:1a:ae:ab:98:fd:7f:
b5:8f:d3:a6:b4:5e:3e:3e:99:75:b1:fd:8d:c0:5f:
cd:77:20:20:e7:54:af:95:04:fd:de:cf:31:b4:d0:
0d:2a:97:70:7b:e7:8f:4e:2b:c5:41:98:66:9d:a6:
b8:20:dd:e3:12:f3:9e:61:95:3a:d3:4c:01:65:36:
c3:1a:11:91:28:92:c2:c9:b6:62:1c:54:42:bc:d6:
3f:b9:f0:d7:54:fb:ea:ea:ed:ef:bd:79:98:b3:14:
a0:0d:47:0d:79:8b:b5:51:de:34:27:af:7f:1c:5c:
2c:9f:bc:3a:ae:c4:b8:c3:20:68:7a:cb:5d:1b:5a:
37:f6:86:51:03:00:0c:02:ef:c1:26:a4:96:91:50:
b9:89:73:22:a4:89:43:c1:be:19:d6:5f:fa:20:b0:
29:6f:df:d3:81:44:d2:20:e6:50:ee:78:8e:48:bb:
ba:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:00:7B:6A:08:1B:91:E7:EA:28:05:AD:84:56:CC:4F:A9:C2:20:5E
X509v3 Authority Key Identifier:
keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:c1:d6:72:1c:69:80:9e:fa:6e:ab:ad:19:8e:f5:9a:46:a5:
18:27:ef:ff:0f:4b:52:83:c1:17:e7:89:99:99:60:25:24:f5:
1a:6f:92:3e:d2:b6:ad:b9:40:15:d6:2f:c1:ee:75:5b:5d:41:
ac:ec:b2:0b:c6:4a:8c:4e:39:9b:57:5b:34:f3:bf:38:da:77:
79:17:bc:92:0e:70:49:7e:09:d3:d1:f4:4f:9d:9e:01:71:5c:
54:79:6c:68:52:d3:5c:f3:2c:3e:df:9b:7d:d1:65:86:28:63:
63:df:65:8b:d4:b7:0c:17:93:e1:8d:9e:1e:28:44:5b:a2:17:
aa:43:cb:e2:70:3e:c1:76:c5:80:27:c1:e2:11:cc:9d:ea:8e:
55:57:66:f0:a0:3d:11:c9:c1:a4:17:7a:65:18:1f:79:3e:75:
7e:54:5e:e7:25:0e:1b:df:0a:8e:e6:3e:33:50:8d:28:39:85:
12:03:10:4b:92:d5:f1:c4:59:b4:d4:d1:8d:bb:59:9f:9a:95:
e9:95:a6:0f:5e:83:8d:69:3d:53:3d:aa:81:a6:65:dd:df:45:
54:b4:50:1c:a3:f6:dd:35:75:f8:8d:e2:c9:43:05:dc:0c:1f:
3c:11:68:cd:de:38:43:30:2c:88:e6:59:90:2e:2d:e1:d1:f5:
06:b3:17:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:44:59 2025 by rpki-client