Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
File: it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft (raw, json)
Hash identifier: IRiIjqWxGNldPJf+r7fJChZLkOj/BLWgoujaTl79BHk=
Subject key identifier: E1:BF:36:7E:5B:7E:D1:59:76:6C:B7:91:4C:5A:43:95:8A:E0:B7:14
Authority key identifier: 8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65
Certificate issuer: /CN=8ade0787cf9881a1fc59556ca1542d7779f28765
Certificate serial: 0199FD343F859B591363C7FDAF90674AA411
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
Manifest number: 13DF
Signing time: Sun 19 Oct 2025 16:01:23 +0000
Manifest this update: Sun 19 Oct 2025 16:01:23 +0000
Manifest next update: Mon 20 Oct 2025 16:01:23 +0000
Files and hashes: 1: 5v7duN9Ge8yGISXqxG3qUzWZAS0.roa (hash: 1SA0Oa41y733C6WZxDupsHaqhvUOZQl7E3vDY0FiKPY=)
2: it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl (hash: cZQ/iTvh+NjxhHc+jUsWk4UCf0cWsqxWkumOxHU62gY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:3f:85:9b:59:13:63:c7:fd:af:90:67:4a:a4:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ade0787cf9881a1fc59556ca1542d7779f28765
Validity
Not Before: Oct 19 16:01:23 2025 GMT
Not After : Oct 20 16:01:23 2025 GMT
Subject: CN=e1bf367e5b7ed159766cb7914c5a43958ae0b714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:39:de:b3:3a:0d:dd:cf:67:f6:4e:55:ed:e2:
0e:21:d9:b6:4f:4c:0a:2f:5b:cc:af:87:c9:ad:43:
5c:3f:d2:d1:d3:40:63:21:36:4f:71:5e:d7:5b:77:
f0:95:97:aa:35:da:bb:08:da:3d:1f:2b:5c:aa:02:
ec:70:c2:c0:05:5f:6c:7d:03:ed:82:e9:59:a1:23:
b1:0a:66:a4:2f:62:55:d3:cb:9f:51:40:da:c4:e7:
de:ff:91:e7:96:08:90:51:83:da:9d:f7:70:16:db:
94:5d:91:35:22:29:3a:c6:c5:20:03:1c:27:9d:ae:
14:b3:10:21:70:82:2a:e1:2e:2b:c8:47:4c:38:4e:
39:e3:23:17:32:23:59:93:18:75:1a:43:79:da:7a:
a3:06:42:55:0e:69:66:9a:9c:37:71:74:24:06:b1:
f2:71:d6:d8:66:95:b1:c4:40:54:6c:1c:5a:91:97:
1a:40:df:b0:60:27:00:4f:b3:d4:1f:96:24:b7:3f:
1d:5b:34:c3:9b:07:34:5f:62:5a:6b:de:5e:5c:9a:
b1:07:ae:cb:fd:77:10:14:68:4d:81:2b:c6:db:67:
00:9d:24:94:c1:f8:53:03:78:26:e5:f2:05:39:be:
19:90:52:1b:4d:a5:1c:bd:65:e4:e3:e3:25:a4:d7:
0d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:BF:36:7E:5B:7E:D1:59:76:6C:B7:91:4C:5A:43:95:8A:E0:B7:14
X509v3 Authority Key Identifier:
keyid:8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:26:55:cc:83:c9:dc:a9:e4:1e:3c:c3:58:1c:8f:ea:22:42:
21:92:01:61:df:11:a9:be:93:77:75:02:35:5c:73:ee:27:3c:
ba:49:1f:98:4b:9b:a4:2b:fb:96:ba:5a:e0:99:9b:09:92:8a:
80:1c:cd:97:90:2c:6c:8b:29:96:39:53:c8:52:10:a0:c4:dd:
a4:28:f1:22:40:25:bb:ee:2c:b2:d8:6a:62:7e:85:e5:5a:48:
a2:96:be:f3:45:ca:b6:2a:cb:e8:f8:63:64:86:f5:0c:78:a1:
cb:78:cb:89:f1:86:30:d8:95:b3:f9:d4:4c:04:90:72:cb:b6:
51:40:3e:7c:77:70:fc:d1:47:ea:52:a2:27:63:14:08:23:ed:
19:26:2f:db:7c:dd:03:0d:82:95:b1:0a:3d:ea:87:4f:32:a6:
12:8a:10:4b:52:11:28:fb:6d:5f:38:84:ae:e6:41:21:ac:67:
05:54:99:ec:7a:75:fb:d5:c7:e7:b6:69:c3:ae:65:aa:28:a1:
91:cd:a6:45:20:0e:da:e5:d4:ac:34:bc:94:68:41:76:be:cd:
0d:11:c8:47:19:7c:94:56:ce:a4:51:6c:ee:26:d6:84:11:75:
ad:48:30:fc:e4:46:9e:81:5d:1f:e3:1e:7e:57:ba:8c:46:14:
e9:96:78:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:11:13 2025 by rpki-client