Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
File: iuSaSeoGdwqH11pcg1b0Vk4asew.mft (raw, json)
Hash identifier: qN5vBv2tZuIzIGu1W93qJ1Ivw7ZXG5V07ZGO7Rc6YIc=
Subject key identifier: 9A:1C:83:FD:B0:69:00:6C:4B:09:67:3F:29:11:70:39:78:64:7D:E8
Authority key identifier: 8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
Certificate issuer: /CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Certificate serial: 0199FB45CAFFA40F908A56014C87B1316DC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
Manifest number: 0478
Signing time: Sun 19 Oct 2025 07:01:19 +0000
Manifest this update: Sun 19 Oct 2025 07:01:19 +0000
Manifest next update: Mon 20 Oct 2025 07:01:19 +0000
Files and hashes: 1: iuSaSeoGdwqH11pcg1b0Vk4asew.crl (hash: 7bx7FQRP67VTT5sVh7BVGRv5H6/Be0C4j5KDVA3my38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:ca:ff:a4:0f:90:8a:56:01:4c:87:b1:31:6d:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Validity
Not Before: Oct 19 07:01:19 2025 GMT
Not After : Oct 20 07:01:19 2025 GMT
Subject: CN=9a1c83fdb069006c4b09673f2911703978647de8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c1:2f:b1:07:fd:d7:17:38:91:56:73:3f:1a:
c3:67:66:4a:6b:b3:0f:e9:89:40:40:f9:a3:60:c9:
7e:97:05:3e:32:2e:0a:13:b5:b1:65:3f:8a:50:a0:
73:a2:de:ff:39:a5:4b:99:d0:de:16:0b:71:ed:84:
5e:86:85:92:98:83:e8:c9:e9:cd:28:15:ef:23:05:
9a:2f:a8:60:17:b7:13:b7:bb:22:bb:c7:83:0f:3f:
b1:57:5f:53:7d:e1:a7:71:22:37:c0:db:cb:4e:d9:
20:aa:4e:f0:f9:32:dd:3b:74:4e:0f:52:3a:4a:75:
61:f3:e5:61:a6:8c:50:16:4e:89:68:3b:be:d4:a5:
c4:d2:1f:00:5a:42:0b:15:ac:b6:28:33:6a:d4:3e:
d6:04:60:5c:9a:5f:93:f9:05:fa:68:b2:a7:e4:4d:
77:e6:aa:e2:f6:88:0c:fb:7d:bd:31:a0:b0:bb:ec:
56:96:46:54:57:64:b0:f3:8b:57:f0:b7:b9:18:db:
c3:02:12:23:78:c8:d9:52:40:ba:24:a1:9e:89:e6:
cf:44:38:21:64:d8:d2:e1:6f:63:0f:b4:8d:dc:23:
d3:a5:25:58:18:33:84:f1:00:64:06:e3:5a:29:16:
ba:6a:da:49:49:ea:f4:77:89:08:a4:ac:f2:35:64:
b0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1C:83:FD:B0:69:00:6C:4B:09:67:3F:29:11:70:39:78:64:7D:E8
X509v3 Authority Key Identifier:
keyid:8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:8d:6d:1d:f3:e6:d4:28:e7:46:ae:71:c5:65:93:e6:4e:bd:
7d:52:c3:e1:0c:52:22:b2:02:c2:ad:ed:8a:01:17:b9:55:77:
a2:74:fe:70:0d:8b:5c:00:74:b8:69:a8:fc:c0:41:c0:3b:a7:
76:09:31:56:ff:28:29:f0:70:8b:59:9d:1f:a1:ff:3e:82:24:
41:de:ae:7b:81:f2:08:83:cd:f1:bd:f4:3c:77:1f:1d:41:79:
fc:22:32:b9:55:0b:f1:b2:ed:66:8c:a6:28:18:3d:ee:b7:47:
40:45:83:f2:fd:e2:f3:b0:9e:12:40:dd:91:4b:04:14:d0:32:
25:12:ed:66:ad:65:b0:b8:8a:07:4f:06:f9:4d:29:cb:71:05:
b9:4a:e7:5d:b6:ac:f2:a0:1a:2b:3c:36:59:66:8d:8e:b3:b5:
6b:f4:99:86:35:25:e3:f6:0e:9d:a1:e2:43:a7:c2:59:31:4a:
9d:c7:1f:b0:d4:85:a0:69:1d:9b:af:8a:da:25:de:f1:d9:7d:
83:2a:65:70:f8:50:3b:bb:fa:69:43:6b:6a:52:b5:c3:da:4d:
31:ce:7d:2a:c9:42:16:8a:b3:a2:50:fe:69:59:ab:4a:c6:f3:
14:b7:27:37:7a:4e:cb:02:39:5c:51:67:9a:a8:97:af:7b:6e:
58:01:51:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:32:32 2025 by rpki-client