Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
File: IgTxXPMNc4SLB038rCYTgAYVatQ.mft (raw, json)
Hash identifier: /V29fSn9TAF9/Syfn0oIACaW4L1tYoaHUJogpG8oEj0=
Subject key identifier: 0F:C9:B3:FF:E2:1E:1C:68:ED:67:39:D9:7E:16:E2:3B:A3:F7:0E:49
Authority key identifier: 22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4
Certificate issuer: /CN=2204f15cf30d73848b074dfcac26138006156ad4
Certificate serial: 0199FBEBAFE2BBDB1617D0E4B4B5335F439D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
Manifest number: 0DEF
Signing time: Sun 19 Oct 2025 10:02:31 +0000
Manifest this update: Sun 19 Oct 2025 10:02:31 +0000
Manifest next update: Mon 20 Oct 2025 10:02:31 +0000
Files and hashes: 1: IgTxXPMNc4SLB038rCYTgAYVatQ.crl (hash: 0O5aSUF8oX6V3BPOXkMSIVj/QUi3R+AzSmPPg9Xe0II=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:af:e2:bb:db:16:17:d0:e4:b4:b5:33:5f:43:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2204f15cf30d73848b074dfcac26138006156ad4
Validity
Not Before: Oct 19 10:02:31 2025 GMT
Not After : Oct 20 10:02:31 2025 GMT
Subject: CN=0fc9b3ffe21e1c68ed6739d97e16e23ba3f70e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:67:cc:86:4c:6e:e3:33:f3:f3:ae:12:05:63:
28:d9:a4:fb:75:1e:92:18:b2:4e:b3:63:10:54:ff:
7e:b7:80:5b:db:a7:f4:39:0f:21:4b:9f:1f:b4:b0:
99:e8:2e:70:ff:b4:58:a8:4a:eb:88:c7:de:61:73:
3f:96:b3:07:0f:39:c6:02:b4:88:22:78:b2:03:23:
12:88:11:12:68:ff:28:0a:84:f2:18:90:84:d1:8c:
1f:3c:d5:fa:a5:da:18:dd:ae:66:45:46:70:7c:73:
1b:df:32:58:16:70:55:b6:c8:35:3f:fd:48:f2:40:
81:dd:34:2e:13:d9:79:ab:f7:08:4b:e1:ce:bc:ec:
4c:b5:67:5a:c5:c1:59:ca:d9:5c:fd:ef:b9:e3:58:
46:c8:e6:0b:77:4c:b9:23:a7:bd:ca:15:1f:86:40:
77:db:23:1a:8a:ad:18:c8:bb:64:12:f2:fc:13:cd:
56:cd:8e:ff:cf:b2:f0:65:23:42:a8:9c:ba:fd:90:
89:5c:49:de:f9:04:3b:a8:8f:2a:b1:2c:96:23:13:
ac:eb:07:56:f9:c1:98:cd:65:24:30:06:9a:49:24:
d6:c3:84:df:3a:bc:15:f0:71:36:92:e6:03:a1:f2:
b9:62:81:9a:b6:09:9c:35:37:a0:71:e7:ef:23:51:
8b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C9:B3:FF:E2:1E:1C:68:ED:67:39:D9:7E:16:E2:3B:A3:F7:0E:49
X509v3 Authority Key Identifier:
keyid:22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:5f:65:26:e1:de:b6:fd:ad:7c:f3:70:d9:3f:7a:e3:70:85:
02:6c:2b:4f:2c:f3:65:d5:1d:f8:ba:33:3e:06:72:37:3f:b9:
12:d7:1b:02:f4:77:d0:07:c8:d6:74:c8:83:a0:16:ab:07:56:
b4:77:f2:97:00:e8:bd:03:00:8b:42:9c:b1:a0:3f:f8:81:03:
d9:c1:93:67:74:12:19:96:d7:3a:e3:a9:aa:56:d5:5a:52:b1:
17:32:ac:c0:b0:25:a6:09:bf:3f:dc:ab:37:51:9d:a6:93:5e:
01:4a:a7:e2:02:df:8f:c7:83:ee:a5:56:01:91:8b:df:66:6a:
16:2a:0c:b0:98:9a:c9:89:d9:a7:1a:1e:07:0e:c7:a6:e3:49:
bf:37:c5:ee:24:6e:e8:3c:bd:dd:f7:1b:ef:1d:a4:4d:9c:aa:
0c:91:a2:89:69:6f:9c:86:11:5e:29:1b:cb:ee:5d:b4:e4:02:
ec:7e:89:68:6f:c2:62:9e:03:99:d2:ea:ae:94:2c:44:6e:ae:
73:a3:18:26:23:ae:04:c4:7f:67:08:0f:4a:e5:67:c6:a8:76:
6e:7b:cd:7b:71:19:bb:20:2a:0f:d2:fd:fc:ba:4c:df:27:b4:
4e:45:42:fa:30:1c:4f:ac:ba:42:91:f8:df:50:b9:be:73:9b:
22:4e:2e:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:21:33 2025 by rpki-client