Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: /jhRQlHsXeE4qVgNqpXc17v9QfSJk4lgiEeAxwHUv4g=
Subject key identifier: AB:A9:F5:AC:DB:30:12:C6:5B:E0:06:10:C5:84:BC:65:AB:CF:17:A0
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 019A04112198FDE936D4DFEBCD49B7267A3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0D61
Signing time: Tue 21 Oct 2025 00:00:22 +0000
Manifest this update: Tue 21 Oct 2025 00:00:22 +0000
Manifest next update: Wed 22 Oct 2025 00:00:22 +0000
Files and hashes: 1: BY3gmYE2jAUAzVYgNkSF1kzgx38.roa (hash: o+T/NGOLnxz7Wv8sLagAUwobjqcsqFCif9O5RgNrbi4=)
2: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: 4IxGNroAU9PaeEDF68y3X0nILisZJH15/VpbE6EPTLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:11:21:98:fd:e9:36:d4:df:eb:cd:49:b7:26:7a:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: Oct 21 00:00:22 2025 GMT
Not After : Oct 22 00:00:22 2025 GMT
Subject: CN=aba9f5acdb3012c65be00610c584bc65abcf17a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:db:c4:7b:5d:85:14:da:39:bd:22:61:38:18:
60:04:e1:17:28:eb:66:1b:5b:72:24:ad:a9:70:85:
83:fc:93:48:fd:63:a2:4a:7a:bc:48:64:f7:a5:c4:
bb:69:49:af:e8:f0:b7:09:46:a8:fb:3b:26:96:3a:
28:12:1e:bc:a5:12:24:cf:e8:97:bf:49:50:8f:48:
5f:78:25:34:16:0e:52:0b:93:2d:28:ae:57:3f:94:
05:1c:8a:9c:35:81:e1:d7:c3:53:8c:94:99:0b:a3:
a5:52:c0:e8:c5:84:d2:ad:16:51:65:25:c9:27:27:
1e:f7:ac:09:15:1f:05:ba:b6:cf:30:3f:c1:5a:57:
89:ce:ea:68:28:a6:54:85:d5:b2:56:32:27:ee:46:
1d:2a:9f:15:0e:46:7c:29:ad:69:db:cf:23:ce:91:
91:8d:e5:0b:2e:cd:0e:42:59:18:80:ba:35:98:3a:
09:31:d8:ae:96:5e:bc:a9:8d:f0:3f:a4:7c:c2:e5:
e0:19:74:dc:69:24:6d:cb:42:19:b2:4d:30:24:38:
90:d8:4a:63:da:75:8c:3e:72:94:08:b7:dc:a2:2d:
7e:f4:10:fe:40:24:5d:cc:ef:16:78:04:83:7a:fc:
cb:c5:3a:78:46:30:fa:7f:25:8d:da:f0:ea:ce:c7:
6c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A9:F5:AC:DB:30:12:C6:5B:E0:06:10:C5:84:BC:65:AB:CF:17:A0
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:e5:10:09:d8:55:66:21:fa:31:69:30:45:07:cf:77:c2:ba:
2f:97:9c:88:ab:77:3b:2c:07:3e:e4:69:52:c0:cf:d7:0d:1c:
eb:97:9f:2c:e4:b6:48:20:53:31:5e:ca:0b:f8:4e:15:c8:6c:
e1:68:0d:26:36:64:2e:8e:7a:35:43:db:63:fc:bc:4b:14:e0:
5f:8e:99:ae:91:ce:a8:5d:ad:91:5c:4c:f2:d1:3b:c0:7e:73:
c0:dc:ae:a4:e5:56:c6:c1:31:70:c5:5e:c6:6e:0d:3d:65:09:
76:6e:b0:8c:26:35:1e:e0:3a:a3:1b:55:31:9a:ce:8a:84:f5:
99:58:0b:c3:6a:40:e1:30:ce:90:65:da:d0:21:66:4b:f3:e1:
2d:cc:b9:e9:cc:3c:8e:53:7f:70:2e:55:8d:10:ae:eb:04:c2:
bd:ed:44:1d:1a:21:5b:9e:35:2d:6a:86:af:86:5c:07:88:da:
06:0b:0c:23:37:75:4d:d2:ac:65:a0:ee:77:72:74:58:cc:69:
3a:f3:d0:09:46:6d:7e:09:c8:bf:d9:4b:e6:51:f5:f8:ee:72:
3f:e2:51:0a:00:39:45:69:fb:a4:ae:28:c1:4f:5d:9d:3e:11:
7a:66:03:d8:2f:9f:27:6f:d8:ef:41:f3:28:e1:ae:d7:5d:65:
aa:6b:04:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 02:56:55 2025 by rpki-client