Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
File: IZUnwiTwCiiy9MtOExLXSNXKUWk.mft (raw, json)
Hash identifier: +GG0Abt3aH2RxZyGpFPmd7hZULvARFh7QRHJ9A9tTA8=
Subject key identifier: 4D:C6:B7:9A:EB:F2:63:37:54:61:FE:84:C4:B1:A8:D4:EF:5B:47:58
Authority key identifier: 21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
Certificate issuer: /CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Certificate serial: 0199FC5907AC41E87E0EBAA1BD24825DA53D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 12:01:57 +0000
Manifest this update: Sun 19 Oct 2025 12:01:57 +0000
Manifest next update: Mon 20 Oct 2025 12:01:57 +0000
Files and hashes: 1: IZUnwiTwCiiy9MtOExLXSNXKUWk.crl (hash: Xzl/5TTkKE008Fgp/BRhXCIXSWk6QE2qoZNNX3o2aJ4=)
2: l8INnv3QTRexkISN97lg6HuKeCY.roa (hash: pDEsYARUuEJK1pYQPfyythtLkxkCfRaxj9c1qzwCEIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:59:07:ac:41:e8:7e:0e:ba:a1:bd:24:82:5d:a5:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Validity
Not Before: Oct 19 12:01:57 2025 GMT
Not After : Oct 20 12:01:57 2025 GMT
Subject: CN=4dc6b79aebf263375461fe84c4b1a8d4ef5b4758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f2:c4:35:b5:7e:56:ed:51:8a:a3:51:4c:bb:
95:a3:1a:a1:65:eb:f8:26:fb:cd:1f:0a:d2:cb:a2:
7f:27:27:45:b4:51:00:ca:66:98:f3:63:30:89:4e:
6e:0c:31:f9:fd:58:f3:f4:b1:2f:f6:a5:6a:16:ef:
af:23:41:88:7e:7a:ab:ed:72:8a:c5:16:ec:7a:d5:
2f:90:57:72:b0:db:cc:00:69:da:06:43:a2:80:ba:
7e:a9:7e:bb:93:a3:42:f9:94:0e:5f:65:ce:46:f4:
16:49:83:6a:cc:2a:c0:c3:55:2d:dd:ba:c9:31:bc:
44:a8:60:19:f9:07:81:2b:42:bc:3e:12:80:db:0b:
c3:8b:75:22:c6:61:cb:6d:ed:12:ab:b7:1b:4a:d9:
50:35:10:db:e6:20:3a:58:0a:f5:83:43:a4:dd:f2:
9a:4e:e7:3c:13:fa:00:05:bb:2b:cc:e1:33:38:1e:
83:c2:3a:14:c9:8b:4f:81:41:24:a3:64:b9:5c:5c:
7f:5b:49:19:6f:54:20:a6:6c:e0:08:29:52:77:8c:
f4:6c:f8:7d:3e:c8:87:dc:65:9f:bc:d2:93:86:7e:
00:21:e4:47:8e:35:20:83:38:ab:c4:a3:8a:7d:f2:
14:d1:07:65:1d:e4:ba:9b:8f:00:08:e4:b7:84:25:
ed:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C6:B7:9A:EB:F2:63:37:54:61:FE:84:C4:B1:A8:D4:EF:5B:47:58
X509v3 Authority Key Identifier:
keyid:21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:b5:99:8d:77:be:f3:0d:c3:2e:2c:cf:27:c0:1c:13:2c:bb:
91:ba:0e:60:83:9c:89:1d:07:f2:59:ba:f9:8f:5e:75:68:57:
cf:36:4a:94:f9:86:57:7a:61:d6:5c:0c:c0:3c:46:73:88:89:
7a:95:69:dd:3d:c8:51:3c:b3:85:0e:c8:13:6c:51:06:ec:b1:
c1:cc:d8:07:52:41:d4:8f:67:86:e2:f9:27:e6:45:99:c2:19:
c2:47:5f:23:55:27:4f:61:c7:30:4a:92:f1:19:34:4f:bb:fb:
67:b0:c0:0e:bf:1d:51:cd:0c:91:14:fc:c1:fe:b7:50:2a:3b:
40:83:4a:73:72:01:ff:78:35:e9:a2:31:2d:d1:2e:b9:3f:03:
c2:df:77:69:fe:e8:c5:99:dd:06:13:89:b2:13:ad:e0:7a:44:
7b:ee:46:61:d4:60:0c:b0:1b:a0:d2:7c:09:f9:aa:15:c4:b6:
7c:e2:a3:0d:06:4c:59:98:32:79:87:c3:27:1e:0c:4f:62:7c:
d4:2f:7a:98:b9:03:21:b6:08:6e:af:ab:18:56:31:dd:f9:c8:
8a:d2:aa:ee:22:0e:db:5f:d8:08:b8:4a:fc:d4:fd:97:46:d2:
90:61:07:98:a2:75:6a:c7:fc:d2:2c:f6:8e:d1:25:e1:8e:d8:
54:37:8d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:52:39 2025 by rpki-client