Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
File: I08I-kIiU1wK8moNc0fb8XJUcZY.mft (raw, json)
Hash identifier: WkQE2/r7LrrhrvG7S3iNaBAqJpggrtbFgDtkK8QMM4c=
Subject key identifier: D7:D0:B7:16:E6:85:DE:9D:92:BD:8D:7A:0D:0B:E9:98:6D:5C:8B:C1
Authority key identifier: 23:4F:08:FA:42:22:53:5C:0A:F2:6A:0D:73:47:DB:F1:72:54:71:96
Certificate issuer: /CN=234f08fa4222535c0af26a0d7347dbf172547196
Certificate serial: 0199FC587E2072E58BB607B0815521C54216
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
Manifest number: 01D0
Signing time: Sun 19 Oct 2025 12:01:21 +0000
Manifest this update: Sun 19 Oct 2025 12:01:21 +0000
Manifest next update: Mon 20 Oct 2025 12:01:21 +0000
Files and hashes: 1: I08I-kIiU1wK8moNc0fb8XJUcZY.crl (hash: oVPBkzn4Oj6dmBvMAWUlyEG2e+3ZkGBWgCTf5tsw3+s=)
2: PMihf48EDZLf86f7BmXfYmZbV4M.roa (hash: kAi2yEZhpDZ5dFlA+0hzmB2XiAS3L8tb6zCyB/FGwDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:7e:20:72:e5:8b:b6:07:b0:81:55:21:c5:42:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=234f08fa4222535c0af26a0d7347dbf172547196
Validity
Not Before: Oct 19 12:01:21 2025 GMT
Not After : Oct 20 12:01:21 2025 GMT
Subject: CN=d7d0b716e685de9d92bd8d7a0d0be9986d5c8bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a5:e2:4f:67:eb:ca:ad:9a:59:b9:4e:dc:3d:
65:ce:56:5d:38:51:eb:0e:90:bd:39:b3:1e:00:f8:
6f:23:ef:da:4f:c8:7c:13:d9:f7:77:ec:9f:36:dc:
22:53:8c:dd:87:44:c2:74:dc:b7:79:ab:54:1e:eb:
27:13:c5:3c:7e:08:7f:5d:6b:6a:0c:fe:7f:03:c0:
e9:7d:47:be:ac:64:14:fb:a4:e0:b9:2c:7e:87:ae:
20:6f:f2:41:2f:8b:1f:d9:f2:31:47:cb:2f:8f:32:
b8:65:a6:cb:ac:20:1f:ef:56:86:16:ca:b9:6c:84:
56:45:56:23:b4:60:b5:26:0d:a5:a9:cd:15:6a:a5:
b7:a6:cc:b6:18:14:e8:43:1b:bc:60:51:50:ef:89:
f6:6b:ae:d6:80:82:a5:55:cb:28:ea:77:22:59:e8:
e7:ac:3d:61:2a:a8:8c:06:78:7d:f0:f4:93:9f:06:
06:b1:51:80:bb:c4:6c:40:ef:6c:24:ba:14:37:bf:
47:b4:a6:c8:f9:12:0f:bc:a4:05:aa:50:14:1f:01:
a2:54:88:b0:fd:bd:3a:89:17:3e:d7:29:a0:0b:5c:
1c:ed:f4:ab:fc:4e:e6:33:a2:2c:da:17:d8:42:99:
b4:ed:2d:84:db:2b:a3:47:a4:8a:96:53:a6:21:25:
ee:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D0:B7:16:E6:85:DE:9D:92:BD:8D:7A:0D:0B:E9:98:6D:5C:8B:C1
X509v3 Authority Key Identifier:
keyid:23:4F:08:FA:42:22:53:5C:0A:F2:6A:0D:73:47:DB:F1:72:54:71:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:e5:8c:c0:0d:ef:48:91:f3:7e:8c:f9:23:c2:2d:bd:93:1a:
f2:40:21:1b:8f:e9:eb:73:2c:93:08:36:9d:1d:86:30:cb:b1:
76:23:b9:ba:94:3f:70:65:ff:06:41:c3:17:ab:43:c1:45:24:
9a:6f:82:b6:8b:cc:90:f8:6d:37:c7:da:16:eb:8b:f4:7c:32:
90:0c:76:2a:f3:2d:80:49:46:b5:6e:38:2c:6d:f5:1c:c5:ad:
e6:dd:f2:b7:db:d4:e3:0b:75:84:49:37:80:b2:04:c4:a3:2e:
e6:d4:f8:9d:84:86:e1:97:e2:33:4b:fa:9c:cb:de:b0:56:e5:
0c:d0:d8:a3:20:83:c4:a9:88:47:62:81:69:dc:de:8c:9c:de:
dc:39:8e:92:2d:0d:7d:52:ea:65:0f:08:77:01:68:c5:45:e2:
4b:dc:3b:17:1d:e9:37:cf:56:57:f5:2c:16:22:fc:a0:06:09:
3b:5c:ad:e2:d9:eb:d3:3e:c7:5a:95:8b:77:8a:78:5d:06:79:
c9:c7:01:84:67:62:31:1f:14:06:07:31:27:ee:42:6e:9f:bf:
f2:cc:cb:fc:1f:05:1f:d3:ac:00:2d:0c:b5:cb:61:c7:53:3e:
b4:65:85:c8:f5:12:67:9d:e3:45:c3:e3:0f:dd:21:dd:51:2b:
ce:00:86:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:27:17 2025 by rpki-client