Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
File: iBKgqAncPNH72JUaj4D2mSXhGQg.mft (raw, json)
Hash identifier: xnOnzXVAKEkpzmQO8XDy1/9GjDzo/uZ5dvvoPVJzaO8=
Subject key identifier: 16:F6:98:EC:54:33:25:B8:C7:0C:9C:D1:12:5F:83:D3:6E:48:B9:05
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 0199FD6B00C96257947AFEE2E7FE3D6966CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
Manifest number: 11C7
Signing time: Sun 19 Oct 2025 17:01:11 +0000
Manifest this update: Sun 19 Oct 2025 17:01:11 +0000
Manifest next update: Mon 20 Oct 2025 17:01:11 +0000
Files and hashes: 1: gc6g1C2J1IjiC6a4YzgHVoMBVvE.roa (hash: l0wZmz1eeJH0pgzgb/M7lMO1lTKuzQbmbwUCcga2Ghs=)
2: iBKgqAncPNH72JUaj4D2mSXhGQg.crl (hash: f4XPZ6HArVYLRcAi6mTWuP1sS8GGghDd0WstbvV1c48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:00:c9:62:57:94:7a:fe:e2:e7:fe:3d:69:66:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Oct 19 17:01:11 2025 GMT
Not After : Oct 20 17:01:11 2025 GMT
Subject: CN=16f698ec543325b8c70c9cd1125f83d36e48b905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:91:96:80:a4:fc:58:8c:75:4a:d8:47:4b:aa:
48:7a:ea:f3:8f:b7:d9:e5:ab:c9:54:b1:2d:16:b2:
00:f4:d6:5d:bc:4a:30:1b:ae:bb:da:79:88:34:41:
68:77:cd:8d:2c:52:41:25:e3:0d:68:7d:15:e0:0b:
4a:dd:fd:a1:19:57:d3:99:34:02:8c:96:28:a2:c7:
c3:12:46:2d:f8:a9:c7:cc:8c:d0:cb:9a:07:b0:67:
90:c7:b0:37:e8:25:5e:c1:ec:be:42:60:76:7d:be:
27:71:96:cd:58:e3:fb:75:ef:31:41:40:9f:19:4f:
2c:9d:9e:2c:bd:cc:e6:89:c5:ff:a9:de:61:f9:f5:
43:59:e6:1a:5a:ba:e1:9d:ac:5c:fa:f5:f3:7e:3c:
03:1a:ed:fb:28:15:50:fc:5c:a7:e3:c3:be:61:0c:
85:ed:2d:2a:4d:76:d7:13:e2:e0:dd:6e:fa:31:26:
99:a4:9e:f7:d2:70:e8:2a:bb:dc:3c:96:60:bf:8c:
1e:b3:50:d6:82:71:53:50:ac:06:ce:64:66:1d:a8:
5e:85:55:59:3d:32:0d:50:a3:ae:97:17:37:49:38:
c4:36:34:6c:9d:a4:a2:8c:f3:d2:77:56:4a:de:9b:
8b:f4:0f:09:46:f5:a9:88:7c:c6:34:a5:15:f4:e8:
5c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F6:98:EC:54:33:25:B8:C7:0C:9C:D1:12:5F:83:D3:6E:48:B9:05
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:d3:2f:e9:21:4a:99:79:ed:0f:10:5f:a5:85:7c:88:52:54:
a5:74:8f:e9:82:89:b2:ee:3c:4b:2a:2d:db:0b:a5:a5:92:54:
10:5a:4d:2a:a0:6a:4e:a9:8a:7a:ce:0f:6d:89:d5:7c:66:29:
72:09:29:ae:62:a5:c5:c5:0b:77:7b:6a:51:43:f4:3f:70:e6:
4c:b0:c8:df:b9:fd:0b:1a:3e:35:4f:39:42:67:e8:39:e8:41:
f6:d7:bc:27:83:64:68:84:77:8c:29:f0:d5:8e:ee:7a:ae:85:
13:16:02:cc:2e:0b:4d:0e:83:f3:a4:d8:8f:7c:ac:17:d9:97:
5c:4c:69:c5:32:6c:8c:6c:7c:cf:e9:00:62:a5:6d:9d:8d:22:
1f:a4:32:90:07:37:4f:a6:92:d0:93:94:31:1c:d0:86:a6:08:
5a:70:a0:35:6c:4e:f8:97:e6:05:e1:3c:01:98:f5:57:f9:2a:
97:b9:3b:55:4d:02:71:32:1e:d6:1d:4b:6f:05:d2:3e:e1:d5:
82:25:f8:52:96:5b:74:e8:d7:70:23:51:68:13:52:a8:15:ac:
3f:bf:56:51:52:36:94:cb:54:a4:82:5d:2c:dd:73:1e:cc:c8:
4b:db:b3:96:19:c6:15:82:f9:9d:36:42:a7:bb:a4:17:ac:6e:
cb:3b:1a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:05:03 2025 by rpki-client