Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
File: I3ikqcUjJahZIICboaTYniHALxc.mft (raw, json)
Hash identifier: 7DFwUh7VRYUdr/OCtVsq/iMbdDINVg18KVL6JlrPyDM=
Subject key identifier: 62:1F:E7:E7:50:95:49:7F:98:32:C2:36:CB:33:EE:42:F9:6A:96:A7
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 0199FDD98E4CD1D5FB693E7715B6F905B999
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
Manifest number: 1432
Signing time: Sun 19 Oct 2025 19:01:57 +0000
Manifest this update: Sun 19 Oct 2025 19:01:57 +0000
Manifest next update: Mon 20 Oct 2025 19:01:57 +0000
Files and hashes: 1: I3ikqcUjJahZIICboaTYniHALxc.crl (hash: pLQpQXryJC1wKtDEpd7/cpk8IAsZhQAgrM71dwyhuFY=)
2: LWXmlZUU3ecfqvwZHXpe4N13PwE.roa (hash: 4NYVwWGAs7YF0X626zcPKU0/2BhITxR5hdojEVCb7vQ=)
3: Sb-J4R6jgDy1hu0trOifGY0aUIY.roa (hash: BnRnuIbBZBHwGOy/+XFTLzwpti+5vGhUFRVEfpqfups=)
4: XNLU8qoxsRXpQnmwz4ctSe-cqyE.roa (hash: JQ5L08jadmyYilDYeIqvPylZ8SNDZ1MGMwYpTLmwoLo=)
5: caXYCCXqjYg5FcmsNZB3ePKReDk.roa (hash: XSzupsyXsQ8GmhQZJGGSHfiNeG8fCN+9mFDFmlJ4Bu4=)
6: gnOWx6TZJqqJDVFgIEMBOXAqJm4.roa (hash: fy9tgSe6kfwMDX9Ibp9s7/6EtOy/O5uDNSQU1PskuXs=)
7: pCwDdjVqKehtW8BEUKXN0O7wEnk.roa (hash: 9s0GASAbpwgJKOxbp75/GwEb4yuJGmhv0RUIKaWppDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:8e:4c:d1:d5:fb:69:3e:77:15:b6:f9:05:b9:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: Oct 19 19:01:57 2025 GMT
Not After : Oct 20 19:01:57 2025 GMT
Subject: CN=621fe7e75095497f9832c236cb33ee42f96a96a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f2:25:fe:e7:63:81:bc:74:b6:cb:bd:55:45:
d3:a4:42:83:00:f9:28:28:19:ec:a4:8a:c2:c7:45:
6f:bb:4a:98:b4:e3:c3:ea:46:f3:cc:8a:08:da:af:
1b:fd:ce:28:23:29:55:26:5f:22:28:b0:11:d3:16:
30:61:84:5e:9e:ea:fd:16:88:e8:c1:c3:04:2f:ff:
0e:43:d4:e9:dc:4d:ee:57:0d:cc:45:e3:73:88:ea:
ea:f6:86:88:71:2d:01:3c:0b:98:9e:a6:3c:e8:e9:
4d:4c:ee:d3:3d:1b:60:ef:5c:72:81:89:55:18:6e:
f1:d3:ad:0d:e7:78:41:b7:01:d9:66:72:19:9c:cb:
b2:ff:e9:6c:d7:57:40:84:f2:c0:96:9d:61:e1:53:
5e:59:af:af:64:de:32:b9:c2:16:dd:f5:2a:9a:03:
ce:d3:46:a1:ac:1e:65:bc:01:41:2e:85:f1:3b:e1:
e9:51:68:52:3a:7e:eb:5d:45:84:96:42:19:7e:e6:
20:d4:d9:c6:5a:bf:41:26:87:64:c2:bf:b7:7f:2f:
b3:7c:bb:9c:bf:f0:19:3a:b1:94:5b:59:3a:9a:c3:
ba:1b:88:a9:3b:c1:35:5c:45:6f:69:c7:40:a1:56:
e2:43:9c:bf:05:8b:43:29:58:da:15:32:b6:69:d7:
6f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1F:E7:E7:50:95:49:7F:98:32:C2:36:CB:33:EE:42:F9:6A:96:A7
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:b0:a4:66:5d:83:5b:16:16:0d:d0:2c:51:f6:12:1f:ee:88:
3c:7e:65:be:29:6f:8c:2a:a4:8f:ae:df:0e:a6:96:54:11:4b:
25:7a:1c:c7:3e:ce:0f:c9:a4:0c:e5:8a:7a:9e:d2:4f:13:25:
00:e2:ba:09:0c:95:93:af:eb:27:1a:26:b1:90:01:ce:10:61:
3e:ed:8d:56:db:38:0d:8f:43:d2:be:f1:37:92:84:74:f6:ab:
72:c8:8a:05:90:80:68:33:32:fd:20:16:de:9d:4e:21:fe:2f:
7f:6d:11:aa:23:d9:2a:6b:b5:2f:1c:52:ba:23:b7:41:c1:d2:
7f:44:5b:6b:34:de:79:21:c5:66:a1:d0:67:cd:80:1e:de:b0:
66:57:a4:03:c4:71:9f:8a:97:2b:54:dc:28:3a:49:ae:e9:15:
b7:65:6a:b0:db:86:2a:4d:69:eb:c2:c3:b9:2a:55:d5:64:dd:
03:31:37:60:7c:69:1d:77:da:63:c4:d1:1a:e0:75:16:66:eb:
fa:bc:bb:0b:6d:18:ef:c2:96:c5:62:fe:04:ce:f4:84:63:7b:
c9:64:e0:76:a6:1c:13:41:c1:2a:e6:02:65:b2:f3:ff:ec:a5:
0b:37:b8:15:d3:7f:da:a3:06:ea:9a:18:c0:52:1c:fd:4d:53:
ba:10:1f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:54:13 2025 by rpki-client