Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
File: ICNzDgbEv7_6ypBeUxJldCwXirQ.mft (raw, json)
Hash identifier: bJhpj5LCN3ZoH55N1dhlJvc07F8A2xkv+l/wpVtWTn4=
Subject key identifier: EA:32:C3:06:00:5D:A6:98:32:BB:95:B8:73:02:35:A3:6A:C8:71:F1
Authority key identifier: 20:23:73:0E:06:C4:BF:BF:FA:CA:90:5E:53:12:65:74:2C:17:8A:B4
Certificate issuer: /CN=2023730e06c4bfbffaca905e531265742c178ab4
Certificate serial: 0199FBEA9251125A86875776F8CDC93705C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
Manifest number: 10B6
Signing time: Sun 19 Oct 2025 10:01:18 +0000
Manifest this update: Sun 19 Oct 2025 10:01:18 +0000
Manifest next update: Mon 20 Oct 2025 10:01:18 +0000
Files and hashes: 1: ICNzDgbEv7_6ypBeUxJldCwXirQ.crl (hash: Z/NarNaeUvWP5D8wett7SaJ49iFCGXo0iyOBIE/BWEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:92:51:12:5a:86:87:57:76:f8:cd:c9:37:05:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2023730e06c4bfbffaca905e531265742c178ab4
Validity
Not Before: Oct 19 10:01:18 2025 GMT
Not After : Oct 20 10:01:18 2025 GMT
Subject: CN=ea32c306005da69832bb95b8730235a36ac871f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:35:b6:77:4e:63:15:f0:7d:79:b7:e1:91:c3:
8a:6d:42:09:7c:e7:30:8e:10:1c:87:f9:ac:52:c2:
d8:da:57:8a:f5:8e:ed:09:06:f8:50:72:8c:86:78:
81:ed:e9:5f:df:8f:a7:d4:e9:e0:71:7d:67:83:d4:
5c:4a:ae:21:06:fd:cf:7d:1e:0c:36:6f:f3:eb:af:
1b:4c:04:4d:58:20:2b:79:5a:bd:f2:7e:38:00:40:
fa:5c:af:b3:03:55:8f:be:80:94:b1:00:9c:f3:33:
ea:28:cf:7a:01:a5:0e:ac:58:06:8b:ea:6b:48:f3:
85:1a:bd:db:00:5a:6f:be:67:d8:f2:7a:89:b1:d6:
fb:d0:e2:b5:24:b8:79:dc:b4:85:cd:39:99:20:4c:
ec:fd:f2:bd:72:eb:5d:69:93:70:fa:ed:ec:b4:2b:
c0:e0:cd:05:69:f2:29:39:26:f5:cb:5d:c2:14:ac:
5e:2a:88:36:3e:6d:34:25:ba:9a:fb:86:df:bc:61:
e5:9d:4c:7c:2c:d8:27:4d:81:69:8e:8e:5e:14:00:
41:30:06:b3:f0:ea:2b:a9:1b:a9:0e:52:21:23:a4:
bb:c3:3c:34:a6:62:21:1d:00:0a:43:0e:5c:76:39:
cc:8d:2b:8b:55:24:15:66:83:7d:9c:99:7a:54:d4:
95:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:32:C3:06:00:5D:A6:98:32:BB:95:B8:73:02:35:A3:6A:C8:71:F1
X509v3 Authority Key Identifier:
keyid:20:23:73:0E:06:C4:BF:BF:FA:CA:90:5E:53:12:65:74:2C:17:8A:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICNzDgbEv7_6ypBeUxJldCwXirQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/45d7c1-c4f0-4835-b466-b0335ba3e0c2/1/ICNzDgbEv7_6ypBeUxJldCwXirQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:9a:70:01:8d:da:fc:6a:89:31:33:4f:63:81:94:4c:14:ea:
e9:57:59:04:eb:2a:ab:ca:17:00:86:f2:81:32:7f:38:b9:d5:
15:4a:f5:12:5f:73:3f:28:b0:7e:4e:4b:72:12:0c:76:29:b7:
e0:5a:da:94:cd:65:e0:92:07:6e:ef:88:7f:14:3d:80:df:19:
70:18:87:ab:bc:5a:af:c2:fe:80:9a:0f:cc:d1:eb:5b:0b:c0:
6e:fb:c8:76:78:73:90:04:4a:5e:c6:70:a7:ba:d9:79:7d:6e:
37:09:ee:76:08:08:08:6a:45:ab:d9:09:d1:0f:9d:69:79:76:
1f:c2:94:1d:fe:92:de:66:d2:cc:46:eb:c2:2c:14:a0:f4:07:
95:69:99:37:ed:8a:7e:be:9c:75:54:05:74:b5:1c:7e:96:18:
92:03:60:c5:e1:c2:53:83:ed:40:d9:fb:22:2d:b4:d5:6e:f2:
aa:bd:6b:8f:0f:47:95:6a:18:af:23:9e:56:78:e6:08:41:5c:
3f:b1:48:8c:18:98:ed:1a:1b:67:bb:a4:9e:3a:21:7e:0e:ce:
f6:14:c8:c6:18:81:ae:5f:9f:e4:ad:91:c5:08:1e:7f:3b:78:
e2:8b:21:f2:6f:6b:fa:e3:27:22:d4:b9:db:4a:78:de:0c:4f:
38:0b:18:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:40:33 2025 by rpki-client