Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft
File: I9hEjFy5A5jkwoXOycD0dmrJMd8.mft (raw, json)
Hash identifier: oQxmZsv0Qk5vYIw/THWVNZGY71Mv+2vPRSmu9zEreq0=
Subject key identifier: A1:29:22:D0:D1:1F:3C:AF:30:BB:22:FC:7C:6B:79:23:5F:DB:CD:71
Authority key identifier: 23:D8:44:8C:5C:B9:03:98:E4:C2:85:CE:C9:C0:F4:76:6A:C9:31:DF
Certificate issuer: /CN=23d8448c5cb90398e4c285cec9c0f4766ac931df
Certificate serial: 019A006C34A2032E7B509DCC52D641CD6EF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft
Manifest number: 16E5
Signing time: Mon 20 Oct 2025 07:01:22 +0000
Manifest this update: Mon 20 Oct 2025 07:01:22 +0000
Manifest next update: Tue 21 Oct 2025 07:01:22 +0000
Files and hashes: 1: 0R9hBHck9goXLckWs83vfzxcFiw.roa (hash: obv3yvxGMmGg4JBfXp95o/8uj2ocziHcF4Wd0qYKBC0=)
2: 2ZLinOVEwJGKFicgX--T-MLOzJk.roa (hash: c5tPFVJAjAdrD/biJVfWeRiWObKwMs1MmzB2QE9giIE=)
3: 9unXgezNMxzwNg4bzifOYAuCs0o.roa (hash: g4XwuMrRwxeGeiZBFLLb9s8Q1VZBOHGp5ebHoGbs+mc=)
4: I9hEjFy5A5jkwoXOycD0dmrJMd8.crl (hash: fqcd+Q3k6dsHxxeGKtfaSUr8lbe7JFNIKRdUYbEbh0A=)
5: dK0aI2R_s129Y-75FIrpBYL1yE8.roa (hash: R66OS8lUtMZTTbo9eo/xMi56yXXva1T37X0KuifJS+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:34:a2:03:2e:7b:50:9d:cc:52:d6:41:cd:6e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d8448c5cb90398e4c285cec9c0f4766ac931df
Validity
Not Before: Oct 20 07:01:22 2025 GMT
Not After : Oct 21 07:01:22 2025 GMT
Subject: CN=a12922d0d11f3caf30bb22fc7c6b79235fdbcd71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d8:1b:5a:03:77:98:0f:b5:19:22:1d:5c:ac:
31:93:c9:46:24:16:43:6b:46:a6:b8:f6:82:e6:2b:
8a:5a:30:e7:2f:5b:65:7a:e8:a7:be:1e:31:b2:71:
cc:1e:e2:7a:be:5d:d4:be:9f:02:bc:07:d9:c7:c0:
dc:06:81:f0:1e:29:65:91:6b:8b:87:da:b5:8e:b9:
66:74:a7:0c:93:11:ab:eb:97:25:8b:a5:36:ad:68:
7b:43:e7:21:c9:00:d4:d9:2b:69:97:22:7d:50:df:
ab:c3:b2:21:03:e2:fe:ce:48:fc:85:4d:b1:ab:de:
da:45:e8:ca:d9:58:3b:24:91:46:df:52:5f:7e:9c:
2f:91:30:1d:2a:82:e5:cb:64:64:5b:21:23:b3:52:
2d:7b:84:b6:67:bb:d7:d2:cf:a9:f5:c4:c2:07:97:
74:c6:7a:88:60:e4:41:0f:df:46:73:00:73:8c:4e:
70:03:a4:1b:29:70:df:35:fb:dd:e9:36:ef:6c:b6:
ca:4c:87:50:29:50:08:2b:ad:a6:ce:d9:09:10:4a:
02:89:22:27:9f:c4:f6:a6:ef:2f:be:38:4b:d3:39:
95:b9:e1:bd:de:ce:c7:bd:24:f9:0d:b1:e1:f5:6c:
25:df:7a:78:9b:30:eb:38:96:b6:4b:ee:28:bd:0a:
ff:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:29:22:D0:D1:1F:3C:AF:30:BB:22:FC:7C:6B:79:23:5F:DB:CD:71
X509v3 Authority Key Identifier:
keyid:23:D8:44:8C:5C:B9:03:98:E4:C2:85:CE:C9:C0:F4:76:6A:C9:31:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9hEjFy5A5jkwoXOycD0dmrJMd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f4a80d-f5f7-4522-b9b5-f772a0139016/1/I9hEjFy5A5jkwoXOycD0dmrJMd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:0e:f9:b4:8b:89:97:58:8d:67:2b:71:bd:df:d2:8d:15:3a:
ab:dd:15:cd:61:95:bb:37:65:e8:98:94:71:55:a8:97:ca:4f:
33:3b:66:8b:80:14:1c:f9:ec:a7:1b:0b:f5:ba:f2:19:4e:10:
87:6d:3b:b6:f7:c9:59:c9:ea:7e:8f:f2:d5:3e:d2:fe:72:38:
2e:1c:ed:66:6a:2c:12:58:aa:7c:96:9e:a1:de:71:7c:24:6a:
2a:ef:57:c1:9e:45:50:c6:4f:21:a0:1d:97:aa:91:1e:c4:21:
a7:31:0c:67:b0:8a:fe:b3:96:93:98:78:29:fb:a4:bd:e4:17:
0a:ed:10:a7:75:c7:a9:60:e7:37:81:15:f9:59:ed:8c:59:7a:
51:b7:e4:07:66:44:e8:11:58:de:71:c4:9f:89:84:e2:05:2c:
af:e8:8e:d1:2a:e6:b1:ee:c9:16:a4:85:c5:46:66:8d:d8:d2:
a1:96:e5:6e:59:eb:46:bc:1b:bb:18:bb:d7:c6:ba:10:eb:ff:
b6:0b:de:fd:c0:13:e7:ac:f4:ae:c3:85:ea:7c:83:6c:0e:b3:
33:d6:74:8d:74:33:ce:1f:0c:1c:82:ce:10:ec:2c:4f:9e:10:
1c:56:05:91:44:24:56:bd:87:0e:14:c0:da:7f:99:90:c7:46:
69:92:d4:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:49:39 2025 by rpki-client