Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
File: iZJ3h0cqfL3Zff209Tt077O7vFs.mft (raw, json)
Hash identifier: R7oQaGyKcZNGlXTnhFh3j5xaR5IV/LVC3MFPw/Bnq6M=
Subject key identifier: 52:E7:22:C6:11:B0:21:CC:21:EF:E7:64:AC:5B:AB:B7:96:51:33:FA
Authority key identifier: 89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
Certificate issuer: /CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Certificate serial: 0199FD3438D014641322117F5FB22932866E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
Manifest number: 1213
Signing time: Sun 19 Oct 2025 16:01:21 +0000
Manifest this update: Sun 19 Oct 2025 16:01:21 +0000
Manifest next update: Mon 20 Oct 2025 16:01:21 +0000
Files and hashes: 1: iZJ3h0cqfL3Zff209Tt077O7vFs.crl (hash: A4/bZM0qzd+pB8cZVsXeV8rwANf8rDVjT/uYZtE/2uY=)
2: k_0z9yImMkkx7Q7hZaLKVoTRO74.roa (hash: bY1XGYbefYoSOVyj59OiTxL9N9Rlyyr/sbaOhEye3EE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:38:d0:14:64:13:22:11:7f:5f:b2:29:32:86:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Validity
Not Before: Oct 19 16:01:21 2025 GMT
Not After : Oct 20 16:01:21 2025 GMT
Subject: CN=52e722c611b021cc21efe764ac5babb7965133fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0d:11:8f:30:fb:72:3f:21:dc:85:96:ac:53:
7f:e9:2f:31:2f:61:fb:0a:ff:67:99:7d:36:5f:f6:
80:6c:c8:ab:eb:3b:18:b0:75:34:b4:cc:58:e6:bd:
d6:a4:7f:b3:af:4c:10:c7:7e:a6:69:c4:57:2b:0c:
d2:d6:4e:c8:c1:a2:59:89:7c:37:78:2d:88:5d:4a:
7e:5d:d8:1e:3d:96:9c:ed:20:10:76:f4:a4:23:52:
32:b6:8a:7e:bc:8f:f2:44:75:71:21:20:3e:1a:09:
d5:66:b7:f1:c6:36:15:03:0c:9a:4b:53:5c:06:29:
22:f6:c9:b0:ec:8c:19:cb:66:47:23:ae:6b:b3:35:
29:e2:66:0c:da:c1:aa:7d:70:03:cc:d1:15:81:1d:
96:24:67:5c:b6:ea:6b:d7:94:00:fb:cc:62:be:47:
5f:94:48:59:7b:57:e7:a2:a1:61:2b:1e:69:7b:25:
80:aa:65:db:95:0e:e6:4b:51:22:f6:f6:a5:d1:a1:
79:78:1b:2e:32:e8:3c:c5:20:be:2b:c2:20:7a:65:
4d:f0:8f:22:18:4b:5f:52:c6:65:02:c7:32:a3:d4:
9c:7e:bd:db:ac:8b:7e:1a:f9:af:9e:91:82:1e:36:
dc:66:ea:48:05:4e:e3:50:94:d5:c1:a1:81:98:8d:
81:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E7:22:C6:11:B0:21:CC:21:EF:E7:64:AC:5B:AB:B7:96:51:33:FA
X509v3 Authority Key Identifier:
keyid:89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:41:d5:49:fc:a9:e0:d3:3d:a7:30:35:68:9f:27:79:96:ca:
e0:86:ed:93:78:77:30:0c:f9:39:cc:b2:ca:01:30:ac:e1:5e:
8c:5e:d2:2c:e4:60:0c:81:e2:b3:56:0b:78:16:70:c5:d7:78:
7c:f6:73:b8:ba:7e:80:fe:73:1f:0f:a0:6c:d3:b6:70:d4:a2:
bc:05:3f:72:fa:3a:21:32:4d:77:c2:48:b5:40:cd:05:93:4c:
f2:78:3a:ed:a3:a4:35:e2:8f:49:86:53:a0:89:fe:f1:c5:23:
6f:67:03:ed:28:7a:7b:fe:db:ef:e9:02:52:4c:1c:bd:ae:36:
5a:8a:ce:ca:dd:f8:cb:56:2c:11:02:99:84:d7:13:ae:a8:48:
84:bc:98:37:8e:54:29:92:31:3d:71:ba:d8:2c:5e:1f:fa:22:
37:34:6b:37:77:0f:f1:98:f9:c8:c1:84:fb:2a:0b:97:20:7c:
d1:29:7b:b4:1b:86:8a:50:0b:c8:78:f7:54:ca:f6:39:4a:84:
72:5f:87:fd:e6:ee:31:4f:22:e9:d8:c4:18:7e:32:a4:e7:1c:
63:ec:24:ef:bd:b7:5b:34:cf:f6:7e:6c:4a:31:18:5d:4d:7d:
d2:0a:da:75:ea:df:b0:2e:fe:f2:f1:33:90:a9:b6:3b:0e:fd:
4d:bb:7f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:36:34 2025 by rpki-client