Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
File: iyH_rekwvR_S4XiM_0B9nTQTThc.mft (raw, json)
Hash identifier: BzOaV8X9ARabLkIFY6mAPqq7FpnMcynU7vN4RlBJDOo=
Subject key identifier: 24:A5:52:90:72:E9:3A:D4:F3:4D:BF:E8:39:67:DB:1F:BE:8D:D5:FD
Authority key identifier: 8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
Certificate issuer: /CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Certificate serial: 0199FDD9A5557139EDB2A5DCB05B25B03239
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
Manifest number: 1317
Signing time: Sun 19 Oct 2025 19:02:03 +0000
Manifest this update: Sun 19 Oct 2025 19:02:03 +0000
Manifest next update: Mon 20 Oct 2025 19:02:03 +0000
Files and hashes: 1: YR9oUfcPn7hi-EfIp0zPWNgdoLI.roa (hash: gZUlOd3rhYgj7y7iYiifqKrTqOs4vDy8o9fKugEnj2M=)
2: iyH_rekwvR_S4XiM_0B9nTQTThc.crl (hash: cQnMJtsF4Wx8xJFF6l5PvycYPhX/npq9RDrMdFWz5Zw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:a5:55:71:39:ed:b2:a5:dc:b0:5b:25:b0:32:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Validity
Not Before: Oct 19 19:02:03 2025 GMT
Not After : Oct 20 19:02:03 2025 GMT
Subject: CN=24a5529072e93ad4f34dbfe83967db1fbe8dd5fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6c:81:83:93:3d:f7:b1:5b:c5:ff:03:6c:2c:
a4:d5:d8:20:92:b0:2d:af:a2:cb:43:10:ed:07:db:
fe:b6:12:3d:2b:af:44:e7:ac:36:cb:a9:f1:2d:25:
fa:1d:33:b1:e2:b8:b1:f7:a1:cc:69:42:55:53:fe:
1d:34:d3:b0:a5:0c:e9:ef:f0:67:b6:c8:fd:09:c3:
23:5d:f4:eb:7a:fd:ee:84:7d:2f:61:ab:4d:6a:e7:
6f:aa:80:9a:c7:67:1a:89:46:db:b7:64:bd:67:45:
79:c0:7a:dd:17:5b:c5:77:e8:9c:78:7c:6d:49:f1:
9a:7c:3b:95:ea:60:c3:f5:29:4c:2b:18:2c:fc:b8:
ad:8c:b2:44:50:cd:8a:29:0c:d3:c9:57:25:74:45:
d9:77:25:61:d1:70:32:05:6c:e7:ce:f9:fb:f6:2f:
3b:39:76:3a:82:c1:7d:37:d8:51:59:78:2b:cb:d9:
75:99:b8:e4:94:3a:f9:df:cd:c9:69:9b:1d:d3:09:
98:dd:eb:58:0e:ad:0e:ab:a9:f4:13:9a:5a:3c:9d:
62:bc:c4:5e:09:45:33:77:a8:db:06:62:54:91:68:
55:5e:74:52:a7:bf:b8:27:ec:55:82:7c:54:d0:2e:
b5:52:be:7b:38:f3:fd:3f:bf:57:1b:dd:80:65:69:
2c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A5:52:90:72:E9:3A:D4:F3:4D:BF:E8:39:67:DB:1F:BE:8D:D5:FD
X509v3 Authority Key Identifier:
keyid:8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:67:ca:56:71:52:2a:c2:a5:33:62:9a:ad:e1:2e:3c:e0:9b:
ea:61:f5:d8:28:17:89:6d:d8:ec:50:14:2c:ca:95:85:f8:50:
41:54:87:fc:69:31:59:ce:03:83:b1:aa:bd:a4:e5:a3:20:7e:
27:f4:59:bd:1d:a2:a6:b6:f9:e5:0c:32:20:9f:fb:dc:e3:06:
4b:7e:ef:72:00:8d:e6:09:a3:f0:86:c0:86:a3:a7:b9:cc:0b:
85:30:05:0c:3d:a8:15:a5:7b:69:82:a9:89:71:a4:8b:41:ec:
dc:d9:f9:80:c9:e1:3d:0f:fe:de:6a:09:c9:df:c9:df:17:29:
84:d8:5c:b8:87:7b:be:47:3b:8e:cd:7f:f5:5d:a7:7f:33:5f:
35:96:dc:e8:f6:da:71:69:23:d0:94:7b:88:ea:fe:76:2c:8a:
fe:9d:4d:75:ec:51:1a:7c:d9:81:cc:bc:a9:8a:68:e8:56:74:
df:d0:65:cf:f2:8f:45:09:62:c8:1e:91:cd:58:97:91:ad:7c:
3c:2d:64:e4:e9:ee:be:08:fa:52:d8:45:1b:11:8b:bf:86:e4:
32:84:66:9c:f7:8c:a4:47:45:22:75:71:19:d3:d8:ae:35:54:
82:48:57:c7:65:18:5a:37:e6:e3:63:17:f1:85:ec:6d:21:2d:
99:f2:d2:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:39:54 2025 by rpki-client