Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
File: IT2HNcFEzxJWWEO2nrQKTRowGqU.mft (raw, json)
Hash identifier: bML7K0NOaTi/URVP3MTGBF76hdvuQ7sRlKzbRiwHJDk=
Subject key identifier: 90:F9:06:15:86:71:59:3A:F2:14:C6:7F:5B:DF:BF:BF:A5:66:21:E6
Authority key identifier: 21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
Certificate issuer: /CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Certificate serial: 0199FC8F8C757C8A1F6B51663F339989B926
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
Manifest number: 1053
Signing time: Sun 19 Oct 2025 13:01:29 +0000
Manifest this update: Sun 19 Oct 2025 13:01:29 +0000
Manifest next update: Mon 20 Oct 2025 13:01:29 +0000
Files and hashes: 1: IT2HNcFEzxJWWEO2nrQKTRowGqU.crl (hash: SffUKEsOqu2HmCD0YV1U+cNfTpVnDsCCdDaF84tvu0g=)
2: oYl1-NMXXzEXtTi3L5l80mvOKew.roa (hash: HGKJcqJks4x1KvA9MPs1IeJtaKWdWbE52yFjhD/1Aak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:8c:75:7c:8a:1f:6b:51:66:3f:33:99:89:b9:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=213d8735c144cf12565843b69eb40a4d1a301aa5
Validity
Not Before: Oct 19 13:01:29 2025 GMT
Not After : Oct 20 13:01:29 2025 GMT
Subject: CN=90f906158671593af214c67f5bdfbfbfa56621e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c6:44:1d:ca:97:b7:da:2d:07:5b:7f:4b:86:
70:1b:91:cd:07:4f:41:e7:2b:ee:44:50:f3:4f:54:
41:de:b5:7e:a5:ed:89:f3:e9:00:38:14:41:e5:8f:
c6:79:d0:a1:57:41:b0:ec:a5:c1:86:f1:ad:14:ff:
a6:ad:e7:c7:d9:44:3e:4a:69:c2:7f:0e:9f:bf:63:
2f:a1:55:09:1d:4e:5b:47:98:6c:5c:66:b3:1c:87:
75:c9:42:2f:b5:aa:7c:a6:f1:1f:2b:3f:0d:8d:d5:
c9:27:94:bd:fa:17:a7:98:6f:db:09:37:b1:28:6b:
3a:65:25:8a:7f:29:79:24:d4:8c:3b:f2:ad:72:2f:
b3:a4:74:c1:e0:64:df:56:13:ac:d8:49:36:b6:0f:
01:9d:05:d4:2b:c7:a1:57:27:6d:86:78:30:91:c5:
b7:96:df:ac:c4:f8:5c:f9:16:84:ca:fc:d4:07:65:
7f:a3:d6:ec:37:12:7d:2b:a4:8a:53:d9:0b:bb:21:
3a:34:c9:fe:01:e0:d3:57:d7:b8:58:0f:74:a4:28:
e9:f8:e9:25:c3:0d:92:91:df:8b:61:79:8e:7c:74:
5c:f5:da:dc:2f:44:66:c5:cb:ce:f1:6f:b4:0b:22:
0c:32:be:3e:8a:02:da:f2:2e:02:0b:9d:1c:30:9c:
64:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F9:06:15:86:71:59:3A:F2:14:C6:7F:5B:DF:BF:BF:A5:66:21:E6
X509v3 Authority Key Identifier:
keyid:21:3D:87:35:C1:44:CF:12:56:58:43:B6:9E:B4:0A:4D:1A:30:1A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT2HNcFEzxJWWEO2nrQKTRowGqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b043af-b492-4b5b-a250-301433ebe436/1/IT2HNcFEzxJWWEO2nrQKTRowGqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:dc:b6:85:d6:b7:b2:c4:c4:7a:5a:9f:13:de:57:a6:55:5d:
21:db:97:69:28:6d:7f:92:af:a0:6d:d7:0a:0c:f0:e2:2e:e5:
e5:d1:d8:0c:f2:da:dc:40:7f:63:d9:f0:0e:17:71:04:8c:75:
c1:ba:a5:37:34:67:67:e9:e7:dd:82:36:d2:08:c4:d3:ef:cd:
66:e2:ed:33:a2:67:c6:1a:3b:35:38:a6:3c:a2:98:f1:f1:bf:
58:94:72:41:a0:90:07:72:fc:39:46:3c:d8:49:10:3d:ed:43:
bd:b1:93:2b:41:cf:af:ed:d9:9a:0a:9a:b3:0d:64:8d:50:71:
96:4e:cf:3d:8b:bd:87:16:a1:11:1c:e9:c6:77:16:9a:87:66:
22:8d:48:41:c4:39:55:fa:7f:66:58:12:11:9a:29:7d:d3:2b:
d6:78:f5:6c:22:71:28:bb:42:07:59:7f:61:1d:dd:76:e6:f8:
3d:f7:df:d9:76:9e:dc:e9:af:8e:1b:52:0f:03:1d:b0:ce:f0:
08:e1:ac:1e:da:dd:d3:74:c1:fb:62:9d:37:bd:ac:f4:18:d0:
77:43:fc:06:01:05:7b:41:71:9a:5e:4b:06:f5:ba:33:77:d8:
65:83:7b:8a:24:ee:39:1e:77:b2:e0:43:29:34:78:36:0a:11:
fa:46:d7:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:32:00 2025 by rpki-client