Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
File: ilUqhuMbaeXVMg7egdNLsSikXO4.mft (raw, json)
Hash identifier: XipP0gMZdMq0g4W3Wk8e1gmopAFjM8zI3chy2pNRLnk=
Subject key identifier: 5B:07:33:91:C3:B9:48:76:94:24:F1:8C:79:4A:5B:73:6D:C2:C8:05
Authority key identifier: 8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE
Certificate issuer: /CN=8a552a86e31b69e5d5320ede81d34bb128a45cee
Certificate serial: 0199FCFD5ED836221DC169AEEF4CEB0A5BE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 15:01:27 +0000
Manifest this update: Sun 19 Oct 2025 15:01:27 +0000
Manifest next update: Mon 20 Oct 2025 15:01:27 +0000
Files and hashes: 1: gx1SCX17EN8yNFFOaZKqHyy38bg.roa (hash: y86l006aIRQbh6g6sMv1/V04L9sTmUKHfB0xrZAQk4Q=)
2: ilUqhuMbaeXVMg7egdNLsSikXO4.crl (hash: azdH2iUJp41UPgTax4nIbIvHd3L4JyMYb7W6beh8chk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:5e:d8:36:22:1d:c1:69:ae:ef:4c:eb:0a:5b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a552a86e31b69e5d5320ede81d34bb128a45cee
Validity
Not Before: Oct 19 15:01:27 2025 GMT
Not After : Oct 20 15:01:27 2025 GMT
Subject: CN=5b073391c3b948769424f18c794a5b736dc2c805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:50:84:9b:ca:ad:47:31:a3:64:5c:6c:d3:8e:
00:93:ad:1e:92:a6:25:36:63:80:5e:d0:34:c4:2a:
f1:d8:06:c4:40:48:85:9c:6c:f8:2a:40:d7:0a:0f:
99:7d:ae:fc:e8:69:d5:97:ac:bc:b4:87:22:91:80:
63:b6:6a:49:91:4a:73:a0:65:e1:42:2e:20:85:02:
9b:18:fb:36:b5:75:41:d1:23:be:f7:7b:63:6f:6c:
b6:ad:cd:d0:3d:30:55:83:80:81:78:3a:b4:45:5d:
53:6f:1f:1c:c9:89:35:05:39:9c:07:a5:f2:c4:1a:
35:14:ec:27:5b:9c:1a:1a:7c:ea:0d:32:50:c3:4e:
d6:69:b8:36:b9:34:69:07:7f:39:2a:49:0c:72:82:
5f:58:6f:4b:ae:60:ee:5e:ae:53:bd:89:36:d3:71:
26:3c:3d:5a:18:1e:db:5d:1c:ef:83:cc:33:ce:d7:
d3:8b:b5:36:51:10:4d:40:0d:d6:1d:2f:ee:17:69:
fc:58:7e:f0:b6:74:d3:39:7a:e0:d3:c3:0e:ea:e1:
fa:2e:80:56:e5:7a:2f:32:98:f8:46:ae:dc:e4:e5:
1c:bc:d0:f1:53:cc:56:bd:bd:b5:ed:97:82:7a:7c:
36:57:11:67:f9:1c:7c:bc:12:06:de:b1:36:8a:7a:
fb:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:07:33:91:C3:B9:48:76:94:24:F1:8C:79:4A:5B:73:6D:C2:C8:05
X509v3 Authority Key Identifier:
keyid:8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:f8:a0:f7:17:da:e9:a1:f9:01:c2:8a:93:19:38:38:b6:2f:
98:24:59:0e:87:18:ba:04:3c:34:6d:68:4d:fd:3d:c3:fe:d1:
5a:44:44:45:11:41:d3:2a:f4:2f:b4:f7:aa:25:f9:43:af:a7:
1b:0a:d8:c0:0a:aa:fc:7a:f4:a2:3d:50:fe:80:87:74:6f:6c:
ed:8e:b0:f6:94:77:1b:c7:cb:1c:9e:3e:a9:69:2f:54:3e:d0:
32:33:75:99:c2:80:ff:47:0b:45:c0:d0:a0:53:98:11:c9:e4:
2c:78:a4:8a:38:79:9c:54:c0:2a:b6:53:97:15:c1:47:69:25:
81:17:f7:35:e0:b6:07:98:ea:d5:f8:34:c8:43:e5:4f:5a:55:
e6:e9:14:49:7a:65:76:0f:d4:fd:ec:3b:e1:a6:90:c5:51:8f:
2a:12:44:18:ac:11:74:a3:60:40:5d:4a:66:77:8c:ec:bb:2c:
99:82:0c:e0:6b:77:f0:d6:54:e5:b3:e1:98:b2:9f:ae:18:cc:
4a:02:b1:0c:0f:2a:d3:2a:f2:d1:7f:92:57:51:01:b0:06:c8:
f0:96:13:72:4c:33:21:d4:2b:d8:7d:91:0d:ca:b1:45:5a:b2:
b3:be:10:2e:0f:c8:f0:ee:16:4f:cc:18:d4:1d:9a:d8:3e:ec:
a6:b5:01:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:43:44 2025 by rpki-client