Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
File: iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft (raw, json)
Hash identifier: 2rKYj1GvTHTrsIE10KbmltIUsDKXzNaa1ev3rLuNnWQ=
Subject key identifier: 43:67:F7:E9:E5:61:B8:51:78:B0:6A:13:0F:8F:73:DE:C6:58:6C:BE
Authority key identifier: 89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
Certificate issuer: /CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Certificate serial: 0199FBEB04704F471EADF8CB93CE78C3C8D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 10:01:47 +0000
Manifest this update: Sun 19 Oct 2025 10:01:47 +0000
Manifest next update: Mon 20 Oct 2025 10:01:47 +0000
Files and hashes: 1: iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl (hash: INAoYD9Wh7W+527NKfIZGuA5+IiDrC9J4S545+qLCLQ=)
2: vZncObou1n1Gou3XB_i7Ru4V5WA.roa (hash: iik1zhTFoCIgqbBLWbxX8UR2ffHIMvhG03bvL/Xp/YU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:04:70:4f:47:1e:ad:f8:cb:93:ce:78:c3:c8:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Validity
Not Before: Oct 19 10:01:47 2025 GMT
Not After : Oct 20 10:01:47 2025 GMT
Subject: CN=4367f7e9e561b85178b06a130f8f73dec6586cbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b6:e8:bb:6c:77:11:85:e1:72:fe:b4:cc:ac:
77:e0:ac:9c:85:4f:e0:ad:db:d1:5c:92:94:da:ec:
2e:ad:4d:c1:14:93:8d:07:96:e3:0c:6a:1e:ce:ad:
bc:ac:ca:65:0d:e5:7e:49:c1:95:a3:9f:4e:5e:fd:
db:96:e4:31:7a:dd:90:e2:24:69:5c:e9:23:f4:64:
3f:e4:fd:ff:f2:9c:33:0b:ee:db:30:de:c1:2e:92:
f1:6f:8c:3a:6e:b1:a6:9c:fc:d6:29:0c:80:cb:7b:
b6:55:cd:ce:fa:90:21:e6:62:78:66:3c:6e:f7:cb:
6e:1f:7e:8f:ea:af:9a:e8:25:cd:59:b2:a2:e0:4e:
2b:4c:f9:de:f2:f5:52:16:88:29:53:66:4f:4d:9a:
3d:60:60:13:05:10:ad:b9:8d:d9:62:87:9b:f5:40:
25:79:42:b4:c4:a0:cf:56:ea:ec:72:51:a2:41:c4:
9e:9f:34:69:4d:e4:e9:ed:06:fd:a9:86:a7:09:74:
24:ea:0c:ce:ed:4c:13:6e:ad:d6:1e:99:93:42:19:
86:f0:b6:12:ec:57:39:d0:fd:63:73:8c:8c:86:10:
b6:1a:4c:5b:08:81:5c:80:be:b2:a5:3a:dd:cc:66:
f2:cc:77:be:01:3e:7d:d3:17:d2:61:1c:af:14:29:
d3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:67:F7:E9:E5:61:B8:51:78:B0:6A:13:0F:8F:73:DE:C6:58:6C:BE
X509v3 Authority Key Identifier:
keyid:89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:de:d4:54:16:4a:b5:a9:b3:78:a6:08:ca:fd:5e:6d:40:1c:
1a:9c:9d:0f:a1:02:4c:2f:74:22:15:32:b5:1a:a3:06:bf:94:
70:b2:91:6f:5f:9f:f4:c7:f5:03:a6:0a:f7:4b:89:46:a6:87:
49:c0:a8:7d:4d:34:c4:aa:70:ad:de:09:a3:ee:fa:0d:e8:e0:
4e:4c:41:45:5b:f6:c4:a8:6e:5e:03:06:60:73:5b:36:8b:3b:
9a:2c:74:ad:8d:2e:db:2d:c8:9e:02:55:7a:71:27:75:63:85:
13:41:cc:8e:27:c4:c8:88:97:68:25:38:df:d0:de:0f:fb:9c:
48:a4:d7:07:cb:03:2f:bb:d4:1e:08:cf:e0:fa:83:73:8d:0c:
d6:d1:f7:09:e9:0f:b9:61:b3:2f:98:2d:7a:a7:07:9a:08:36:
9a:59:7f:40:32:db:39:2e:ad:cb:52:29:c0:36:84:3c:03:2f:
c5:08:0b:1f:dc:a0:7c:2f:39:f2:d3:db:7f:88:de:83:8f:66:
27:cd:16:40:30:c4:15:5d:41:5a:82:9a:80:a6:71:a5:ab:ef:
db:c2:59:39:eb:37:b3:4a:cd:a1:a5:63:19:26:c5:8d:da:12:
b2:f2:0f:9c:4e:59:d8:ba:00:3a:82:6f:f9:87:43:f3:08:6b:
94:bb:3a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:11:25 2025 by rpki-client