Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
File: IkI4OfIQchYnZBrmtszqzujZBns.mft (raw, json)
Hash identifier: Dm+q6LOMxtpZrRQqRF3ao+YVLwIo3zj7C61UYP7nzr8=
Subject key identifier: 39:AF:1A:42:CE:FD:7A:59:F6:1C:C9:20:9E:87:5C:9E:33:A8:73:27
Authority key identifier: 22:42:38:39:F2:10:72:16:27:64:1A:E6:B6:CC:EA:CE:E8:D9:06:7B
Certificate issuer: /CN=22423839f210721627641ae6b6cceacee8d9067b
Certificate serial: 0199FC8F1EF80F609FBE72AFFECB2C1C44F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
Manifest number: 0C25
Signing time: Sun 19 Oct 2025 13:01:01 +0000
Manifest this update: Sun 19 Oct 2025 13:01:01 +0000
Manifest next update: Mon 20 Oct 2025 13:01:01 +0000
Files and hashes: 1: IkI4OfIQchYnZBrmtszqzujZBns.crl (hash: XwylKi3WKu3wAOXJjxULZ2Nv59XBY2fG11Evgbb+pQg=)
2: Uyg4_Ozw9Ipj9uu784y9KAfEr7A.roa (hash: PWFMCOTkx94rFl6c7QVt2h1VgycYcWOsnSvIAK4MJo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:1e:f8:0f:60:9f:be:72:af:fe:cb:2c:1c:44:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22423839f210721627641ae6b6cceacee8d9067b
Validity
Not Before: Oct 19 13:01:01 2025 GMT
Not After : Oct 20 13:01:01 2025 GMT
Subject: CN=39af1a42cefd7a59f61cc9209e875c9e33a87327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a5:54:58:9d:11:fb:e0:db:f0:25:ef:87:8b:
dc:b8:ba:1a:17:84:11:0a:bd:69:af:46:b2:78:27:
a4:da:99:b4:08:ef:0d:54:a0:72:f6:df:00:00:38:
e4:0b:4b:87:fd:08:4a:7d:5b:d6:3b:c8:98:f5:b7:
ce:d6:94:ec:2f:d7:91:66:e0:3d:19:d3:95:b2:61:
f0:d4:b3:02:49:b9:5b:0f:e5:bb:91:8d:0f:ab:dd:
0b:57:de:bb:84:06:ab:9c:e3:21:4f:8c:cc:ec:92:
96:52:cf:86:ad:d2:ca:df:6d:51:e8:45:da:4e:1d:
c5:01:dc:49:ae:25:d7:7d:40:0b:d1:07:90:c6:5a:
3a:1e:29:dc:f7:58:10:47:2d:13:53:a9:0f:70:92:
0f:90:55:1a:ea:e4:74:2b:d3:e6:60:1f:a8:be:ab:
ec:0e:b8:eb:ec:b3:40:e0:1e:34:95:71:ef:3e:b6:
4e:2d:cd:78:a2:e4:8b:c3:fb:51:c0:9a:fc:5e:71:
38:7b:33:f9:fa:2c:fe:ce:5c:a5:b9:d1:0c:91:66:
a3:69:62:99:18:e9:85:ed:56:0b:1b:2a:90:14:38:
27:6a:c1:95:f3:3e:d2:1e:89:89:23:92:44:f2:af:
a9:53:4b:2f:27:e3:e4:76:a9:8e:25:cc:fb:e1:48:
af:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:AF:1A:42:CE:FD:7A:59:F6:1C:C9:20:9E:87:5C:9E:33:A8:73:27
X509v3 Authority Key Identifier:
keyid:22:42:38:39:F2:10:72:16:27:64:1A:E6:B6:CC:EA:CE:E8:D9:06:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:e8:7b:77:9c:24:64:d4:56:4c:83:c6:a9:64:f4:bb:a7:e5:
55:a5:f7:3d:c1:21:f1:6e:63:70:47:3e:13:6f:09:de:c9:b9:
cf:5d:41:9a:47:d5:ad:fe:f9:3f:2e:b5:e9:ca:e4:81:9c:76:
ba:44:a7:da:ea:3d:ba:7f:ea:aa:1c:b6:3b:a3:a8:e3:1e:d7:
c0:6a:11:9a:03:da:fd:18:05:0b:f2:01:c8:8b:31:3a:9b:88:
cc:f1:07:3a:91:6a:41:64:66:c3:ec:43:0a:f8:54:ec:ad:1b:
6c:98:75:41:49:89:2d:9c:77:6d:3c:aa:42:10:6b:38:5e:28:
a5:e9:d3:f9:91:13:a6:96:e4:f8:1f:4e:d9:dd:54:92:07:40:
63:8a:79:56:c5:ce:bb:6c:0c:12:b8:7b:a5:d5:a8:a0:4b:c3:
6a:21:09:c0:db:b8:24:96:9a:a5:56:fc:cb:00:aa:6a:4d:1a:
87:85:fe:49:44:80:42:0d:99:c7:13:34:9d:6b:b1:c9:2a:32:
9d:68:7d:e8:6d:3d:0e:60:4d:3c:16:f3:de:23:60:e8:6e:a4:
fc:f9:56:14:ab:e6:59:aa:2a:e4:7f:74:35:04:4a:89:b9:09:
1a:23:02:40:e6:e0:c3:1c:34:48:b5:ed:ed:96:0f:c3:81:a4:
7a:44:67:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:37:03 2025 by rpki-client