Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
File: i70nOhRTYWFVEmDYSNdvomRGzUY.mft (raw, json)
Hash identifier: InfrTst2aPDxGg6rypMjKRxFVdrwCXNhU4e/O/SnXNY=
Subject key identifier: 66:D6:7D:EB:41:1A:88:9A:76:00:31:BC:88:C2:FE:21:5C:A9:03:7F
Authority key identifier: 8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
Certificate issuer: /CN=8bbd273a14536161551260d848d76fa26446cd46
Certificate serial: 0199FFFE77FE919FF2B0F231BB610CBAD8A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
Manifest number: 02BC
Signing time: Mon 20 Oct 2025 05:01:30 +0000
Manifest this update: Mon 20 Oct 2025 05:01:30 +0000
Manifest next update: Tue 21 Oct 2025 05:01:30 +0000
Files and hashes: 1: i70nOhRTYWFVEmDYSNdvomRGzUY.crl (hash: bLUQtcgmmd30duQBAgiAyrgG0gTeUO5ZMVtH495KgJY=)
2: iW3M8w8EnOfRKmq5UL0Jzk_nXrc.roa (hash: vQxUQ/gQ4diOyDGNSgt4mcIRpvqTprh0PY77byZ05KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:77:fe:91:9f:f2:b0:f2:31:bb:61:0c:ba:d8:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbd273a14536161551260d848d76fa26446cd46
Validity
Not Before: Oct 20 05:01:30 2025 GMT
Not After : Oct 21 05:01:30 2025 GMT
Subject: CN=66d67deb411a889a760031bc88c2fe215ca9037f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e0:13:c0:93:ab:14:b1:14:21:23:ea:ed:7c:
72:2b:f6:d8:4b:31:19:fe:51:81:6a:02:ac:4a:b2:
0f:f5:bd:a5:33:dc:8a:00:8b:9f:c1:14:54:95:1e:
58:01:69:e6:2f:ff:a3:3b:cc:f9:1e:22:00:76:c9:
24:e9:e8:9f:18:7e:02:7e:c9:c8:1d:ab:2c:ee:3b:
d6:ef:91:b4:4c:03:f9:c7:da:c3:fb:70:44:d8:3b:
85:9e:75:c0:f2:29:45:e3:d9:74:57:8a:4c:b6:10:
ba:44:3c:d1:b3:51:cc:0a:a0:58:f5:9d:21:4e:c1:
45:4f:47:61:63:c5:7b:bf:5e:e6:fb:f9:b1:33:0f:
d4:59:0d:09:7c:43:08:bb:20:66:e5:7a:3d:aa:bf:
28:62:44:d8:f6:a2:fd:a6:3e:92:6e:24:dc:ec:a5:
3e:4d:91:77:00:12:37:b2:43:82:cc:09:32:91:93:
e1:0f:41:25:63:81:13:23:d3:e7:1c:f3:89:be:c0:
2f:ed:a8:2e:fe:f0:2b:69:1b:2e:12:a9:35:35:87:
c9:54:af:02:3e:d0:7d:05:15:57:79:2b:29:b4:b7:
0f:8a:7f:05:e6:f4:9b:64:cd:6c:b6:c0:57:b5:f5:
05:18:95:73:a5:e9:4c:68:10:c3:36:64:5c:50:80:
28:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D6:7D:EB:41:1A:88:9A:76:00:31:BC:88:C2:FE:21:5C:A9:03:7F
X509v3 Authority Key Identifier:
keyid:8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:e2:d5:00:07:63:6c:75:e0:56:67:fe:e1:a4:1f:e5:91:72:
08:75:90:3e:92:c1:55:24:2d:1b:76:d1:03:44:42:34:7b:d1:
23:17:75:f3:31:fe:4f:8d:19:b2:6c:9e:32:7d:d8:a2:29:d5:
33:a3:f7:aa:9e:7e:a0:1e:39:6d:3a:43:7d:3a:a8:df:96:1d:
14:a8:12:fe:99:45:63:66:e7:fe:00:51:67:3b:c6:b5:b2:e8:
61:ad:38:39:ab:95:48:6a:93:a2:80:b4:26:cd:9e:a6:f3:38:
ab:03:3e:74:34:cf:00:4e:57:a6:b9:12:e6:73:7e:80:12:d9:
7d:fc:f9:5e:8b:91:94:f9:63:15:0c:8e:e5:9e:e4:77:50:c8:
d0:d1:21:35:95:c2:66:dc:e4:ab:ee:64:93:bb:f1:d2:aa:82:
cb:8c:a7:bf:32:67:ff:bf:3b:6e:40:98:fd:17:50:75:83:ef:
3b:71:43:9a:21:7c:4e:6e:06:b7:fc:9b:75:87:29:e4:55:93:
ae:d3:a1:7f:13:1a:0d:9d:24:ec:b7:a8:21:21:29:4d:f3:8b:
d3:88:40:02:dd:e9:4e:de:36:f2:42:b1:a9:a1:67:49:36:e2:
79:c9:a8:a8:f4:87:e0:66:f8:a4:bd:6f:07:b9:11:a7:97:ac:
c8:36:55:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:43:40 2025 by rpki-client