Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
File: IvtSiroBjxQvRETMzJcjc2zU5LY.mft (raw, json)
Hash identifier: TbK9uk1/ZIyhNkTKxiOtgav1fwU8XpGXYe137McIEAw=
Subject key identifier: 2E:80:8A:74:42:8D:EA:91:F8:00:30:65:7B:77:40:C8:36:A8:8F:84
Authority key identifier: 22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
Certificate issuer: /CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Certificate serial: 0199FCFD482C68CA4AF7B86AAB4A13B67889
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
Manifest number: 12CD
Signing time: Sun 19 Oct 2025 15:01:21 +0000
Manifest this update: Sun 19 Oct 2025 15:01:21 +0000
Manifest next update: Mon 20 Oct 2025 15:01:21 +0000
Files and hashes: 1: 4Qe9-T0nXWoVHW9lPtNAFV1MJeQ.roa (hash: MEUx9Qe02B/09ozBtbyk47nH68xJFm0Hu6pf18Q/8p0=)
2: IvtSiroBjxQvRETMzJcjc2zU5LY.crl (hash: YF81xLTu7yD52Ps7Xzj7lP59meRv8lEtuqEYQnk7hX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:48:2c:68:ca:4a:f7:b8:6a:ab:4a:13:b6:78:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Validity
Not Before: Oct 19 15:01:21 2025 GMT
Not After : Oct 20 15:01:21 2025 GMT
Subject: CN=2e808a74428dea91f80030657b7740c836a88f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b7:0e:ed:23:18:33:bf:a8:97:29:36:7a:51:
a6:18:0d:6a:fd:01:fc:63:4c:d6:60:c1:14:38:3c:
a3:33:e5:db:c5:f0:4f:e2:6e:90:c5:33:49:c3:50:
a3:e6:df:c3:13:d0:7e:21:a0:8a:1d:f0:3f:c7:bb:
26:3e:f1:e7:2c:60:60:a4:a5:d3:80:44:08:d3:c9:
4b:58:92:f0:1c:b4:5d:d3:18:cd:50:6c:5a:4d:93:
ba:62:5f:e9:ba:6e:25:96:dc:3e:1f:b7:30:c9:3e:
46:c9:ec:d7:ea:2f:46:86:56:49:fb:17:b8:ba:47:
1e:f2:8d:3e:be:e3:25:7c:4f:07:ef:93:41:07:e5:
64:21:1d:9e:01:66:6a:c7:89:d3:b0:05:41:21:10:
c3:61:2d:02:9b:a6:7f:c9:bf:9a:0b:b9:60:e4:fb:
15:e3:05:d9:c4:7d:92:72:b5:05:35:dd:50:b8:ef:
76:29:7a:9d:92:f1:fc:20:3f:23:c7:78:ca:4b:16:
36:fe:cd:19:8a:c1:74:f7:3e:3b:5c:91:9b:c2:e1:
24:f9:27:b3:5e:9f:34:81:65:35:98:a8:8a:ba:ef:
6b:30:a4:39:8a:99:1e:9f:e8:93:d6:6e:54:14:8b:
f9:1c:31:13:78:59:54:14:09:43:4b:8e:c5:47:f1:
65:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:80:8A:74:42:8D:EA:91:F8:00:30:65:7B:77:40:C8:36:A8:8F:84
X509v3 Authority Key Identifier:
keyid:22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:a0:c9:6f:00:aa:36:80:38:48:89:50:da:94:af:6d:0f:9f:
73:c5:73:61:5f:ae:83:03:59:da:6f:ed:4f:85:7a:f2:47:36:
6e:0d:cc:7a:0a:fb:8e:04:d2:6a:f1:e3:87:c7:e9:90:d8:0c:
41:e7:6d:c6:e5:5d:8c:7b:e1:24:b3:2a:6b:4b:b5:de:11:dc:
c0:d7:9e:3f:7d:df:69:48:ef:8d:13:11:e8:e7:a0:66:cc:d7:
ab:47:f6:c0:9f:62:d3:f5:b4:c0:ba:6f:6e:47:b9:ea:13:4b:
6c:ae:35:35:fa:c3:bb:11:6c:bf:30:37:87:bd:65:c2:dd:50:
78:ae:5f:dc:93:10:79:52:8a:f3:84:02:2b:da:7c:e1:62:4d:
73:d1:52:3f:44:cd:58:65:bb:7c:6d:3a:4e:2d:e2:1c:73:87:
4a:80:cf:2b:65:97:c7:06:7e:90:d2:7c:b8:0b:7c:3f:b3:d7:
72:e8:cb:63:de:a0:60:59:aa:54:67:f8:ef:06:4f:b7:8c:be:
3e:4d:29:79:2f:f5:0d:03:6a:1d:5b:bf:41:7d:24:8a:18:1d:
c0:a7:9b:3b:8b:6b:84:17:82:c2:2f:61:5d:e3:97:6d:f1:a4:
06:9a:a3:92:ff:b4:f4:48:12:c9:57:b9:21:55:80:ff:b8:1d:
b7:cb:3a:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:54:17 2025 by rpki-client