Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
File: IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft (raw, json)
Hash identifier: 1ebuuWotgUpsqo5SSS0kogm5aE1yP1MwuKqfQwRVF3I=
Subject key identifier: 29:B7:D9:08:E8:2E:FD:FF:C5:EF:F8:8A:49:B3:C4:C8:AF:18:9B:11
Authority key identifier: 21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
Certificate issuer: /CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Certificate serial: 0199FBEC08ABF946462C4C51AF92A2D6D1BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
Manifest number: 06D2
Signing time: Sun 19 Oct 2025 10:02:53 +0000
Manifest this update: Sun 19 Oct 2025 10:02:53 +0000
Manifest next update: Mon 20 Oct 2025 10:02:53 +0000
Files and hashes: 1: IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl (hash: qYSu/8EfmKTq6o+5xQYFRprUV5y+V5C8RWnQRt5dcW4=)
2: ZXtK8i0ZkTBxTFkF4gT8SCIZTmw.roa (hash: KikSjMlfZMQPJYB8hmRvlc00FrgqM6UWZDTUG/QEicY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:08:ab:f9:46:46:2c:4c:51:af:92:a2:d6:d1:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Validity
Not Before: Oct 19 10:02:53 2025 GMT
Not After : Oct 20 10:02:53 2025 GMT
Subject: CN=29b7d908e82efdffc5eff88a49b3c4c8af189b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1a:25:fb:33:23:e6:42:65:dc:6e:eb:71:94:
14:15:e0:b9:b7:1b:88:13:63:db:b0:f9:6a:e3:6e:
de:b6:e8:e8:dd:a5:72:92:c6:7f:7b:c1:7e:c5:f3:
73:10:f4:f0:93:86:bb:76:a0:48:05:87:ca:8a:cc:
32:d5:16:3f:86:1a:36:8c:d6:9f:80:cc:cb:3a:d6:
39:dc:a3:1b:fb:90:85:ba:5e:29:ae:15:03:77:0a:
86:85:8d:4c:93:f5:87:2f:61:ce:7c:8a:24:9e:9d:
4a:57:49:2a:64:a8:80:27:c7:f4:61:0f:b5:fb:d0:
79:a0:cc:eb:bc:66:94:13:47:a6:03:f7:1f:b4:05:
dc:94:a5:ca:10:ee:00:45:ee:fd:f6:25:f4:f9:85:
a9:d3:c1:9f:21:c5:b4:91:e1:c3:8f:30:cf:2f:e5:
81:5b:93:c4:ef:43:c1:e0:d0:18:27:6b:13:e4:f8:
04:38:07:1a:84:f7:11:07:91:19:66:6b:77:d2:73:
a0:ee:f9:37:b4:e5:2c:3c:66:b7:34:d4:ce:3e:cf:
28:99:3b:5c:43:b9:eb:c9:48:fb:c6:f3:5c:38:4d:
71:2c:3d:30:06:d2:78:78:07:4f:9f:19:a6:e5:83:
0c:6b:08:e6:3f:70:62:37:d9:02:54:e2:f7:fb:02:
3c:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:B7:D9:08:E8:2E:FD:FF:C5:EF:F8:8A:49:B3:C4:C8:AF:18:9B:11
X509v3 Authority Key Identifier:
keyid:21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:19:04:29:35:25:d5:a3:2a:fc:fd:7d:bd:ca:c9:a6:f4:76:
dc:4f:ec:4c:41:21:cd:b2:66:2d:ff:4f:14:93:ee:9c:26:e7:
e5:0c:ac:fb:3d:19:9b:ff:86:a2:42:21:07:06:c7:7b:43:ab:
93:bc:bb:97:c3:bf:a4:5c:7a:d3:49:38:52:c9:f5:69:e1:2a:
76:da:3c:9c:eb:ca:f8:22:37:b6:8f:42:c8:97:6d:ec:3b:f4:
36:95:13:10:8d:c3:51:9d:a6:69:86:ab:22:35:4c:53:ed:c6:
dd:6a:c1:ac:d3:50:3d:92:c8:9a:ab:6f:db:80:8b:dc:2a:01:
8c:a4:9b:f1:2f:c2:27:e5:38:40:a5:9e:2c:85:37:95:81:02:
5e:c4:76:0e:cc:19:bf:ff:ab:c2:5b:d3:d8:41:df:9d:39:2a:
03:e1:90:af:57:f6:0a:7c:6d:05:48:90:59:c9:0f:69:92:8e:
9d:e9:af:79:ab:91:6e:f8:cb:3e:7f:41:f6:aa:0e:eb:9b:a4:
d7:e5:9e:33:9c:0b:7f:b6:a2:0a:fb:4c:7f:9f:fb:d1:95:a4:
e9:b3:ce:0d:a7:f7:d8:6b:da:af:3f:c6:e1:26:a7:cc:5c:71:
10:fa:76:a6:5c:97:65:9d:d5:c5:18:0e:8c:77:51:1d:ab:7a:
60:a3:01:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:48 2025 by rpki-client