Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
File: ILSHOEKpBPGmlyATk-e6YmhC9K8.mft (raw, json)
Hash identifier: 6abGmj8reQptAEocp/zvwXdxwFecShMS3FnfOoje0mo=
Subject key identifier: 43:88:EB:24:75:EB:BB:31:46:01:18:94:8D:05:E4:4F:50:1E:2A:BE
Authority key identifier: 20:B4:87:38:42:A9:04:F1:A6:97:20:13:93:E7:BA:62:68:42:F4:AF
Certificate issuer: /CN=20b4873842a904f1a697201393e7ba626842f4af
Certificate serial: 0199FE7E177A02C728832A3FC5109E359258
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ILSHOEKpBPGmlyATk-e6YmhC9K8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
Manifest number: 0201
Signing time: Sun 19 Oct 2025 22:01:40 +0000
Manifest this update: Sun 19 Oct 2025 22:01:40 +0000
Manifest next update: Mon 20 Oct 2025 22:01:40 +0000
Files and hashes: 1: ILSHOEKpBPGmlyATk-e6YmhC9K8.crl (hash: CxEQXP2mwziQjqJz3lBfZe5vGG96OUcPL+WG4Q+P1R4=)
2: ikBv5b5jvUgLHCzEElZRpG0xhaQ.roa (hash: gqu/sWjZphbSMNC/g5mms3lw1LEITcFb3ZdY4tecg1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ILSHOEKpBPGmlyATk-e6YmhC9K8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7e:17:7a:02:c7:28:83:2a:3f:c5:10:9e:35:92:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20b4873842a904f1a697201393e7ba626842f4af
Validity
Not Before: Oct 19 22:01:40 2025 GMT
Not After : Oct 20 22:01:40 2025 GMT
Subject: CN=4388eb2475ebbb31460118948d05e44f501e2abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:eb:76:e0:1e:b3:f3:54:ce:2c:4a:06:97:ea:
80:3b:40:54:56:b7:9f:0a:b5:49:a7:1d:e9:5c:30:
41:bb:fa:1f:c0:72:6e:b7:36:6c:2f:66:86:90:a5:
84:2a:8b:63:62:9c:f9:d9:a5:57:e7:4d:f2:4c:75:
a6:b7:63:90:b0:1f:27:14:18:f8:7f:47:87:99:94:
60:2a:d5:41:ac:b5:5e:5c:46:33:db:69:5f:9b:98:
38:b4:31:a5:d5:2e:81:0f:1e:ed:07:d9:0f:f7:29:
b6:99:aa:12:58:89:04:70:90:94:43:dd:a8:a6:22:
71:6f:d5:d9:f4:a3:f8:39:8e:25:6c:15:93:b4:68:
cc:26:ee:e1:f3:a6:a2:b9:ce:94:e2:14:eb:0c:37:
b1:34:d6:0b:c1:49:bd:9c:a7:6c:1c:f7:a1:3f:2d:
ed:1e:76:57:02:b1:43:b7:d5:55:d5:29:30:15:10:
6d:4c:f8:43:d8:d8:ed:1b:9d:e6:54:31:38:e2:66:
4c:62:58:27:dd:d2:5e:69:ea:04:7e:ea:37:68:5f:
90:48:92:ba:f0:e7:70:8f:6d:9b:fc:94:60:84:f8:
af:5d:d3:df:a0:d2:fe:40:41:d6:13:22:25:44:48:
0b:d0:04:50:f7:4c:fd:f7:19:1e:82:5e:64:e6:1f:
86:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:88:EB:24:75:EB:BB:31:46:01:18:94:8D:05:E4:4F:50:1E:2A:BE
X509v3 Authority Key Identifier:
keyid:20:B4:87:38:42:A9:04:F1:A6:97:20:13:93:E7:BA:62:68:42:F4:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ILSHOEKpBPGmlyATk-e6YmhC9K8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/8e291a-b655-46e4-bdc3-ef5ba54adb59/1/ILSHOEKpBPGmlyATk-e6YmhC9K8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:7f:a8:7f:26:6d:4a:8b:b0:c2:10:48:47:db:b3:a1:02:92:
62:94:91:b1:4d:7b:6e:99:86:c2:b9:e3:2b:72:bc:98:01:30:
4c:0e:34:77:76:52:ac:90:df:45:49:27:bd:79:d3:e0:9c:53:
54:ed:54:4c:ee:56:ee:67:81:32:2c:e2:a2:6b:1f:9f:d2:68:
85:14:ed:2a:6d:70:ed:50:25:49:3c:a5:a6:13:69:0c:f2:8b:
53:0a:0e:df:a6:5e:e6:92:0a:fd:5b:90:6b:2b:57:43:04:89:
d4:8d:5e:be:a6:ed:b9:6c:87:c3:22:81:6a:25:4d:bb:fa:f7:
c0:31:88:d3:f3:70:e4:c3:1c:d8:e5:39:b9:29:ab:a5:5c:2b:
3e:b1:54:db:aa:d8:3f:fa:d8:da:7d:41:fe:2b:3e:68:45:1c:
e8:3c:30:df:a8:cf:f0:66:9d:82:d5:66:d5:9b:ea:ca:9b:8b:
a1:48:fd:8c:37:52:88:72:bb:cc:e9:06:75:06:9c:c0:5b:69:
08:0f:1a:94:a2:7a:99:b8:0e:98:bf:b6:88:83:42:32:d6:78:
26:64:ec:c3:9b:59:a7:27:50:4e:71:44:7b:2a:b1:b7:f8:73:
04:2b:8d:0e:21:0d:51:5e:63:a6:20:f9:e9:5d:d7:3d:8e:f0:
ac:ca:09:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:21:05 2025 by rpki-client