Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
File: iKslD4208gR6QBWFwmTzjA4ih_4.mft (raw, json)
Hash identifier: zkuIPM56Tth7xKQYPAtYthdi3MQ4XnzooWkkozh/ADo=
Subject key identifier: 49:74:C3:56:FE:A0:27:45:C5:9B:7A:50:3E:24:F9:1E:F0:33:4E:03
Authority key identifier: 88:AB:25:0F:8D:B4:F2:04:7A:40:15:85:C2:64:F3:8C:0E:22:87:FE
Certificate issuer: /CN=88ab250f8db4f2047a401585c264f38c0e2287fe
Certificate serial: 0199FCC6439A5DD7455368E1B7B134F39806
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
Manifest number: 150F
Signing time: Sun 19 Oct 2025 14:01:15 +0000
Manifest this update: Sun 19 Oct 2025 14:01:15 +0000
Manifest next update: Mon 20 Oct 2025 14:01:15 +0000
Files and hashes: 1: iKslD4208gR6QBWFwmTzjA4ih_4.crl (hash: iJhQ/aRSmsPrV18pD3ZJR6MJLisZPI0miFkFq90gW1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:43:9a:5d:d7:45:53:68:e1:b7:b1:34:f3:98:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ab250f8db4f2047a401585c264f38c0e2287fe
Validity
Not Before: Oct 19 14:01:15 2025 GMT
Not After : Oct 20 14:01:15 2025 GMT
Subject: CN=4974c356fea02745c59b7a503e24f91ef0334e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:73:29:f3:8b:f9:5d:48:1d:c8:dc:99:1f:fd:
b9:f4:2a:3a:f1:81:5c:a6:a8:95:c0:e8:8c:87:57:
52:83:76:e6:7a:3e:27:30:ad:81:d3:06:a0:56:fa:
4d:f5:0f:14:b1:3a:03:f4:e2:25:ed:d3:55:84:c8:
e0:f1:3f:e6:f2:48:b5:97:bc:44:99:87:62:9e:71:
41:41:83:3a:2e:e5:c0:4d:94:08:52:78:10:9d:02:
7d:37:64:68:ed:f4:92:55:91:f9:88:ec:0d:9a:8b:
b9:93:5f:06:a8:82:a2:63:88:f5:e5:cb:35:4f:eb:
5a:7e:31:fe:73:ba:64:56:1c:bb:7e:7c:69:e5:bb:
aa:10:22:f8:ba:62:fb:2a:6a:11:f4:c7:89:04:4f:
d1:73:30:02:5c:36:06:45:70:1b:9b:6b:46:54:48:
87:e3:46:86:4e:b7:f8:c9:92:ce:34:0a:ba:3c:be:
4b:23:fb:cf:8e:16:cb:c1:44:ad:bf:2f:c9:f3:2e:
75:63:b6:a5:d3:7b:d7:2d:e2:33:c4:fa:44:6a:98:
52:c5:7b:26:9e:05:fe:39:ac:2a:49:f1:ac:3d:11:
50:fa:c5:ad:84:c2:39:ad:9b:4c:d0:76:55:3e:57:
70:36:53:a5:05:1f:41:bf:45:12:e6:05:4a:2f:da:
45:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:74:C3:56:FE:A0:27:45:C5:9B:7A:50:3E:24:F9:1E:F0:33:4E:03
X509v3 Authority Key Identifier:
keyid:88:AB:25:0F:8D:B4:F2:04:7A:40:15:85:C2:64:F3:8C:0E:22:87:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKslD4208gR6QBWFwmTzjA4ih_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/39adc9-db28-4b1e-bf6e-a08bf2c43460/1/iKslD4208gR6QBWFwmTzjA4ih_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:21:67:8d:3b:e6:da:47:0d:97:1f:8b:a1:f1:c8:11:d6:4f:
f7:6c:31:0f:5c:f7:cc:c9:bc:73:9b:fb:c2:5d:80:67:9d:96:
06:bf:88:fe:62:72:2b:7f:59:a2:71:7d:ad:7f:cb:1a:44:bc:
98:61:a5:a9:b4:3a:35:bd:7f:21:dd:15:2c:9e:4f:1b:54:ee:
65:c9:ff:52:84:f9:fb:9b:47:35:31:c9:b9:72:08:a3:5e:ea:
c4:a0:e0:65:5c:f4:74:6e:38:2d:33:5e:e2:4c:7d:45:3b:c5:
ca:5f:96:63:31:f8:54:9d:83:c9:f1:29:da:d8:90:df:9d:b7:
06:be:e9:5f:4e:29:ee:2a:21:07:91:97:9d:ee:46:2d:3c:a5:
91:2c:71:d4:d9:f4:60:4c:d9:32:31:ac:66:c0:73:9e:52:12:
4d:1f:90:1d:52:4b:4f:02:5f:04:d1:40:40:21:58:ef:ce:0d:
23:1c:c0:72:ce:b0:c5:f4:56:4e:96:60:72:8b:1e:23:e0:08:
12:de:b0:c1:f5:6a:8b:fa:a6:72:ff:05:ee:92:72:d7:dc:0f:
71:96:0c:9f:ae:53:01:9c:a0:99:a0:01:5a:ae:de:62:e9:71:
52:0c:15:a4:42:e7:1e:7c:c4:81:61:90:93:33:93:d3:5b:17:
42:51:2d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:50:17 2025 by rpki-client