Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json)
Hash identifier: ugSs4Tsdff+k7hVcsKqrV+JRAVYAheenQOeG9mr5ptI=
Subject key identifier: 41:82:11:1E:A9:28:89:7F:27:E2:51:13:59:73:58:70:25:A0:C4:08
Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Certificate serial: 0199FE46FCCD96A151CC60F6C84ABBD0C2F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
Manifest number: 0196
Signing time: Sun 19 Oct 2025 21:01:29 +0000
Manifest this update: Sun 19 Oct 2025 21:01:29 +0000
Manifest next update: Mon 20 Oct 2025 21:01:29 +0000
Files and hashes: 1: XcIL6Sukfm7k1AWtWl445xp4QV0.roa (hash: 4UDRmx72tIl2+y56n6Ye2uGR21iaVE2WkWXR6GxV+6Y=)
2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: nSHLk7tx4XIRHpJ86rXLLwL1xIdMS3EXZTtgaWFIVMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:fc:cd:96:a1:51:cc:60:f6:c8:4a:bb:d0:c2:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Validity
Not Before: Oct 19 21:01:29 2025 GMT
Not After : Oct 20 21:01:29 2025 GMT
Subject: CN=4182111ea928897f27e251135973587025a0c408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bd:6b:ae:88:6b:d8:bf:79:7d:01:e7:b9:6c:
01:4d:da:60:55:7f:85:e9:eb:96:a5:06:0e:af:32:
07:cc:d1:12:ef:2b:ed:69:d7:54:6a:64:3b:82:a0:
d9:23:ff:5f:b2:0f:c9:91:90:64:51:f5:8f:78:8a:
4b:20:d2:0d:d7:68:25:86:7e:82:58:8d:76:5b:a2:
ef:e6:1f:4f:38:64:e3:6e:98:66:4c:66:98:a0:1b:
3e:5f:c2:df:32:2f:28:17:fb:fa:b9:60:3b:ae:37:
8e:76:14:3c:3f:2d:2e:6b:2b:7d:1c:52:e1:21:0e:
0d:d3:52:91:65:6c:23:6a:cd:e2:d6:a0:54:bc:99:
9a:50:e2:de:23:7e:73:f4:6c:00:c2:a9:1b:1f:4a:
e0:1b:83:a4:f3:2a:3a:8a:2d:c2:99:74:ff:67:79:
a3:a2:93:41:fd:ac:07:37:c2:68:10:fc:f4:84:01:
00:5d:db:1f:79:ae:ab:d6:c2:a4:38:6f:70:4e:cd:
a0:b2:64:7e:a3:5e:56:e9:e9:ee:02:bf:bc:4f:d1:
4c:02:19:74:3c:91:ce:62:73:d3:a5:ce:95:40:81:
c7:0a:be:42:8d:67:30:40:f0:dd:5a:08:76:8b:d7:
4f:f1:7d:dc:3a:03:e9:f0:89:15:3a:d8:61:80:6b:
20:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:82:11:1E:A9:28:89:7F:27:E2:51:13:59:73:58:70:25:A0:C4:08
X509v3 Authority Key Identifier:
keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:f8:7b:bd:31:70:4a:ec:d1:ec:6b:ce:81:6a:ae:88:05:7a:
b5:af:de:93:d0:b5:a4:8d:eb:54:05:9f:a4:6c:3b:ad:92:17:
27:22:0b:41:b3:a8:13:b6:d5:a2:e0:b3:c6:4e:89:ee:a6:74:
76:fc:d3:e3:1e:96:af:fc:52:53:9b:7d:05:b2:39:ab:a1:a6:
41:1d:51:1a:a9:8c:73:0c:b5:77:f5:15:81:82:bb:4f:cf:70:
b5:1f:fe:7b:9e:02:12:6d:8d:57:b4:ce:8a:21:62:99:f2:43:
bc:b4:1f:fa:32:c7:79:6d:06:a5:e3:1e:ca:b7:ec:ac:6c:7c:
f6:0b:66:4b:8e:c5:fa:0e:71:c0:bb:6f:91:f4:d0:30:e7:ef:
58:d7:98:60:8a:8b:8a:49:48:71:8f:ce:1b:91:c5:87:2e:fb:
da:a0:a6:63:c8:3f:dc:ac:0d:87:09:55:51:44:44:23:3c:56:
8e:b9:79:cf:70:3e:8c:7c:cd:97:3e:da:4f:c7:43:a0:6c:f0:
37:1f:84:24:00:30:51:26:89:13:bc:33:38:b4:56:a3:e6:3a:
88:a0:ee:7c:e7:da:1d:39:0f:9b:d9:de:68:95:01:41:e0:82:
4f:63:8b:4c:01:53:76:86:94:ba:7d:78:9b:e4:31:8b:cf:56:
4c:50:5a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:01 2025 by rpki-client