Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
File: iWkzRGOKywU2WC-rCJh2V472vFY.mft (raw, json)
Hash identifier: n7onKabCfCu7toqPLPKB+Th5fjyq2kYVlmNk1FcY7ek=
Subject key identifier: 95:8E:72:7E:EA:05:66:9C:7A:10:1A:13:2D:95:1A:B8:52:FD:98:D6
Authority key identifier: 89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56
Certificate issuer: /CN=89693344638acb0536582fab089876578ef6bc56
Certificate serial: 0199FBEB89B5971BD17015A2BD4354E464E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 10:02:21 +0000
Manifest this update: Sun 19 Oct 2025 10:02:21 +0000
Manifest next update: Mon 20 Oct 2025 10:02:21 +0000
Files and hashes: 1: fCZrKI-6j3JypnfEm5_gs1n5dFw.roa (hash: iZ/p7v8ZHeoQxTyUiH1KnvRb3hj8zk8sCV0wmzxeW2k=)
2: iWkzRGOKywU2WC-rCJh2V472vFY.crl (hash: 22ZRckJouPF7d9lSUiIUNapAm+z13UUX05HIZi/XU74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:89:b5:97:1b:d1:70:15:a2:bd:43:54:e4:64:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89693344638acb0536582fab089876578ef6bc56
Validity
Not Before: Oct 19 10:02:21 2025 GMT
Not After : Oct 20 10:02:21 2025 GMT
Subject: CN=958e727eea05669c7a101a132d951ab852fd98d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:27:bf:20:02:90:c3:2b:e3:8a:6e:2d:f6:
4f:98:80:cb:79:5e:e2:d6:5a:af:b1:a0:e7:37:74:
a5:63:02:ad:64:d9:b6:a3:5b:bd:76:a4:44:41:3d:
6d:38:11:8f:b1:79:a2:4c:8a:bb:b3:be:84:03:90:
0e:85:24:7d:17:5e:21:03:62:b0:c2:a0:c8:46:d3:
7d:eb:1c:6d:03:82:92:d9:f0:c1:5a:18:4f:cf:d7:
79:b7:40:2e:fd:33:68:80:97:96:d7:e5:3b:88:ae:
21:ce:49:7b:4b:46:4c:5a:78:0e:ef:b5:bd:ed:73:
0b:4d:66:eb:35:11:60:c9:13:0f:bc:c3:45:59:47:
de:b8:fe:75:0f:91:a7:90:5e:7a:38:ff:21:c6:8e:
0a:f8:7e:b4:8a:62:bb:e4:9b:27:a1:ba:66:1b:ed:
8a:be:63:79:b4:29:4f:f6:87:48:ea:57:7d:b9:2a:
5d:11:1f:98:4f:7d:41:cb:45:0b:f9:3f:bb:36:f3:
8c:72:7d:d2:32:1e:1f:7e:39:29:a2:fe:98:dd:ed:
4c:80:c7:0b:a0:e0:fe:ad:80:96:d5:f5:a6:51:b6:
86:98:ec:cf:59:dd:04:33:4d:3b:f5:78:c1:a5:95:
d6:bb:36:72:74:95:ad:f1:18:b1:9e:67:c9:fd:67:
f8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:8E:72:7E:EA:05:66:9C:7A:10:1A:13:2D:95:1A:B8:52:FD:98:D6
X509v3 Authority Key Identifier:
keyid:89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:d0:3d:8f:c6:3f:19:01:6a:cd:c4:24:77:f4:87:68:28:22:
3d:13:f2:17:55:6d:a0:9d:5b:78:d3:bc:23:36:9b:6e:9c:ea:
14:71:dd:a6:d5:1a:a9:0d:2c:36:43:d2:d5:09:da:3b:70:83:
18:d4:22:82:67:f3:38:92:c6:6f:45:95:b7:92:f9:e6:49:86:
a6:c2:31:0f:07:c4:3a:fb:1b:f4:7c:51:5a:e7:4c:06:6b:20:
82:c6:e8:52:8d:4c:e7:60:cf:17:ea:31:80:27:53:21:de:8f:
00:2a:7f:45:79:5b:64:97:79:3c:d5:60:34:c1:61:a7:81:8a:
cc:e3:7c:7f:5a:83:4b:ec:fd:f7:a3:bb:18:c3:b7:43:00:c8:
84:78:28:b0:89:9f:88:01:aa:f1:ae:99:a6:10:8b:b8:bb:5b:
68:9f:26:a9:61:38:4a:03:6b:c4:db:4a:80:36:d9:63:4f:04:
2d:59:d5:1c:20:b0:51:bc:4c:dd:e3:40:62:88:9f:a9:bb:95:
05:7c:67:60:bd:95:01:58:48:13:97:3b:d9:af:94:7f:04:f6:
0a:4e:d8:a8:62:90:c2:74:08:45:4e:03:8f:dd:9e:78:50:81:
35:33:54:61:1b:33:bd:42:5a:a1:f7:f9:a8:c5:06:c5:c3:b7:
59:53:9a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:14:13 2025 by rpki-client