Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
File: iP4ZBc16825jraY2bBR7Ydhcnys.mft (raw, json)
Hash identifier: u4V0dz0oK0PHwJ0uoseVU/5v9RM9VRMBH3THofTTbNo=
Subject key identifier: 4F:6C:13:0E:56:1B:A9:3E:7D:F3:3D:A7:D5:B2:A5:88:B1:F3:45:99
Authority key identifier: 88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B
Certificate issuer: /CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b
Certificate serial: 0199FC213DD7960867AB0AAEB82FA752DC7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
Manifest number: 0824
Signing time: Sun 19 Oct 2025 11:01:00 +0000
Manifest this update: Sun 19 Oct 2025 11:01:00 +0000
Manifest next update: Mon 20 Oct 2025 11:01:00 +0000
Files and hashes: 1: DSjiByReVAFtGenTha4D-8dSQJA.roa (hash: LTaqsJLmNorNuR9w6MCAPY47C39e6eSxiN8KzBSficg=)
2: N3Ms1tO5Rc3q58ZodMbwcW3QRxA.roa (hash: QeEjLFu1bfyi8L5wOE2F/BxSn3Wihpq/1jEicr1OiIU=)
3: iP4ZBc16825jraY2bBR7Ydhcnys.crl (hash: mE2mEqZ1Fe+9BxhQ9S3akTMOdK+m5g69hjathwRAl/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:3d:d7:96:08:67:ab:0a:ae:b8:2f:a7:52:dc:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b
Validity
Not Before: Oct 19 11:01:00 2025 GMT
Not After : Oct 20 11:01:00 2025 GMT
Subject: CN=4f6c130e561ba93e7df33da7d5b2a588b1f34599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5b:86:36:bf:7b:87:02:ac:89:6d:87:64:21:
3d:96:84:e8:39:99:e4:ef:3a:5d:06:8b:87:76:29:
97:65:d7:56:ca:74:99:fc:9a:3a:65:10:d2:42:16:
25:7f:88:9e:7d:b6:d5:bd:96:07:de:bf:0f:83:6d:
24:c2:1a:78:6f:25:eb:b0:c5:42:23:27:be:3c:09:
77:b2:00:f5:66:7f:3c:67:79:6e:66:ef:f7:f7:8f:
b8:e4:87:35:fe:f7:00:d1:eb:ee:78:b5:9f:e3:0e:
e2:d4:58:50:a1:30:a6:4d:ae:23:c2:47:27:96:5f:
a3:e1:77:41:a5:4f:60:48:67:79:19:85:6c:80:56:
b5:ce:ec:02:e1:af:29:b7:79:e1:b8:f9:18:a3:c7:
8c:db:2b:f1:7e:f0:e2:fb:04:17:93:14:6a:a8:f8:
f8:b6:b1:57:12:74:b0:63:5a:20:e0:00:77:e4:03:
1e:51:b8:8a:e2:87:dd:f3:51:5f:de:da:bf:a1:8c:
2b:37:20:de:9d:68:d8:53:cc:a3:01:cf:b9:7d:d1:
cb:22:1a:d6:05:4a:b9:63:a4:7d:52:0a:d4:86:82:
70:30:af:7b:42:65:3e:c3:47:0b:28:31:ea:64:f8:
28:41:41:24:a6:7a:44:41:d9:25:3a:6f:44:fd:6f:
93:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6C:13:0E:56:1B:A9:3E:7D:F3:3D:A7:D5:B2:A5:88:B1:F3:45:99
X509v3 Authority Key Identifier:
keyid:88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:24:ba:86:ad:1d:c1:82:f4:c7:6d:64:13:86:ae:8d:06:5a:
8a:09:70:60:46:68:db:bb:70:36:be:40:31:85:ad:05:42:ee:
03:ea:15:8c:d4:60:a6:b4:e4:73:c5:79:33:ae:a7:93:0d:78:
d0:9b:d2:f6:73:a8:15:3d:8c:93:32:68:21:a8:7b:52:88:3a:
f5:7d:9d:ce:38:e2:5a:50:56:41:64:ee:3f:bd:5e:25:0e:22:
5e:3e:1b:2a:0b:f7:fd:77:00:77:68:bd:9f:a9:6b:e2:22:1e:
4f:6d:57:be:99:b7:39:b7:3c:d3:08:88:10:57:56:95:ae:a1:
e2:17:9c:d6:c3:08:2d:ef:46:e0:c6:15:ad:8d:65:c1:af:3d:
79:99:63:44:63:ad:a9:da:f4:e0:42:c2:41:da:2a:a2:fb:af:
92:c5:56:65:5d:08:ac:9f:bf:97:2c:a6:3c:64:d0:0d:07:04:
c3:a0:d9:40:01:ed:29:81:d7:71:9c:2e:f5:34:53:f0:09:07:
ed:d4:9a:f5:3e:76:f9:16:d0:5d:b3:b2:94:94:9b:7d:3b:3d:
81:49:49:ed:ee:2a:2b:b4:fb:eb:da:ea:10:61:b2:b3:cc:55:
cb:b0:87:26:30:a8:e9:23:d7:4b:7b:f5:82:23:39:3a:59:86:
d7:31:70:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:31:03 2025 by rpki-client