Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/6bac55-9aaa-4530-8ff4-6027a6839ae4/1/Ic4xHI7WC-8bXk99O4ZBB4FEGKM.mft
File: Ic4xHI7WC-8bXk99O4ZBB4FEGKM.mft (raw, json)
Hash identifier: IxiQ2DOwL6kHu2BDSahPEFxnDO1GcgzYVPQKSGp8Ud0=
Subject key identifier: 4D:AA:4A:AB:81:BF:B0:30:67:B8:4E:47:08:3C:64:4C:EE:F6:BD:6F
Authority key identifier: 21:CE:31:1C:8E:D6:0B:EF:1B:5E:4F:7D:3B:86:41:07:81:44:18:A3
Certificate issuer: /CN=21ce311c8ed60bef1b5e4f7d3b864107814418a3
Certificate serial: 0199FB45A7D7CED18CDE78F29B6F53783F13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ic4xHI7WC-8bXk99O4ZBB4FEGKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/6bac55-9aaa-4530-8ff4-6027a6839ae4/1/Ic4xHI7WC-8bXk99O4ZBB4FEGKM.mft
Manifest number: 0A82
Signing time: Sun 19 Oct 2025 07:01:10 +0000
Manifest this update: Sun 19 Oct 2025 07:01:10 +0000
Manifest next update: Mon 20 Oct 2025 07:01:10 +0000
Files and hashes: 1: Ic4xHI7WC-8bXk99O4ZBB4FEGKM.crl (hash: 9uLvOQFGrwSveWY6BgA+z3trjw7Fp1n/elMNHE69u0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/6bac55-9aaa-4530-8ff4-6027a6839ae4/1/Ic4xHI7WC-8bXk99O4ZBB4FEGKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/6bac55-9aaa-4530-8ff4-6027a6839ae4/1/Ic4xHI7WC-8bXk99O4ZBB4FEGKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ic4xHI7WC-8bXk99O4ZBB4FEGKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:a7:d7:ce:d1:8c:de:78:f2:9b:6f:53:78:3f:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21ce311c8ed60bef1b5e4f7d3b864107814418a3
Validity
Not Before: Oct 19 07:01:10 2025 GMT
Not After : Oct 20 07:01:10 2025 GMT
Subject: CN=4daa4aab81bfb03067b84e47083c644ceef6bd6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9f:f0:78:9a:a7:68:ac:f2:5f:9a:06:3e:ce:
f2:7e:a7:fb:1e:46:fb:42:68:ba:de:f1:e7:3e:4c:
c2:3f:ec:c9:61:97:4d:06:13:52:f3:33:b9:0b:1b:
58:21:47:35:11:bc:5e:22:66:8d:b4:aa:26:27:51:
cd:00:af:3d:a1:52:bf:ad:e9:7f:9e:31:0f:e6:f3:
3f:b4:2b:81:f3:5b:c9:cb:29:d2:f3:3d:37:28:5b:
c5:b0:a9:bb:ea:1e:1d:19:16:bc:3c:b3:07:8a:34:
11:db:02:c0:be:bc:f6:4f:c4:04:04:f6:22:e3:ac:
36:f5:fd:ff:87:42:d3:37:1a:db:b2:14:c3:f9:b0:
3b:e1:a4:07:79:06:0d:54:f3:fc:51:d4:0f:48:b9:
41:c4:02:c2:11:eb:da:4e:3c:40:bf:41:52:27:97:
e2:16:c8:ab:84:0b:2c:c8:66:86:62:02:f1:4c:9d:
18:47:e2:3c:4c:73:46:80:31:3b:a0:23:b3:63:79:
03:e4:03:fd:00:dd:7b:36:7f:a0:54:4f:1a:39:a1:
ae:25:5e:21:ab:ca:fc:99:d8:5b:b1:6f:dd:56:35:
58:fa:fb:c2:06:10:a7:1c:86:00:c4:8a:6d:c3:81:
cd:86:35:3a:26:d8:ef:f6:b8:65:5d:c7:d4:d5:1d:
68:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:AA:4A:AB:81:BF:B0:30:67:B8:4E:47:08:3C:64:4C:EE:F6:BD:6F
X509v3 Authority Key Identifier:
keyid:21:CE:31:1C:8E:D6:0B:EF:1B:5E:4F:7D:3B:86:41:07:81:44:18:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ic4xHI7WC-8bXk99O4ZBB4FEGKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/6bac55-9aaa-4530-8ff4-6027a6839ae4/1/Ic4xHI7WC-8bXk99O4ZBB4FEGKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/6bac55-9aaa-4530-8ff4-6027a6839ae4/1/Ic4xHI7WC-8bXk99O4ZBB4FEGKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:fa:a8:0b:34:ef:d9:b4:fc:61:1c:0b:47:04:67:53:39:4f:
06:29:1d:e0:c1:8b:a1:30:97:5d:7f:30:c3:c0:3f:58:20:3c:
f5:76:03:86:c5:ef:b1:f4:81:4d:bc:b9:60:e4:f3:4b:5d:5f:
4e:26:47:ce:7a:2d:e7:79:72:df:8a:bd:12:4f:c0:76:b0:89:
ad:41:4a:49:4a:7a:4f:58:56:3d:a3:ea:f4:e7:c4:6b:f5:b0:
8c:52:03:7b:21:0f:44:bc:d2:06:82:5f:00:6f:d1:5b:ff:69:
8c:ee:9c:fb:a1:8f:4c:dd:bc:b7:ff:dd:e3:f6:6f:4e:f5:38:
69:07:ba:e1:b4:c2:bb:a2:e7:e6:2d:93:92:8b:d6:b7:1e:59:
1e:64:7d:11:ee:c0:74:0b:11:21:7d:0c:6d:40:17:42:ad:94:
47:f0:1c:0e:77:8e:aa:84:76:3d:da:0f:74:d5:a0:90:f9:3f:
ab:59:90:78:84:84:29:f5:9d:62:6a:95:61:b1:0a:69:70:ff:
99:74:94:c7:64:fb:7c:20:4d:18:2f:94:2b:49:75:fc:56:4e:
6d:89:b8:75:2e:a9:9a:52:56:5a:73:b1:a9:1e:f0:4f:a0:47:
b0:87:90:55:5b:8a:13:ed:f2:27:87:1e:71:d7:ac:19:fd:44:
99:5c:69:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:01:10 2025 by rpki-client