Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
File: iwUOQskY3jwnNm3vQzph8Tw7FrI.mft (raw, json)
Hash identifier: OJFirjKWZcY7nqfCrNuazybKi3YFQfQTCe+IfwphJkE=
Subject key identifier: AB:57:53:8E:D9:54:C5:ED:4B:5D:77:BD:B1:C9:0D:17:2F:4E:87:73
Authority key identifier: 8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2
Certificate issuer: /CN=8b050e42c918de3c27366def433a61f13c3b16b2
Certificate serial: 019A54BF7AA05B0E6B3CB76A4060C95D9967
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
Manifest number: 170C
Signing time: Wed 05 Nov 2025 16:00:26 +0000
Manifest this update: Wed 05 Nov 2025 16:00:26 +0000
Manifest next update: Thu 06 Nov 2025 16:00:26 +0000
Files and hashes: 1: iwUOQskY3jwnNm3vQzph8Tw7FrI.crl (hash: sFFCMo2C3NQ4OiuiC4SQVn1ioIsitE7UxzAd5eXoFaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:bf:7a:a0:5b:0e:6b:3c:b7:6a:40:60:c9:5d:99:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b050e42c918de3c27366def433a61f13c3b16b2
Validity
Not Before: Nov 5 16:00:26 2025 GMT
Not After : Nov 6 16:00:26 2025 GMT
Subject: CN=ab57538ed954c5ed4b5d77bdb1c90d172f4e8773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b6:c4:29:81:a9:7f:f8:48:d9:c4:79:f4:9e:
f4:13:e3:6f:93:b5:d8:93:fe:43:be:be:00:26:7f:
1d:ee:c0:bf:5d:17:1e:e6:b0:6b:c2:7d:ba:b5:10:
6a:19:4f:96:87:45:b8:f7:54:f9:9a:89:d1:a1:d1:
62:bc:4e:68:46:af:1d:c5:ba:7c:75:19:50:ad:da:
67:ac:6c:87:dd:b1:1a:0c:f3:38:8f:ef:11:ad:a1:
02:a1:88:aa:be:88:6f:99:98:59:ce:ae:ba:96:af:
b9:6c:69:a1:7c:ba:f9:10:79:c8:1a:79:f9:39:b5:
3f:f3:d6:8e:7e:ca:e5:7c:90:8d:ce:a2:46:e3:9d:
ec:83:40:12:a5:da:90:00:10:91:ea:bd:8a:8a:07:
b5:52:ec:9a:7c:01:8d:8a:c0:62:42:b6:7a:ee:01:
6b:a0:a9:9d:55:5c:4c:0a:5b:28:f6:75:a5:ab:20:
fb:33:ea:e2:4e:78:bf:17:c8:cb:f5:d2:c9:f3:23:
db:18:0b:33:29:e4:99:5e:0d:af:da:1f:04:99:30:
99:dd:32:a7:1c:64:77:9d:a8:4e:c0:b8:6e:6f:e9:
22:f4:78:8e:15:59:d3:e7:35:bc:c1:ae:1e:fb:f0:
9a:ca:d1:66:48:b3:02:6d:99:b7:aa:91:a6:fa:f0:
4a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:57:53:8E:D9:54:C5:ED:4B:5D:77:BD:B1:C9:0D:17:2F:4E:87:73
X509v3 Authority Key Identifier:
keyid:8B:05:0E:42:C9:18:DE:3C:27:36:6D:EF:43:3A:61:F1:3C:3B:16:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwUOQskY3jwnNm3vQzph8Tw7FrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4a6c6d-b855-4b46-b32f-cac2cfff6779/1/iwUOQskY3jwnNm3vQzph8Tw7FrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:5f:48:8e:76:06:b7:7b:62:ab:55:c2:ca:cc:ec:12:d7:a6:
94:0b:07:b6:c7:18:3e:51:02:ad:53:ca:6b:f9:5d:22:60:1f:
b0:d0:9e:d9:da:6f:b2:69:ea:8a:f8:24:08:0b:b8:06:0a:37:
70:36:9e:9f:54:2b:36:8e:d0:f8:18:a1:f4:d1:35:85:a5:44:
a8:c1:f7:7d:0f:95:8b:09:3e:fe:ec:be:31:ac:1c:c5:3d:76:
92:23:32:ff:85:c3:d8:0f:72:13:67:97:c4:5b:0a:7f:e1:fa:
f6:87:ea:58:fa:d7:18:cb:6f:a8:06:84:d2:9a:68:4b:90:95:
cd:40:1e:c6:1b:86:26:bd:ca:31:a3:69:3f:2e:44:03:54:bc:
90:33:47:1f:60:1a:c2:ed:ea:eb:c8:e6:01:8f:1c:02:e4:f4:
f2:92:79:f3:33:6d:78:1d:d7:98:38:eb:77:3e:48:38:b2:90:
21:5a:69:29:70:56:99:86:61:8c:eb:57:76:4e:58:80:62:68:
d2:24:09:59:19:4d:8e:3c:9b:13:5d:05:c1:bc:fb:26:77:95:
19:5d:f7:6e:18:a5:a2:a2:40:ba:d1:df:ec:f4:d6:be:4d:35:
ad:bb:0d:2b:7e:9d:60:50:9a:0d:a5:e4:80:47:f7:5e:0f:70:
26:ad:6e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 20:32:31 2025 by rpki-client