Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier: ibwAdf84Qvy1ANvl/xyx12doOcUVKOpu6Z7HagbV3uk=
Subject key identifier: 45:DC:A9:5E:E0:FC:06:3B:6D:11:CF:5E:1A:5B:79:DC:A9:57:F2:06
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial: 019A51874C001CC018659EAFC8C3485095EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number: 0EAC
Signing time: Wed 05 Nov 2025 01:00:12 +0000
Manifest this update: Wed 05 Nov 2025 01:00:12 +0000
Manifest next update: Thu 06 Nov 2025 01:00:12 +0000
Files and hashes: 1: P5TwA4gqR6DNAZ9Tx38K6wVBeSw.roa (hash: JFHWlXs6ts8+WEohOsphMs0bmJPDZeURLkqEXMqad1U=)
2: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: d121kUDDH5puifEQFE4PRveZdN+KZynInN8MpGQe6lQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:4c:00:1c:c0:18:65:9e:af:c8:c3:48:50:95:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Validity
Not Before: Nov 5 01:00:12 2025 GMT
Not After : Nov 6 01:00:12 2025 GMT
Subject: CN=45dca95ee0fc063b6d11cf5e1a5b79dca957f206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:af:74:ab:1e:77:4a:41:7c:05:9e:cd:7a:00:
29:13:c8:0c:22:a2:89:a2:ef:e5:9b:05:ed:7c:bb:
a3:9f:bb:30:58:67:41:69:ac:d1:59:fb:8b:19:56:
58:c8:be:62:ca:57:3a:8f:85:0e:f5:28:62:4f:b5:
86:36:c5:9a:41:da:da:ab:00:8b:82:4f:37:74:9a:
1c:5f:66:dc:1e:d1:0d:0e:34:ef:4f:a5:d6:1e:dc:
5d:7b:af:35:f4:03:71:39:27:57:47:34:aa:64:6c:
0c:5b:87:00:d9:b7:77:b6:60:25:c7:fd:c3:b6:e6:
af:ef:ef:10:de:04:9b:4c:47:ba:b1:c0:83:66:35:
fe:4b:96:02:19:ee:52:92:b5:a2:1b:68:56:d4:45:
b5:b8:9b:9a:79:5f:91:2d:35:48:79:05:d0:91:6c:
b6:b2:1e:90:57:6c:8d:22:78:40:53:54:a6:f9:71:
8f:15:31:ee:41:5a:25:9f:59:f5:96:ea:92:f0:61:
41:3f:dd:59:96:c0:c1:86:86:13:e4:7b:46:1c:e8:
75:97:5d:fa:b8:ad:06:12:00:05:a1:c1:7c:56:16:
b5:1d:34:0a:a8:89:40:b5:03:e3:83:8a:4d:50:7d:
ab:59:0c:6c:c9:5c:68:89:22:50:a2:31:72:c0:71:
8b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:DC:A9:5E:E0:FC:06:3B:6D:11:CF:5E:1A:5B:79:DC:A9:57:F2:06
X509v3 Authority Key Identifier:
keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:11:9e:a6:53:11:90:c4:a6:5b:6e:b2:ea:78:7a:e9:6f:d1:
99:3b:c9:92:06:ec:6e:21:59:1c:ae:52:d2:6e:ac:d9:20:db:
cf:ee:9c:08:44:f8:15:5e:a9:54:7c:84:42:fd:87:7b:87:a6:
8c:cc:86:39:0e:76:bc:12:14:85:ae:a7:bc:27:16:a8:6f:e1:
cc:5c:33:14:af:01:58:a0:b6:34:0c:99:ce:bd:c3:9f:5b:58:
19:43:ee:96:b2:7e:e0:65:6e:fc:48:1a:22:ee:2e:4b:08:56:
24:a9:60:e4:36:06:d2:b9:91:81:9b:bd:db:d3:05:bf:dc:9f:
df:df:55:92:6d:8f:67:ed:3a:2d:a4:cd:84:e4:ba:50:73:d3:
77:a7:9f:c3:12:ee:e4:bb:14:0c:43:ab:99:97:a0:50:cb:1c:
63:f8:40:00:0e:6a:ef:35:4e:85:a0:ce:d6:5d:1c:f9:73:48:
32:59:60:cc:8e:44:ad:cc:78:25:6d:d2:9e:c7:e5:6f:b3:6e:
f8:3e:fc:2c:ae:89:a5:55:0e:40:1d:95:5f:fd:87:6d:e9:93:
7e:53:59:41:e9:16:f7:d0:7b:7a:ad:44:67:8d:20:14:e1:60:
bc:3b:b5:77:33:0a:e9:cf:6e:3f:fb:0f:8b:44:57:da:61:05:
4d:7e:8f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:09:51 2025 by rpki-client