Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
File: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft (raw, json)
Hash identifier: mgud7NLaNoE35CYosoduTCQ8GGiN89vTjoC3V/g1Hh0=
Subject key identifier: ED:49:EF:F9:F7:C8:93:93:F4:2F:46:BF:E5:82:96:FE:34:39:17:B6
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 019A4E86BB6E255DE92BBC3BA6FA816C59F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
Manifest number: 1129
Signing time: Tue 04 Nov 2025 11:00:43 +0000
Manifest this update: Tue 04 Nov 2025 11:00:43 +0000
Manifest next update: Wed 05 Nov 2025 11:00:43 +0000
Files and hashes: 1: Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl (hash: 0CR5DVsvzdGxXkq0arwXU4j2i8gHQVpa08jgC3HSJWg=)
2: qaZCGy8ImKVej6couAVTC--aSzI.roa (hash: dKUZq0YlDWheyPATDjfQQ4lypZzKgD8qgqRTkln0uKk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:bb:6e:25:5d:e9:2b:bc:3b:a6:fa:81:6c:59:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Nov 4 11:00:43 2025 GMT
Not After : Nov 5 11:00:43 2025 GMT
Subject: CN=ed49eff9f7c89393f42f46bfe58296fe343917b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1a:1f:74:1f:b2:58:a4:57:91:bc:84:d6:51:
fe:27:45:4d:3a:30:20:07:cd:9b:2f:5f:09:ae:da:
53:db:f2:24:e3:b9:5d:72:82:e2:67:51:d8:75:5b:
9e:06:9d:51:52:10:53:a3:8c:2f:ac:e7:79:07:e4:
07:8d:84:d5:cd:78:a0:a8:ed:e0:d4:62:c8:0a:7d:
75:54:36:5b:91:bb:c5:e4:d3:87:b5:87:3e:88:a9:
a9:66:5e:e8:e9:bd:24:e5:d0:e7:85:91:e5:6a:23:
e8:07:5c:7d:a6:f7:78:31:4c:9b:0f:2a:d1:13:cb:
0a:c6:35:7b:98:c3:31:8a:78:a3:29:cf:73:b3:95:
39:aa:a8:f7:cb:d0:b1:ac:c4:75:8a:fe:d5:9d:da:
19:fd:1b:29:1e:d6:32:b9:d3:a4:34:f2:9e:68:ba:
aa:8f:79:e8:cc:95:4c:71:5e:b4:9d:13:75:09:93:
88:fc:d4:1e:10:f8:6e:62:a7:c7:9d:8c:9c:62:c2:
f6:43:e8:3e:d6:bd:2c:7f:e3:1c:32:b8:8d:a2:c0:
d7:05:d3:ef:a2:7c:da:88:88:ad:89:8a:17:a0:65:
c8:cf:90:62:a4:b1:fb:9e:13:42:ca:c1:a5:4a:ba:
2b:a3:a3:23:76:80:99:67:5a:1d:c6:9b:85:0b:9b:
5d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:49:EF:F9:F7:C8:93:93:F4:2F:46:BF:E5:82:96:FE:34:39:17:B6
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:e0:bb:85:cb:3c:9e:2a:21:d9:fc:45:cb:2b:a2:9d:74:ec:
a8:bc:be:ee:4d:cb:1a:61:b5:4d:c4:de:ab:eb:ca:cb:e2:98:
6e:67:a9:ec:63:bc:fd:0b:32:e1:26:5a:e4:4b:1c:6a:d3:f4:
0e:9a:5d:d6:3c:77:3a:8e:2a:9d:be:29:77:7e:f8:74:90:40:
69:7e:26:cc:8e:00:11:34:4d:91:69:10:49:69:55:25:8a:91:
c2:54:c8:8a:85:cf:a6:a4:c9:fe:d3:b4:81:5c:c7:0a:2d:53:
84:96:be:5e:ca:0a:8e:19:7b:ec:58:de:d2:a6:f1:a0:10:76:
0f:42:e2:4e:e5:dd:d3:31:d5:d8:02:35:b1:94:34:86:f9:7e:
2b:95:2a:14:d4:ff:50:9c:e8:d6:de:0a:95:1b:a2:d8:7d:c8:
3d:6a:5a:ce:6e:db:fb:4a:6a:9a:ab:1a:9d:32:37:a0:b4:4f:
5d:d8:00:f1:a8:b5:a9:70:04:81:6c:17:70:1f:22:65:e5:43:
e4:d5:18:b5:c8:60:47:55:96:f7:b7:14:34:f9:47:79:84:a4:
15:6c:d0:2a:f6:d4:6d:a2:d3:52:c9:c9:7e:e4:2d:84:41:6c:
26:49:9e:af:21:b2:83:0e:a7:3c:2e:c7:29:66:d6:0e:4e:32:
f3:88:9e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:01:02 2025 by rpki-client