Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: ZY7MVBRs1N9YXaVFePPOhqwynL2z7wYDvhjKSNx4DYg=
Subject key identifier: 5F:F8:40:B1:38:10:7F:61:68:4E:D9:96:EF:7E:85:9E:44:0C:17:11
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 019A51F58713357F03EFA708E4FB4378652A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: 02F6
Signing time: Wed 05 Nov 2025 03:00:36 +0000
Manifest this update: Wed 05 Nov 2025 03:00:36 +0000
Manifest next update: Thu 06 Nov 2025 03:00:36 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: J6DFBzM65dfn8y7JEVsGpw+sh0V6J6pOKddrWSu736g=)
2: nvx0QRZQO1QzuvMN00Bva6hTGZw.roa (hash: Gw59i4bicuVuHEY8V6dHsuW9MPHvsYhnw1rq0LLdv8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:f5:87:13:35:7f:03:ef:a7:08:e4:fb:43:78:65:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Nov 5 03:00:36 2025 GMT
Not After : Nov 6 03:00:36 2025 GMT
Subject: CN=5ff840b138107f61684ed996ef7e859e440c1711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:68:b7:5e:fe:a9:74:4f:c9:fd:25:b4:1f:3c:
c5:07:2c:9b:c0:92:c8:09:ef:49:97:69:21:c8:91:
5d:37:6c:ce:67:c5:85:f1:15:b4:d2:f2:3f:14:24:
78:b8:62:31:5d:f6:19:53:a5:dc:85:2c:aa:29:be:
1b:2c:78:ae:21:4f:0b:2a:b4:98:22:4f:f7:51:55:
a6:1b:e6:83:fc:0c:fc:fa:6d:61:5e:18:f4:f6:00:
9c:5e:02:cc:d3:3d:1e:c2:7c:2e:62:18:a6:f2:0d:
1b:23:43:75:f6:09:f3:2c:81:24:cc:13:ad:b3:ca:
d5:40:da:04:30:26:ae:ea:f9:f9:f6:be:35:9a:d6:
75:f4:1b:96:cd:16:55:8e:55:eb:3b:80:50:fd:b3:
ce:77:01:09:4f:22:c8:ab:fb:0f:95:7d:d8:bc:1f:
b3:fe:a8:5e:ba:63:ad:1b:09:0c:fd:06:86:e8:f6:
4b:3a:69:47:91:82:3b:25:3c:ca:a8:4b:21:fd:58:
d5:2e:a3:ec:bf:2c:fe:59:30:fc:55:fa:67:34:54:
57:a6:3b:d1:d4:88:1d:87:95:a3:8c:4b:b7:22:f7:
d5:a7:42:d4:f9:e1:84:c2:c6:65:bd:03:cf:08:f6:
05:93:33:d3:1d:95:56:74:93:02:d6:89:66:a5:51:
7b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F8:40:B1:38:10:7F:61:68:4E:D9:96:EF:7E:85:9E:44:0C:17:11
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:70:2f:2c:56:eb:fe:eb:fe:fb:89:3b:45:52:b2:4d:84:e8:
58:c5:a1:a3:92:41:e6:b0:6e:91:b9:ef:1b:05:12:eb:34:23:
bf:bc:aa:b7:0f:a0:e1:c2:4e:ec:4f:58:c8:f3:c8:00:19:c7:
e9:0d:d6:cf:c1:1e:31:0e:71:39:3c:1c:c7:a9:eb:a2:bb:1c:
07:dc:ae:1f:53:e6:e9:11:85:95:fd:76:5b:6a:82:4a:d9:34:
57:af:15:5a:78:85:0d:81:e3:d9:f2:b5:08:bb:01:39:4e:82:
b4:cc:31:1c:9d:67:00:9c:92:b0:eb:21:0f:c2:74:b4:ee:70:
22:95:3b:37:65:53:bd:db:96:74:25:5d:17:ef:1d:45:72:8c:
be:a1:f3:e8:11:41:a6:41:eb:18:3b:dd:4f:17:5d:00:d3:53:
9b:d7:71:39:c6:0b:b5:1c:d7:30:03:b8:c0:59:56:28:9f:68:
4a:33:79:93:a8:d4:44:fb:31:20:33:56:60:e6:b0:80:e0:18:
44:8a:c8:d7:e6:4d:b2:95:dd:5d:f6:58:2a:98:2e:f0:5b:2e:
8a:23:91:08:8c:6b:6e:f0:6a:e2:f6:f7:c7:d6:d8:47:f6:20:
ce:32:ef:cf:64:38:36:a9:74:4c:81:40:fb:7c:23:aa:b6:e0:
94:f0:a0:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:18:56 2025 by rpki-client