Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
File: iOpSVfiNS5VxicFC-KxWgcUMaKY.mft (raw, json)
Hash identifier: Zg9kjWyBT/WoPDduSGBsgjdSoyOto/Q3tqckT8IHkJU=
Subject key identifier: 69:D3:21:A3:FF:01:CE:3D:7C:B4:4C:4E:F9:33:B8:6C:2A:34:49:0E
Authority key identifier: 88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6
Certificate issuer: /CN=88ea5255f88d4b957189c142f8ac5681c50c68a6
Certificate serial: 019A4F2B2696A57053AAB18FA636A54D7829
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
Manifest number: 0992
Signing time: Tue 04 Nov 2025 14:00:19 +0000
Manifest this update: Tue 04 Nov 2025 14:00:19 +0000
Manifest next update: Wed 05 Nov 2025 14:00:19 +0000
Files and hashes: 1: AhbInrBuBxUhLDDb6t4H_dnP0SQ.roa (hash: LnUMs+GFvbcxwBQi1CgG4kL2ZNmGdakKt42fC58+8no=)
2: iOpSVfiNS5VxicFC-KxWgcUMaKY.crl (hash: /9x6999xCzSpToEOl4Xq0fiVE1GMKcG4+2umlx0GOrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:26:96:a5:70:53:aa:b1:8f:a6:36:a5:4d:78:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ea5255f88d4b957189c142f8ac5681c50c68a6
Validity
Not Before: Nov 4 14:00:19 2025 GMT
Not After : Nov 5 14:00:19 2025 GMT
Subject: CN=69d321a3ff01ce3d7cb44c4ef933b86c2a34490e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:86:43:d9:42:ff:45:7d:de:fe:19:f3:ab:c8:
a0:85:df:c5:64:c6:06:c6:67:5e:57:bd:81:6c:95:
2d:d4:8d:b3:7b:6c:8b:eb:e5:16:b6:68:54:27:8e:
99:ea:e0:0a:1d:b5:3f:a1:60:e2:01:d7:bb:a1:bf:
c2:c4:a0:54:24:c4:29:f5:4b:b8:1a:ce:f8:8e:b4:
43:e6:1e:b8:b0:f3:16:f5:d6:66:34:01:5e:e6:3d:
49:46:d6:9b:aa:c4:81:13:59:43:e2:4c:bd:f3:37:
40:3c:5f:a2:20:6b:9f:ef:44:05:d0:92:29:88:a2:
04:f6:aa:65:09:2e:5a:43:44:6d:48:87:50:f6:a9:
c1:6c:35:ac:b6:19:8d:84:36:d0:63:8c:61:60:fe:
75:49:95:f7:74:e7:91:13:6b:bb:6f:eb:5a:ae:7f:
13:d1:07:89:0a:b9:4b:ca:f9:71:fc:60:31:1a:6d:
02:d5:bc:24:39:30:a5:91:c7:85:09:a7:9e:29:ea:
af:44:f7:a3:90:aa:04:66:94:73:8a:cb:98:e9:a5:
99:ee:dd:cb:07:a8:a9:2a:27:3d:82:79:1c:4c:5b:
2f:82:da:94:17:16:05:78:95:0b:51:71:ef:c9:f7:
6c:ba:41:e7:18:c7:b5:0b:d7:14:b5:84:72:0d:66:
39:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D3:21:A3:FF:01:CE:3D:7C:B4:4C:4E:F9:33:B8:6C:2A:34:49:0E
X509v3 Authority Key Identifier:
keyid:88:EA:52:55:F8:8D:4B:95:71:89:C1:42:F8:AC:56:81:C5:0C:68:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOpSVfiNS5VxicFC-KxWgcUMaKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bb8727-78f7-401f-9339-e7ce26884be6/1/iOpSVfiNS5VxicFC-KxWgcUMaKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:2c:b5:72:49:09:98:c0:90:fa:15:f8:9a:66:ef:1a:7c:c4:
a2:d8:13:c6:c5:dd:3b:df:be:67:9f:b3:87:10:4b:33:21:ba:
84:c8:9e:f8:46:3f:28:b4:75:0a:01:d8:2d:9a:81:bd:14:77:
fa:64:00:a3:97:b3:8d:7a:e2:fc:27:d4:22:8e:45:96:26:f1:
8b:a8:18:9d:85:2d:11:58:7a:bb:0d:fd:be:7a:44:7b:a9:28:
5e:5b:ae:ef:05:f1:78:84:ca:d0:04:c8:13:34:17:be:42:bd:
f4:8f:9a:21:9e:53:54:a6:49:65:8a:fa:63:ff:b0:a4:e5:a4:
9f:5d:6e:05:33:cb:ec:de:41:97:4d:ce:9b:ba:20:7f:75:54:
d2:c9:f9:2d:b6:78:08:5b:9b:56:df:eb:fa:7e:1c:36:1a:8c:
c3:e1:e0:c1:01:be:fb:7f:ed:72:92:dd:ef:72:f0:4a:48:16:
eb:7b:04:2d:91:2d:4f:6e:70:a4:c5:f8:97:04:6f:55:3d:9a:
a3:a5:1c:68:6a:f3:f3:40:54:bf:0c:30:2b:ba:68:82:62:30:
65:3a:fc:a5:a0:7e:09:58:40:e2:0a:b9:6f:4c:a1:17:7e:26:
59:9d:5c:5b:05:9f:7c:20:51:7b:a1:71:37:02:ec:89:63:ee:
9b:6d:52:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:25:31 2025 by rpki-client