Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
File: 1IW26difsBA2mXHtiIVyBZhdSRg.mft (raw, json)
Hash identifier: mf9mkgkh8pBchcybRFwqFtJ6gwgI4CJbJQobcwByz8E=
Subject key identifier: FB:AB:55:AE:76:90:5E:3F:DC:F0:A2:80:74:E8:20:E1:4A:80:62:24
Authority key identifier: D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18
Certificate issuer: /CN=d485b6e9d89fb010369971ed88857205985d4918
Certificate serial: 019A4F2AE92B5897226062267AADBE5939D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 14:00:03 +0000
Manifest this update: Tue 04 Nov 2025 14:00:03 +0000
Manifest next update: Wed 05 Nov 2025 14:00:03 +0000
Files and hashes: 1: 1IW26difsBA2mXHtiIVyBZhdSRg.crl (hash: 2nRsKsv/0yqCftBsbVNRYxXOQ972uahMrh3CBeFg9nY=)
2: kFp1ntirY-_nRj5W9JqqX1ydSnU.roa (hash: NWOTQpr3hkXHB9fkn9UXRHKGkCwc9Gafyc4Z5IuHimc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2a:e9:2b:58:97:22:60:62:26:7a:ad:be:59:39:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d485b6e9d89fb010369971ed88857205985d4918
Validity
Not Before: Nov 4 14:00:03 2025 GMT
Not After : Nov 5 14:00:03 2025 GMT
Subject: CN=fbab55ae76905e3fdcf0a28074e820e14a806224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:47:e5:59:5a:28:6e:d5:e1:ce:d8:4e:1e:9c:
e6:a4:b9:5d:87:8b:6c:d3:aa:14:ac:80:be:58:75:
6a:75:81:b2:fc:f5:6a:8c:c7:4b:0a:65:70:32:99:
12:61:bb:6e:b3:5c:b7:74:1b:c5:24:c2:30:08:4d:
f3:00:c3:3e:f9:fe:9e:94:39:ba:14:2e:63:19:e2:
46:64:01:2d:33:f7:7d:af:59:69:bb:93:19:3c:d8:
9f:e7:5a:23:37:35:d1:3e:d7:78:28:ff:e5:be:00:
e0:61:37:2f:5d:4f:81:08:15:d4:1f:fb:a3:74:e4:
3a:a5:9f:3f:d2:7d:a6:f9:65:ef:3b:1f:21:02:40:
b7:be:f3:eb:c2:38:99:d8:9c:db:bf:16:aa:fd:6f:
13:9b:4f:24:5c:6e:00:79:b4:9a:98:90:84:ac:ef:
83:c3:8f:ac:a1:d8:92:38:ad:6b:7d:76:ba:91:5f:
ae:9c:a7:61:f9:47:60:45:7f:a9:5e:48:1d:2c:03:
88:ac:13:c3:e0:25:40:06:0d:31:50:67:72:7c:68:
9c:06:88:3e:7b:18:7b:e3:c4:72:dc:c7:d8:71:36:
84:84:16:ba:1b:40:28:cd:09:9a:aa:bc:0e:aa:00:
bc:65:26:dd:49:1f:9e:fb:2c:79:87:cf:f8:52:e3:
0c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:AB:55:AE:76:90:5E:3F:DC:F0:A2:80:74:E8:20:E1:4A:80:62:24
X509v3 Authority Key Identifier:
keyid:D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:21:ff:41:48:e4:22:a4:8f:d3:ab:37:ce:e0:7a:8a:0a:f3:
87:0b:8e:89:43:a9:81:fe:1d:5c:06:22:7e:54:a4:fa:6f:14:
ba:c5:23:5e:8c:50:1f:56:8a:2d:c4:b8:24:1e:69:f6:54:af:
2c:01:20:18:a9:18:f0:17:e1:c3:7d:1c:d4:b4:4c:df:13:ea:
52:bd:49:d1:d1:e1:0e:f8:33:9e:74:41:02:ff:90:e1:d3:6f:
31:55:a0:46:19:02:97:bd:09:a7:a5:82:de:3d:21:a2:10:43:
74:1d:5f:81:e2:36:84:b0:45:a3:40:6f:3c:2a:43:a8:be:c0:
21:8e:4e:9f:01:0e:43:07:4c:12:f2:58:8a:ac:bb:cf:ad:7c:
27:8e:1d:79:47:2f:45:49:6a:77:4f:0c:15:8d:3e:d9:11:8d:
06:4b:cf:8d:c6:45:65:77:94:e8:15:0f:16:a7:f0:18:74:71:
3c:ab:7a:05:28:50:11:23:b4:86:1b:5f:22:1a:12:96:14:c6:
db:e4:16:07:01:b7:b0:1e:2b:79:aa:f0:8f:20:a8:e6:2f:3d:
4a:4f:44:00:ec:07:3f:e4:da:c2:14:28:b9:84:6d:0b:61:51:
40:02:c0:f2:68:7e:c6:2b:44:11:be:f4:83:f0:19:2b:a6:ed:
df:ef:64:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:59:52 2025 by rpki-client