Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
File: IJPjg7LMUtXsow_rEml1k8nHiKA.mft (raw, json)
Hash identifier: R6Cwr9ZsMJHbDNiiH1rpVCtvKjI7gd/j08bX4cAKVCQ=
Subject key identifier: 6A:7D:82:E8:A1:3C:BC:7E:A5:F2:D7:32:19:44:2E:B4:48:39:2D:7D
Authority key identifier: 20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
Certificate issuer: /CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Certificate serial: 019A4F62A3AEEBA7A9AAF28499C59324EAFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 15:00:55 +0000
Manifest this update: Tue 04 Nov 2025 15:00:55 +0000
Manifest next update: Wed 05 Nov 2025 15:00:55 +0000
Files and hashes: 1: IFpZrxJhl8wQt7Uq0qRwzYFnZJk.roa (hash: eoMtlnp1ZLGeorMDixEuqh0nobwLwy70mhjbtsKxD5o=)
2: IJPjg7LMUtXsow_rEml1k8nHiKA.crl (hash: ZiiqfuzSUKxdZAjEoOD1sFqCSVlc1YhZ4Nv/uDgweec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:a3:ae:eb:a7:a9:aa:f2:84:99:c5:93:24:ea:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Validity
Not Before: Nov 4 15:00:55 2025 GMT
Not After : Nov 5 15:00:55 2025 GMT
Subject: CN=6a7d82e8a13cbc7ea5f2d73219442eb448392d7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ab:f5:4e:80:5c:9d:5c:97:c1:d9:5e:9e:b9:
11:b2:e5:0b:8d:78:b0:04:5b:80:69:0f:bb:fb:5d:
5a:bd:7f:df:30:83:fa:2a:2f:20:f5:09:72:90:de:
c2:88:9b:b5:d9:d9:af:2f:33:20:ed:d8:66:43:b3:
30:dd:bd:67:a3:af:6f:8e:45:67:ca:f6:98:a6:3a:
18:ed:47:ba:3b:07:c8:ff:1e:62:05:7d:3e:56:46:
87:34:eb:eb:33:59:df:38:5f:7b:db:b5:ae:b8:44:
a6:0a:73:82:a0:ad:e0:ef:5e:7c:62:df:4f:fb:9d:
57:72:39:32:c5:11:85:66:4d:aa:71:d5:1e:bd:1d:
7e:5c:24:49:7a:da:01:0d:8a:9c:da:4d:26:fc:9f:
82:72:1f:90:f2:a9:00:11:4f:aa:48:f8:2b:3e:9d:
a0:9e:dd:06:ce:3d:0d:e3:ed:08:b1:69:9e:a4:85:
00:4c:93:af:d3:02:49:d9:00:d2:dc:27:8c:93:a6:
96:e7:e4:13:ba:a6:94:67:f4:cb:3e:db:54:18:b3:
39:81:cf:87:3f:7a:b3:1f:cd:cf:88:f2:0d:ec:cc:
d3:68:8c:eb:28:4b:dd:44:90:92:7f:d4:5f:5a:1a:
ad:93:3b:48:1b:ab:10:76:55:2c:c3:3d:8d:22:af:
e3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7D:82:E8:A1:3C:BC:7E:A5:F2:D7:32:19:44:2E:B4:48:39:2D:7D
X509v3 Authority Key Identifier:
keyid:20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:a2:5a:c6:43:e9:ef:65:5d:9a:f7:3e:79:c1:12:83:fa:d2:
89:5b:ff:4b:aa:c9:f1:03:1a:bb:16:70:82:ca:c5:b7:b2:3b:
f8:11:db:a8:31:d4:a3:f6:d7:d6:fd:57:58:2b:83:84:0a:b0:
9a:e1:c1:9f:5d:21:11:30:ba:5e:26:87:99:f8:9e:e5:a7:5e:
7d:06:84:c1:1e:88:ef:8a:7e:f7:96:6b:c2:55:4e:e3:73:22:
2c:13:ff:2f:fd:01:d8:e3:91:9d:a0:0f:cc:93:67:f3:6f:c6:
0f:61:81:38:1d:4c:3a:f9:64:08:77:93:21:5a:29:c9:f3:ca:
40:dc:92:c2:5d:a2:b9:c4:fe:b5:d1:d6:b9:9a:d3:dc:8f:e5:
a8:31:61:00:b9:9c:86:e9:8b:2d:65:6d:a9:c9:02:69:e3:17:
a3:e9:58:bc:a1:9e:cf:e6:17:b2:39:94:f8:29:84:87:f0:0d:
37:b6:e8:01:39:bb:f2:9a:b3:4b:f2:18:0d:3d:59:f5:2e:5e:
fa:21:40:f7:2a:4a:c4:85:1a:b8:8c:d2:54:91:aa:85:10:b1:
35:d9:86:05:f1:92:15:f6:dc:5b:90:c0:c8:4d:e3:b5:70:c1:
85:eb:ca:dc:ea:b2:d3:d0:17:87:88:8e:29:1d:24:5b:ef:32:
0f:72:bb:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:45:05 2025 by rpki-client