Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json)
Hash identifier: RF97HEV8AiYU7Ts5y91LBkfhR77o6TVzBajYIkn9OnQ=
Subject key identifier: 5F:FD:E9:99:3D:47:AC:FB:7F:44:57:C2:7F:86:2B:C4:B2:2A:41:D7
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 0198D54E5EEC7F24812F8C9A74812B4F4DE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
Manifest number: 136A
Signing time: Sat 23 Aug 2025 05:02:19 +0000
Manifest this update: Sat 23 Aug 2025 05:02:19 +0000
Manifest next update: Sun 24 Aug 2025 05:02:19 +0000
Files and hashes: 1: OIDmEPbDXYESb6L8W110fitW4aA.roa (hash: AIH3VvHzWUC8AtgPyCBt/ld6YdiGtY4TDL+tLd/3C+w=)
2: OuQJP3rTcu0if4kJ5A5ZWqxKYpo.roa (hash: UN46ctiu4ND9IXGCd4EhP/dQ+ESw5QeLedCQ9yxaLnU=)
3: WV7QPmFglb32ubsYCfgK2rSXhGk.roa (hash: 7jclXGuRVqisqCezIaon+r4NXFS6nrK/O3nscYXGo0k=)
4: WYkwsfl1LrYxcZc4hOn_dwqrnKU.roa (hash: OFI3Jc8HI7chg6jym9Pd2h5sq7FHfkNT1WJbvujMSAY=)
5: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: /gpc3BWDJm8POoWl8xKfFzHugmynVaKqWtD6tdTwOv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:5e:ec:7f:24:81:2f:8c:9a:74:81:2b:4f:4d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: Aug 23 05:02:19 2025 GMT
Not After : Aug 24 05:02:19 2025 GMT
Subject: CN=5ffde9993d47acfb7f4457c27f862bc4b22a41d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:53:c4:e4:d9:20:17:0a:d2:dd:05:17:42:29:
6c:37:d6:a7:2d:de:31:ba:be:4b:95:dd:f8:72:0a:
0a:aa:9f:61:61:01:36:71:5a:5f:0c:7f:85:5f:6b:
03:78:35:db:19:5e:2e:25:e0:60:fd:b9:b5:c3:ff:
1f:99:71:d6:f1:ff:1d:31:ca:62:17:e0:82:b6:ae:
94:c4:b4:8f:6c:a5:9a:b8:ab:b0:b8:78:71:af:13:
50:79:f9:dc:e1:95:de:e9:c5:97:4c:ff:2e:c4:68:
9e:21:75:52:cf:fb:ed:67:d9:88:bd:bb:da:42:9c:
d3:61:03:f0:5f:3a:7d:a5:bd:68:cb:7c:2f:e1:50:
c5:4f:5b:4f:21:07:be:05:93:c6:5b:4d:09:68:b8:
18:32:9e:4d:f8:39:cc:69:9a:b0:ea:04:a4:53:8f:
5b:2d:fe:e7:5a:d3:8c:05:9b:8c:94:15:4a:72:33:
38:6b:f8:82:9a:24:5f:07:d2:3e:a4:67:d2:dd:bc:
75:79:07:2d:31:af:db:92:f8:25:01:29:ca:22:25:
b3:c5:db:8f:90:98:f8:eb:c2:bb:aa:c9:b4:dd:89:
55:91:60:fc:38:a1:af:f9:24:c6:21:89:34:b4:41:
16:be:6a:6d:9f:d4:11:38:f8:14:3c:be:f9:0a:7a:
e8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:FD:E9:99:3D:47:AC:FB:7F:44:57:C2:7F:86:2B:C4:B2:2A:41:D7
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:f5:8e:fa:49:32:d1:e7:db:ac:3a:27:26:53:77:7b:1f:7e:
01:c6:a1:9c:ed:6b:78:23:3a:fd:bb:d4:95:30:ae:21:b0:d8:
c8:55:03:d0:2c:10:ff:b1:84:fc:cb:3a:02:d9:16:b6:db:a3:
5f:69:5c:12:3d:8c:98:39:13:27:54:a1:e8:02:2e:ca:aa:ad:
68:bd:2d:86:d2:0a:1a:7b:6e:41:e6:d8:be:dd:64:0d:51:d4:
90:5a:12:19:0b:53:06:ae:1c:10:30:14:5e:e8:8a:af:e1:66:
5a:67:70:3c:31:ec:7c:3c:d7:7a:67:7f:ec:7d:a1:e7:63:20:
d9:4b:9f:4f:9b:fb:c5:9f:1a:3d:8b:5b:1a:88:a7:f3:69:fb:
1f:ee:1e:3d:c9:5b:72:ba:fc:8e:ea:08:c3:dc:90:a1:f5:44:
f6:22:44:32:3f:c0:7d:cb:3e:15:49:f2:f3:15:aa:9e:e4:09:
0f:74:2b:ed:17:5d:39:d7:f1:d2:43:bf:d7:0e:d4:69:24:db:
63:64:a5:4c:a2:ae:db:53:52:71:a0:00:73:33:81:df:13:c2:
d5:56:93:66:7d:29:eb:f6:87:08:97:60:03:84:26:4f:55:ed:
45:0b:f1:6b:8c:2d:15:9d:54:1f:e2:a8:ad:bd:93:f5:ae:b8:
20:88:c7:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:20:46 2025 by rpki-client