Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
File: I9FK_odQITwoDltovvsYhm95SX8.mft (raw, json)
Hash identifier: OBWDOFacUwTGmNdiiqMBKrNKKoB02VoTjanUisPYtmI=
Subject key identifier: 04:66:71:D5:81:0F:B2:0A:AC:B6:CD:3F:2F:36:12:1A:B1:AD:E8:61
Authority key identifier: 23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
Certificate issuer: /CN=23d14afe8750213c280e5b68befb18866f79497f
Certificate serial: 0198D472C3BD782347CB0A7BD9A387707039
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
Manifest number: 02CA
Signing time: Sat 23 Aug 2025 01:02:27 +0000
Manifest this update: Sat 23 Aug 2025 01:02:27 +0000
Manifest next update: Sun 24 Aug 2025 01:02:27 +0000
Files and hashes: 1: I9FK_odQITwoDltovvsYhm95SX8.crl (hash: RayKr5icQ4CAeQfp2K/KzoA/crXq6BqJGo+TmM2fIeI=)
2: bfd_WpvacXpVJP__dq6vej5IyyY.roa (hash: /B+pNt8vIwVV5x8COrKPeKukz7hh0c0T1g3kvtIg6Z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:c3:bd:78:23:47:cb:0a:7b:d9:a3:87:70:70:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23d14afe8750213c280e5b68befb18866f79497f
Validity
Not Before: Aug 23 01:02:27 2025 GMT
Not After : Aug 24 01:02:27 2025 GMT
Subject: CN=046671d5810fb20aacb6cd3f2f36121ab1ade861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:41:1e:50:64:9c:24:e6:e7:16:6e:47:ca:1f:
5a:d5:2d:91:76:53:ee:ac:9b:4d:d7:0c:a9:d8:fa:
9c:24:8b:16:4c:02:8c:33:1d:9b:d5:de:fc:43:bc:
d5:b6:30:a9:a7:b8:57:a2:17:46:ce:19:92:fa:09:
d1:7c:e9:8a:e4:c3:30:ca:dd:f1:dd:8f:15:24:aa:
19:b2:13:bc:97:9e:f8:7d:f9:b2:c8:b1:21:ff:67:
3e:ce:b2:ae:9a:72:2d:53:f4:eb:6b:e6:51:79:f9:
84:4f:51:3e:33:c8:be:49:48:8a:ad:e5:82:84:aa:
d5:8e:c5:04:b3:b0:60:6d:6d:f7:06:f5:83:33:18:
28:16:1e:46:d3:ed:1b:76:d9:9b:c9:09:7f:d9:d5:
8e:b9:f0:ee:b8:27:5f:90:e4:bd:55:c0:d2:40:7d:
5f:7d:aa:25:e8:1b:98:b3:63:64:88:44:c9:16:65:
81:82:34:77:69:d0:37:0d:16:99:6d:dc:1b:d8:3b:
06:ec:cd:b4:48:44:72:bb:a2:90:6a:2e:7e:64:51:
a8:15:49:99:07:51:2c:7d:d1:10:5a:a7:bf:9f:44:
d8:c1:ca:f5:7a:d4:6c:de:ea:b6:ba:1b:d1:ef:89:
f6:a6:83:5e:ef:d6:91:67:e4:86:51:88:d2:1d:c8:
07:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:66:71:D5:81:0F:B2:0A:AC:B6:CD:3F:2F:36:12:1A:B1:AD:E8:61
X509v3 Authority Key Identifier:
keyid:23:D1:4A:FE:87:50:21:3C:28:0E:5B:68:BE:FB:18:86:6F:79:49:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I9FK_odQITwoDltovvsYhm95SX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/89f845-5765-4c11-92cd-8472ca40f7a7/1/I9FK_odQITwoDltovvsYhm95SX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:23:42:b7:80:c3:4b:53:37:0d:5c:2b:eb:80:9c:6c:6a:87:
2b:31:c0:30:3e:43:cd:5c:40:4b:c3:07:6a:00:55:5f:d4:96:
ac:9a:dc:06:aa:09:00:0e:0b:af:25:e5:c1:a7:07:37:80:05:
db:2d:77:6f:5d:b5:d0:0c:0a:5c:10:ca:70:db:07:b6:0e:8f:
87:0c:2f:90:e7:7b:77:a8:67:58:4b:8e:b5:17:cf:6e:46:c8:
4f:13:66:bb:e3:27:bd:3f:cc:ed:46:80:2e:1b:44:1e:60:7f:
73:76:f2:15:d4:c4:a4:fa:a4:9c:03:fb:e9:2d:e0:49:11:13:
4a:cb:fc:a9:7a:35:43:b3:df:09:9d:4b:44:7d:30:45:dc:8d:
84:20:2c:5a:58:14:ea:16:ab:5b:39:fe:0e:f9:55:45:e5:14:
92:fd:4a:57:00:46:d3:14:91:34:de:03:1f:d5:31:8e:49:25:
7b:b4:49:1f:d0:70:ca:c4:4e:1f:04:7d:cb:d2:a4:54:c9:bc:
fc:63:49:2d:f1:3e:53:24:33:0d:d8:7b:f8:b2:f3:b3:7b:06:
b6:78:bd:0d:3f:0e:c5:d2:bf:42:ee:a1:cc:a3:15:51:1b:2e:
c6:23:a0:ba:56:a4:1c:90:3b:5c:2c:17:34:25:f1:63:60:d3:
8d:1e:51:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:11 2025 by rpki-client