Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: R9EEF0h5xEdi31aZq2Vlj9SCltwPWKlijVlGFusZ7I0=
Subject key identifier: 17:05:E2:DA:7E:CB:0E:42:8C:CF:3C:97:30:A1:5E:54:28:70:B6:CF
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 0198D697FCD681BCEA6BD389538E59BCF65B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 0FB3
Signing time: Sat 23 Aug 2025 11:02:21 +0000
Manifest this update: Sat 23 Aug 2025 11:02:21 +0000
Manifest next update: Sun 24 Aug 2025 11:02:21 +0000
Files and hashes: 1: OZKug-HD4Xa2ZWdFBgCPcOgskwk.roa (hash: 3+egBPFrVIi/azwFyFARnF9adwzzIgSQuiDCKqIhA8c=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: 0m7WdLsSmc43uBu7nvJdZDS27d1eyoS1g4UfAA1uWVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:97:fc:d6:81:bc:ea:6b:d3:89:53:8e:59:bc:f6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Aug 23 11:02:21 2025 GMT
Not After : Aug 24 11:02:21 2025 GMT
Subject: CN=1705e2da7ecb0e428ccf3c9730a15e542870b6cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:30:af:b0:75:8f:cf:8a:49:58:1d:3e:1c:bf:
73:af:48:4b:f0:47:5d:d5:b7:65:a9:ef:73:0d:6a:
08:41:10:2d:1e:9b:be:c0:f8:6a:db:b2:e7:2c:97:
f0:61:6e:5f:29:26:b5:0e:e0:8e:d1:16:60:d0:17:
39:80:3e:8a:2b:87:8e:30:e1:85:ae:23:a4:e0:43:
2a:0b:96:90:ef:72:07:63:8d:b8:9a:d1:d7:52:98:
f9:ea:7b:a6:44:c9:0c:3f:98:22:5b:7c:6e:57:6d:
68:e4:6e:52:26:00:62:f6:d0:19:fb:29:cf:1b:1e:
0c:7b:92:7f:91:af:1e:d7:cb:d3:58:f1:04:42:f4:
6a:c1:c6:60:14:f0:80:8c:5f:26:2a:9c:99:fa:2e:
42:e5:92:71:ca:7b:c3:1f:1e:fa:ce:a9:c1:43:2c:
74:91:31:90:5b:73:fa:98:25:12:bb:a4:c4:ae:ec:
04:3f:2c:1c:4b:1a:0a:37:b9:60:53:fe:80:4e:32:
2f:0c:18:4c:aa:1e:fb:e3:b8:b4:c0:6c:19:ae:1a:
4a:38:38:3a:25:a2:a1:3b:b5:65:b4:dd:5a:df:c9:
46:f0:32:ee:49:89:76:36:fb:2e:e4:c2:5d:b1:b0:
48:29:09:1a:69:8d:b0:b7:18:2b:96:51:7e:82:dc:
38:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:05:E2:DA:7E:CB:0E:42:8C:CF:3C:97:30:A1:5E:54:28:70:B6:CF
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:18:72:34:38:0d:b3:f3:32:92:dc:63:44:a6:38:a2:9e:7b:
a0:ca:42:3f:b0:36:85:75:bb:07:64:17:54:e1:db:d4:94:2c:
43:00:b0:d2:f5:e9:82:fd:16:41:f7:19:75:d6:96:21:98:fe:
b5:e5:6e:fb:88:08:1a:dc:78:26:81:68:cb:1e:b2:14:f1:8f:
5a:6c:ab:68:94:0a:fb:04:0f:09:3e:eb:4c:9b:ff:eb:34:60:
35:93:98:46:1b:20:8f:ed:07:2c:72:98:29:83:95:15:04:11:
97:29:1e:c3:6d:9c:13:5b:93:32:50:07:ea:35:bc:ec:c8:d6:
97:34:ed:f8:49:13:63:3c:7e:75:de:16:02:9b:e3:b4:62:63:
14:61:0e:fe:2d:53:3b:ec:c2:00:33:02:39:b9:2d:a3:6d:8b:
fe:78:32:50:16:79:37:38:c2:e1:7b:fe:f0:a4:14:f0:d2:18:
1c:55:98:fc:6b:24:00:40:38:0b:2a:e7:5a:be:6c:6e:23:1d:
42:d3:55:33:52:73:d7:76:1e:ad:44:de:05:8a:f6:bb:cc:b8:
98:a0:0b:64:19:3f:7a:0b:43:ec:e4:75:c1:90:f5:6e:42:d4:
04:4f:4b:9a:a7:e2:87:ee:bc:85:9d:e4:7a:fa:01:ca:3c:5a:
90:f9:53:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:29:00 2025 by rpki-client