Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: C74Veufrm7on3sYqXFVFftpOz3VNTydV/lzGPb7q/gU=
Subject key identifier: 78:83:3A:34:75:5F:DD:9E:11:80:BF:4B:F9:A4:5A:D3:3E:DD:5C:DC
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 0199FE0FDC649D2391A97FECB52F765F6B03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 104C
Signing time: Sun 19 Oct 2025 20:01:16 +0000
Manifest this update: Sun 19 Oct 2025 20:01:16 +0000
Manifest next update: Mon 20 Oct 2025 20:01:16 +0000
Files and hashes: 1: OZKug-HD4Xa2ZWdFBgCPcOgskwk.roa (hash: 3+egBPFrVIi/azwFyFARnF9adwzzIgSQuiDCKqIhA8c=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: wi/a03r1lzSPIgyWF3+LTkEQY0/JwouCpy/qZsbpF0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:0f:dc:64:9d:23:91:a9:7f:ec:b5:2f:76:5f:6b:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Oct 19 20:01:16 2025 GMT
Not After : Oct 20 20:01:16 2025 GMT
Subject: CN=78833a34755fdd9e1180bf4bf9a45ad33edd5cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:82:67:a6:95:00:cb:99:58:48:ab:46:f4:d2:
f0:e0:ee:48:42:7f:54:b6:81:e8:3c:8e:7c:27:fb:
a4:35:71:b5:a4:ea:1c:5b:22:15:88:3c:8e:ba:bf:
6b:fd:d9:95:0e:d4:ce:60:33:ff:d5:d7:a7:19:47:
35:a3:59:52:20:c3:be:a3:f9:1b:b6:c5:26:d9:26:
c3:53:57:15:13:86:c3:16:6e:8b:61:26:69:07:d5:
5c:92:79:d8:11:d4:ca:4c:93:87:d3:d8:2c:da:e7:
00:d0:d0:7d:5a:4a:e2:4f:bf:bf:8b:88:df:42:8f:
84:dd:4b:ca:99:42:f4:a4:8c:d4:25:48:0d:38:c9:
41:c1:aa:00:7a:87:a0:c7:79:58:b1:cd:b4:9a:1a:
11:d8:e4:ed:e2:30:47:04:5c:a1:44:0c:e3:01:27:
37:d0:ee:f5:57:15:4b:f6:dc:67:ce:39:e3:29:32:
c1:84:b6:56:4b:5f:71:42:71:be:88:51:cf:f9:13:
50:28:66:a8:58:ad:17:8e:65:1f:a7:7a:f2:3e:43:
14:12:9e:83:d3:c8:db:32:22:59:c7:12:c6:7f:bb:
a0:5d:d4:f5:eb:03:67:cf:49:5f:a1:54:96:bb:9b:
b5:98:ff:13:84:ad:54:13:49:be:16:c1:8b:e2:56:
01:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:83:3A:34:75:5F:DD:9E:11:80:BF:4B:F9:A4:5A:D3:3E:DD:5C:DC
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:5f:97:68:c1:af:28:82:45:de:7a:13:d0:45:da:1f:22:47:
0f:65:02:37:4f:c1:35:27:f3:aa:66:48:41:62:a7:57:78:2e:
5d:7d:c8:6e:91:2a:4c:98:bb:ec:64:49:02:af:a2:01:fa:b0:
69:f2:98:b0:24:9c:8c:ec:83:14:72:a3:0f:c6:16:c1:70:f2:
3c:b3:98:c7:9f:1f:82:16:e8:37:a8:77:b0:46:c2:2b:64:27:
62:32:e7:42:f5:6d:1b:fc:ce:c6:13:1a:da:6c:28:99:92:bd:
0a:0c:54:e9:13:06:c1:75:ff:30:37:33:89:c1:ab:33:ff:ef:
6a:92:1a:45:10:8e:28:63:4e:d6:41:39:48:7a:05:0c:06:0c:
21:0f:48:e9:f9:91:5c:a8:f3:a3:fb:dc:2c:7e:7d:d4:0e:61:
91:7c:ad:d9:14:75:60:ef:a4:dd:13:06:4c:9f:f1:ea:42:5a:
f8:a0:5c:f3:30:56:24:d2:ef:a3:bd:da:d2:0c:8c:38:4d:b4:
06:6d:27:4f:09:86:69:81:b6:75:4c:76:c9:92:e5:a9:43:3d:
e4:84:be:84:f0:21:20:8b:06:b1:01:7b:0f:04:fc:a1:0f:69:
d0:d2:92:63:13:05:2d:9c:8e:56:dd:e8:1e:9a:01:c5:6a:42:
ac:67:48:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:08:45 2025 by rpki-client