Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
File: iAsPesuH0TTDhZ1y0NGmHkdRusA.mft (raw, json)
Hash identifier: pPsif7cO7kfHN8au04LWYDOREm+SXIeRaRdhfNMDbOM=
Subject key identifier: D7:17:D7:1F:32:11:10:1A:A0:2B:22:0B:5E:6A:AC:03:96:36:1D:13
Authority key identifier: 88:0B:0F:7A:CB:87:D1:34:C3:85:9D:72:D0:D1:A6:1E:47:51:BA:C0
Certificate issuer: /CN=880b0f7acb87d134c3859d72d0d1a61e4751bac0
Certificate serial: 0198D54E925B9A945FC289875BBE2AA1E663
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
Manifest number: 0CF4
Signing time: Sat 23 Aug 2025 05:02:32 +0000
Manifest this update: Sat 23 Aug 2025 05:02:32 +0000
Manifest next update: Sun 24 Aug 2025 05:02:32 +0000
Files and hashes: 1: UubezK0uH4JLqxbhgPEY0N-6nSw.roa (hash: Oagl7z5x1jSe2CWCzxXuth3kqDf2dweMIxQL2+jadVg=)
2: iAsPesuH0TTDhZ1y0NGmHkdRusA.crl (hash: 3bT6zS0dr5EsQkw51v5ZUMNPwSm7rEFgu+YVJVzbhG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:92:5b:9a:94:5f:c2:89:87:5b:be:2a:a1:e6:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880b0f7acb87d134c3859d72d0d1a61e4751bac0
Validity
Not Before: Aug 23 05:02:32 2025 GMT
Not After : Aug 24 05:02:32 2025 GMT
Subject: CN=d717d71f3211101aa02b220b5e6aac0396361d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:31:00:2e:ae:72:f1:0b:1e:8b:fa:e4:5e:75:
ee:1d:e6:60:51:fa:82:a8:35:99:ed:e1:12:de:31:
9c:13:43:22:05:e7:06:e9:81:c7:84:37:c9:0f:8d:
70:d8:7f:7d:b2:13:ae:42:d2:a7:48:86:90:d5:fa:
56:81:83:ad:2c:6b:62:78:83:68:30:97:84:21:ce:
b9:2c:32:09:51:ba:99:38:f7:10:b2:44:22:56:d9:
dc:00:cb:88:f2:0f:6f:52:74:65:93:bf:cc:73:9f:
db:58:f1:89:ad:1f:a6:30:a5:45:46:ec:1b:9b:03:
57:99:2a:7e:d4:c0:f9:47:f3:fc:a0:c8:e8:cf:58:
c0:59:a7:70:64:3e:6f:6f:51:45:f7:98:f8:88:15:
01:38:43:e7:9b:0b:64:77:0b:12:df:0f:83:c5:e4:
da:52:7a:7c:0f:69:49:c4:f5:1c:8b:9f:a9:45:eb:
54:ae:69:17:7d:c8:f6:ce:58:7e:3c:45:74:c1:d8:
11:c0:eb:d1:9b:f3:8a:36:58:f1:9a:66:d9:05:f6:
4a:f4:db:d0:fe:50:ff:df:10:46:c8:3f:fa:25:6b:
7e:35:32:9a:79:9d:ab:2e:84:cc:65:82:64:51:e2:
46:22:01:c7:dc:76:ab:0f:5e:a0:7e:e8:b2:66:3f:
87:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:17:D7:1F:32:11:10:1A:A0:2B:22:0B:5E:6A:AC:03:96:36:1D:13
X509v3 Authority Key Identifier:
keyid:88:0B:0F:7A:CB:87:D1:34:C3:85:9D:72:D0:D1:A6:1E:47:51:BA:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:6d:28:7f:4c:91:e9:f7:08:42:ab:31:67:c4:51:6c:d2:19:
6c:8d:c9:0c:ce:c9:b4:d1:ea:2b:99:02:1e:cd:95:39:88:c3:
de:e5:c8:56:f8:61:b0:2c:a2:9d:05:53:e9:9c:8a:a9:58:04:
a0:4f:09:07:b6:e3:e0:61:80:3f:6c:00:67:8f:2b:2c:81:0f:
7a:a8:7e:66:fa:28:0f:f4:39:9b:c2:05:8a:55:d1:0a:8d:4e:
ce:a1:ce:39:10:77:7f:3c:6d:7d:81:37:d7:95:cb:2c:51:e2:
3b:1f:f2:86:94:a3:be:c7:20:6e:30:f8:1a:41:9b:0d:6c:14:
67:c0:f4:f6:3c:75:76:5f:7e:2b:83:47:9c:c9:0d:f8:62:62:
36:a6:07:ab:e5:e7:9b:61:6b:2f:f7:cb:a8:7b:c3:ca:30:f9:
3f:7c:fe:b6:95:d0:5d:4a:7e:42:45:76:6b:10:bf:f3:cf:6f:
56:ac:53:36:92:27:6c:a0:de:19:ed:79:f7:e6:1f:ab:ac:54:
14:73:3f:ed:78:76:ea:d8:bd:08:6a:cc:fa:6d:12:77:f2:36:
7f:d5:ff:ce:e1:40:ef:9a:06:63:6f:41:4a:0b:80:fa:1d:95:
c9:eb:b9:d3:a3:60:33:dd:e9:35:da:ba:36:9d:76:a1:5d:72:
26:da:5c:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:27:50 2025 by rpki-client