Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier: 4brLKd/WpqSMRJOGvpZ4BZZ3eF913ZP5YSaqzO668zM=
Subject key identifier: 1B:47:D9:0C:1E:86:EB:86:9B:B2:55:B8:A8:5F:0B:43:6D:60:5F:A0
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 0198D6981811067A138BB5183F15EEBA637E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number: 10D7
Signing time: Sat 23 Aug 2025 11:02:28 +0000
Manifest this update: Sat 23 Aug 2025 11:02:28 +0000
Manifest next update: Sun 24 Aug 2025 11:02:28 +0000
Files and hashes: 1: 1g597y06foQbOFcS_h93SwkhNOQ.roa (hash: TZdC67NT8fkd1drCN7n7TEHOt/q1UG1cqUfoMBev2T4=)
2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: 3uAIT5g+sM3RmAA3m1qvrLwhkdCFzcDbcyl+5J4zpHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:18:11:06:7a:13:8b:b5:18:3f:15:ee:ba:63:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Aug 23 11:02:28 2025 GMT
Not After : Aug 24 11:02:28 2025 GMT
Subject: CN=1b47d90c1e86eb869bb255b8a85f0b436d605fa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f4:bc:18:c2:2c:f5:de:35:6b:10:6b:7d:50:
ee:30:ba:71:8c:a4:91:53:2f:a6:d6:e5:91:19:e1:
b7:bc:07:21:f3:c0:06:a2:bf:60:c5:a1:66:db:b1:
61:a4:db:84:11:d8:23:11:79:79:38:ae:e3:10:06:
f7:6a:7c:ec:d1:e0:02:8f:e5:a3:6b:a2:ed:97:8b:
dd:9c:cd:a8:b1:a3:79:a5:b3:b4:76:ee:3f:88:e6:
c9:3c:8a:34:a3:3d:ad:14:74:8b:4d:ad:46:c8:fe:
54:9c:5b:db:e0:ac:1c:3a:91:f1:40:f0:23:a6:e8:
1b:20:e1:1d:2e:df:ec:20:55:78:13:ad:0c:c4:30:
f1:b0:dd:3e:bd:e6:5b:18:43:9e:3a:da:d2:c6:59:
e7:8c:b1:bd:ff:30:82:b4:64:ce:be:11:32:c2:d8:
2b:09:65:11:1c:ab:fd:36:b1:73:bf:8d:12:e2:dc:
29:b7:ce:f8:29:3e:0f:43:f9:29:8e:81:40:45:7b:
7c:0c:92:8c:5a:d9:29:32:83:a4:bb:f2:57:f9:75:
3b:09:35:49:5a:6f:19:1e:e5:a3:d2:5d:93:e9:10:
84:e5:39:47:49:20:a5:1e:45:c0:4e:3e:ee:ad:13:
50:7a:6a:97:6f:6e:6b:98:92:1e:41:e4:52:66:d8:
a6:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:47:D9:0C:1E:86:EB:86:9B:B2:55:B8:A8:5F:0B:43:6D:60:5F:A0
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:2f:2f:eb:42:49:85:b2:08:4d:25:40:1d:9b:13:04:e3:fd:
5a:e6:1d:f9:a2:a1:ac:d1:82:d9:50:fb:d5:eb:07:da:c2:23:
df:c8:a9:d9:37:1d:27:4a:0b:ad:fa:7b:ef:5d:94:19:be:f9:
d8:ff:e6:2b:3a:91:d3:21:79:10:af:ca:c3:74:e1:ce:d5:46:
ba:93:6f:0d:f7:0d:01:34:ea:a3:4c:44:58:02:60:c6:a4:ea:
a0:53:ed:f5:43:06:45:4f:b4:ba:e2:c5:91:f8:34:d9:89:bd:
99:12:88:f1:2f:34:e6:99:6b:2e:58:bf:c9:a4:f2:4d:ad:e7:
cc:75:ea:f6:4b:9c:6d:4c:0e:c2:63:29:89:5c:e3:af:2e:a2:
f3:aa:0f:ce:10:79:1c:c1:52:e9:08:74:7e:7b:06:d1:eb:99:
70:02:f4:d9:1d:8b:9d:1b:c9:31:9f:5e:60:6b:fc:27:b0:4d:
52:82:f5:a8:ef:6a:79:b4:db:d6:1a:46:39:af:70:d5:9b:15:
8a:3b:af:ee:c3:a5:80:59:6f:40:bf:9b:0e:19:b2:e5:dd:af:
3f:4c:f6:bf:b2:65:f4:33:31:29:be:44:7d:f3:d5:d7:4d:45:
c6:01:e8:32:5e:f5:61:15:4e:41:6b:59:25:6e:87:61:8b:16:
6e:3c:15:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:43:40 2025 by rpki-client