Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
File: IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft (raw, json)
Hash identifier: Ug7S0tI0c5R4nMN+BUTGhivEtb2JkS+tKmLqRTB6Gtk=
Subject key identifier: 74:37:20:EE:0E:2A:D7:C3:E6:08:36:F8:2E:06:1E:8A:41:77:49:C6
Authority key identifier: 21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
Certificate issuer: /CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Certificate serial: 0198D5836B75A8FDAE3B87A69C2DF5561ED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
Manifest number: 119D
Signing time: Sat 23 Aug 2025 06:00:16 +0000
Manifest this update: Sat 23 Aug 2025 06:00:16 +0000
Manifest next update: Sun 24 Aug 2025 06:00:16 +0000
Files and hashes: 1: EJEuDnvuXiXSyssiuX3zmzznLmY.roa (hash: Oz6+eDgQ3iUmX8LJR3oXdjyr343hyansN3/KTvsHwJc=)
2: IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl (hash: vCoNlJmFieSRmCkC37yMP6pJrQIm27tBlfApANUBRsY=)
3: nrEMql0zV0P3dpHmZH6RSxKuJFg.roa (hash: 1gVFTzoG8NuAbMx8im63wNse5kBK1gIOddqrPu/oX6A=)
4: oCdnapI8_jAqvSx-q8QqfeZBfpI.roa (hash: 4dP+f2erpGi6jIqWI+u+ltnYaQjR1Rx/ox+mHYa6aIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:6b:75:a8:fd:ae:3b:87:a6:9c:2d:f5:56:1e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=217b491dccb5632216d80b48f8d6286b1effd8d7
Validity
Not Before: Aug 23 06:00:16 2025 GMT
Not After : Aug 24 06:00:16 2025 GMT
Subject: CN=743720ee0e2ad7c3e60836f82e061e8a417749c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:53:af:6b:59:9e:93:67:23:fa:93:75:a7:4f:
fc:66:4d:c9:ce:dc:c2:c6:83:3f:e8:35:60:c4:3b:
02:af:a9:72:7d:7a:ff:14:1b:fb:f5:99:6b:de:d7:
c2:0f:9a:bd:21:41:22:9c:d9:1f:bc:4d:00:2f:cd:
24:d5:0a:dd:4f:1b:c6:c7:11:f0:b1:a4:fb:6e:5c:
d2:55:a5:c3:e5:8e:f9:4b:b8:e5:f6:83:1d:08:52:
b0:5d:8c:c7:6a:29:60:60:e3:76:cc:57:62:41:31:
58:69:7e:06:56:31:ef:ad:2d:6e:05:94:c8:ad:68:
0b:cc:ed:4a:42:c1:1f:08:34:9b:e8:52:7d:51:bf:
15:5a:a8:02:00:81:13:6c:cd:62:87:cd:9b:13:1d:
63:fb:6e:6c:3c:e7:c0:39:68:22:dc:e4:01:ea:21:
46:09:28:f5:6e:fe:d7:ee:1f:60:05:c6:08:f5:6a:
c9:70:51:76:f2:2a:d8:31:1d:32:6f:1f:6f:ae:65:
1c:32:8d:7d:e3:e3:2b:95:74:4a:ea:f1:85:92:e1:
65:16:a2:6d:a7:d7:e5:1c:d1:5e:47:54:b8:20:8f:
0f:1e:ef:49:4d:4c:84:09:02:c2:91:5f:10:ab:9d:
86:f9:9c:8b:cd:5c:5b:53:fc:48:97:45:c8:fc:6b:
81:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:37:20:EE:0E:2A:D7:C3:E6:08:36:F8:2E:06:1E:8A:41:77:49:C6
X509v3 Authority Key Identifier:
keyid:21:7B:49:1D:CC:B5:63:22:16:D8:0B:48:F8:D6:28:6B:1E:FF:D8:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IXtJHcy1YyIW2AtI-NYoax7_2Nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e9f29c-9231-450d-adb0-6de05a316239/1/IXtJHcy1YyIW2AtI-NYoax7_2Nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:cd:70:3a:57:1e:4b:e6:02:e6:95:7b:c7:76:30:00:87:19:
81:ff:d8:8a:5e:4e:ea:72:76:5a:e5:89:b5:7b:27:e5:0d:8b:
46:d7:cd:ca:38:ba:da:d3:78:3c:26:f9:f6:78:5a:bd:a4:08:
07:55:40:11:59:d2:22:d6:ef:6d:23:cc:88:dd:a4:66:a2:2a:
17:1d:90:71:6b:ae:74:8e:5d:ed:59:df:f9:d8:5c:5d:e4:ea:
ee:a6:13:6b:e7:70:92:ae:3f:17:48:2f:f4:f3:81:97:02:42:
0b:6a:3d:a4:5b:ae:e9:c1:54:6a:30:e7:66:15:a0:4a:a4:48:
47:6c:c5:ce:2c:24:62:53:8c:fa:89:86:b6:84:59:3e:d4:da:
bc:19:9d:ee:ad:4c:b5:63:2c:b7:5f:af:1e:89:28:9b:bf:55:
28:c3:ef:99:f2:f0:4a:0b:34:0b:ae:16:e9:dd:52:37:db:a8:
f3:b9:5d:6a:31:8e:41:10:19:1c:91:83:76:91:e9:d9:77:b9:
f8:36:d8:e8:e1:b0:89:72:cb:2b:7b:c8:05:f1:18:ca:a3:df:
a0:9c:ce:5e:76:fa:05:3e:27:9f:c4:17:fe:0f:ca:ab:5b:2e:
7f:51:6e:09:a2:a3:e9:29:d9:43:19:bf:e5:83:fc:cc:e0:c8:
cb:dd:94:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:04:17 2025 by rpki-client