Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
File: I--d4hUq7xsqYqMfsvNehZCzrYQ.mft (raw, json)
Hash identifier: dSDejW3HotRubTi3tvSr+kfW2NEAfHwVpHs78UAmACA=
Subject key identifier: E8:15:19:01:87:E9:08:37:9A:32:5E:A3:A1:0F:F2:86:A2:7C:BB:7E
Authority key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
Certificate issuer: /CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Certificate serial: 0198D583D783DAD20E6A4D7E7C357148945A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
Manifest number: 069A
Signing time: Sat 23 Aug 2025 06:00:44 +0000
Manifest this update: Sat 23 Aug 2025 06:00:44 +0000
Manifest next update: Sun 24 Aug 2025 06:00:44 +0000
Files and hashes: 1: H78piGDM9XMhN9ttfDQLjflrGw0.roa (hash: A/U1yMrz8Q8LYte4PciQEyU7L3zVOHn5gKWczBZWelo=)
2: I--d4hUq7xsqYqMfsvNehZCzrYQ.crl (hash: UgY6ByXc0i4S5rES6fO0GUfhkz5/f0ziUu6Fzure39s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:d7:83:da:d2:0e:6a:4d:7e:7c:35:71:48:94:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Validity
Not Before: Aug 23 06:00:44 2025 GMT
Not After : Aug 24 06:00:44 2025 GMT
Subject: CN=e815190187e908379a325ea3a10ff286a27cbb7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0b:9c:90:9b:a8:bf:b3:6b:f0:fc:f7:57:b4:
ef:c5:04:c1:5f:13:1c:e8:bc:cd:8e:58:6f:80:25:
71:43:60:ad:d8:2a:2e:52:8c:d0:fd:78:a1:b3:a3:
cf:2f:91:e8:e0:fb:dd:3e:5b:90:a0:2d:3c:5b:03:
00:e4:41:b7:1d:35:41:0d:ee:b0:86:04:29:7e:9b:
41:9e:ed:d2:f5:66:7c:b1:c2:27:fd:17:6a:68:b3:
15:36:d5:74:7e:95:d2:e6:90:9a:e7:c3:10:6f:57:
c6:6b:fb:7d:ba:44:8a:f4:58:14:3b:e7:6a:84:eb:
68:bf:68:42:36:66:e3:a2:33:b4:bb:43:83:74:e7:
80:00:47:5f:a0:51:ed:c7:b8:40:07:10:43:30:16:
8f:b7:fb:1c:87:76:c1:56:5a:e9:f4:56:e0:96:21:
45:dd:3c:b7:9c:78:3c:e2:ca:30:49:4a:cb:84:65:
72:e1:89:38:14:b0:54:7d:05:4b:65:e9:7d:08:90:
dd:25:63:e2:c2:99:14:4e:72:4a:b0:a4:b5:d3:b9:
69:6c:77:6c:92:a3:18:43:82:33:58:67:7d:22:62:
85:ec:e3:a6:d5:4c:42:dd:b0:8f:65:ef:fc:fc:c0:
de:ba:3a:29:bd:05:bb:03:60:99:ae:7c:e0:f4:cc:
e6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:15:19:01:87:E9:08:37:9A:32:5E:A3:A1:0F:F2:86:A2:7C:BB:7E
X509v3 Authority Key Identifier:
keyid:23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:14:51:77:8d:fc:b1:10:cc:bf:b1:0d:da:ca:c6:85:99:ef:
23:50:91:94:a9:b2:8f:10:60:c4:f3:ef:75:5b:e8:e1:dd:3d:
19:df:e8:5f:cb:3c:42:7c:ca:75:6d:ad:0d:93:72:5f:d5:5f:
49:29:1f:29:22:06:fc:85:5d:4f:8c:6d:ec:bd:d3:f4:d7:1f:
14:ee:b7:66:eb:af:db:20:30:d2:69:f2:36:58:d7:c8:9f:c2:
eb:84:d2:02:9d:60:a1:a3:c3:cf:a0:72:5f:2a:00:b3:b4:de:
2d:7c:1a:c0:03:77:b7:62:33:2e:06:a0:63:ec:ec:2a:14:2b:
c2:f0:68:26:58:68:43:54:0a:9a:cc:4a:33:ec:5a:92:70:c3:
dc:fa:57:ea:27:28:04:02:3d:84:d8:53:3f:27:70:bc:a7:02:
12:83:bb:51:9c:55:93:9e:f0:5f:33:37:c4:20:b8:42:6b:36:
ed:84:9a:c4:c2:88:fc:b5:93:24:a1:7b:23:55:91:f1:59:fa:
45:9b:e0:f3:78:dd:33:43:09:dc:10:39:02:f8:0d:a2:89:0d:
a8:3a:81:04:dd:35:5e:b2:61:6b:05:ef:a2:06:34:d2:2a:fb:
42:eb:1c:f8:7c:49:17:f6:6f:ff:51:ba:e9:50:f9:57:d7:a0:
27:ad:a3:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:28:55 2025 by rpki-client