Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: bEF2di+q6EfrxK25T6Z6IwdeSSTzAG3OIxU8KjVDCnQ=
Subject key identifier: E3:27:5B:CB:4A:69:44:FE:2F:9B:45:A2:E8:CC:21:E2:D0:5E:22:9A
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 0198D51612DD4287D4DF9A8C73E744C06CB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0A31
Signing time: Sat 23 Aug 2025 04:00:50 +0000
Manifest this update: Sat 23 Aug 2025 04:00:50 +0000
Manifest next update: Sun 24 Aug 2025 04:00:50 +0000
Files and hashes: 1: RZMmAomJrqs0yCU-Sl6pSFt5lLQ.roa (hash: mHTuz89sEZswLAvVyf4aCavMINMyLcZOi1mRW8tq0vE=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: 1HxNKPenNOf5u2LGFrcyIcsMLEDaHLbohBsyXOVgxUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:12:dd:42:87:d4:df:9a:8c:73:e7:44:c0:6c:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Aug 23 04:00:50 2025 GMT
Not After : Aug 24 04:00:50 2025 GMT
Subject: CN=e3275bcb4a6944fe2f9b45a2e8cc21e2d05e229a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cb:fb:a8:ab:0a:ef:d1:f8:b4:cf:9b:0d:3c:
05:00:75:ff:5f:fa:e3:2b:e3:65:7e:b8:6b:21:7b:
ad:d8:a8:f5:f2:83:3a:bc:43:45:5b:c3:38:a3:2b:
d2:fe:e3:35:3a:a7:dc:d3:e5:43:6e:29:39:7b:8f:
af:91:9c:49:9d:2f:62:92:27:45:48:4a:ff:e7:3a:
d9:53:10:79:88:a5:f5:ce:13:76:44:14:d0:97:89:
b3:f4:7d:f4:a4:f4:10:a1:f0:eb:07:67:68:4f:f6:
6e:fc:73:69:b1:ae:10:d4:31:ce:c6:67:d5:5e:d8:
af:11:8b:28:97:1e:73:7c:7a:19:08:d8:a0:2d:6b:
3e:45:86:54:3f:73:bf:22:1e:70:ad:5e:35:8e:c5:
d4:1c:6e:d8:88:42:5b:f5:42:88:83:cd:9b:48:06:
53:a6:fc:60:85:93:f8:ca:49:3d:cb:54:19:bb:76:
38:56:8e:2f:83:2f:a8:58:ee:ad:21:7a:69:37:70:
66:a9:fd:3e:eb:d8:5f:39:7f:77:c3:89:3a:45:82:
c0:5f:58:a0:45:d1:0d:41:a2:2d:7b:b1:ad:a7:3e:
75:fa:0c:25:f2:da:6d:6a:25:63:db:e8:cd:ea:d5:
fb:5b:5b:ca:5b:c4:93:74:46:e8:6f:d6:30:6e:6c:
b8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:27:5B:CB:4A:69:44:FE:2F:9B:45:A2:E8:CC:21:E2:D0:5E:22:9A
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:42:82:c5:74:d8:87:23:33:c2:04:2d:01:e5:6d:cc:68:1a:
5c:8c:3f:44:e5:56:b2:fa:36:2f:16:27:f6:64:20:c5:94:38:
86:b6:4e:8a:0b:5f:60:2b:7a:21:40:63:5b:19:b7:27:4b:1a:
c1:1f:37:cb:fd:5a:c2:41:c3:a3:44:09:62:9e:2b:71:6d:a4:
3c:7f:f8:8b:aa:14:03:89:81:9d:38:16:d4:60:55:b2:f5:4d:
84:de:7e:7f:f6:bf:3b:4b:6b:64:24:29:a3:88:80:cc:a9:81:
8a:49:53:14:95:46:32:a5:0a:7e:89:5f:65:07:42:70:d6:44:
4d:48:e0:76:fb:6e:e3:b8:18:73:23:9a:55:e0:ad:b9:6c:92:
02:88:c8:45:ef:ec:39:6a:8d:5a:88:cb:5b:cf:d2:30:61:75:
c1:86:c5:9e:74:e0:d3:57:dd:82:62:1e:39:e6:b8:46:41:74:
fb:cd:2b:d9:b7:19:18:43:b7:f5:ed:3d:7b:b4:98:bf:3f:22:
3c:36:2a:52:21:30:c9:3f:c9:c6:dc:81:69:d5:04:0c:c4:1e:
64:45:0d:81:15:7a:3d:bd:dd:92:60:89:33:72:55:16:4f:08:
67:c7:09:7b:06:70:df:eb:1f:9b:61:c7:8c:f7:a1:01:f5:b7:
6b:50:32:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:33:40 2025 by rpki-client