Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: 9q5SNgODGZMKTWICpNiy5B+4ZMHBDeqlryZDrcaaGgs=
Subject key identifier: 0E:9C:F5:7E:7C:A7:D7:7B:96:69:2A:48:B0:4C:ED:CA:71:38:6F:D5
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 0198D4E0BB9767D62F57335F488F5E491E23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 12EA
Signing time: Sat 23 Aug 2025 03:02:34 +0000
Manifest this update: Sat 23 Aug 2025 03:02:34 +0000
Manifest next update: Sun 24 Aug 2025 03:02:34 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: guaYORCbiw2KBcYWM0YyYxGqDt7rhONxQzdiQVpm7j8=)
2: aEJUX-P3iWzm8iZ2YmNhX1BUm-w.roa (hash: UCW6fp2JBu8X3L8wVEatff2uZp8yn3edNh91K1NyH88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:bb:97:67:d6:2f:57:33:5f:48:8f:5e:49:1e:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Aug 23 03:02:34 2025 GMT
Not After : Aug 24 03:02:34 2025 GMT
Subject: CN=0e9cf57e7ca7d77b96692a48b04cedca71386fd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5a:6f:90:51:53:4b:6c:0c:eb:f7:04:0b:ea:
6f:30:e5:5b:cc:bb:04:d5:9e:48:0e:fe:ce:c5:ff:
82:b9:1d:b7:33:f0:cf:d4:f4:bc:9b:f2:8f:99:66:
54:2f:7d:97:10:70:b3:48:76:45:56:33:a3:ff:93:
de:88:91:5a:58:84:57:ca:70:8e:9e:6b:1a:7d:e1:
e1:21:b3:5a:14:52:e9:26:40:49:a7:ea:55:3b:a0:
80:d6:ac:7a:04:3c:d4:45:c9:d8:b3:b0:72:06:38:
5f:24:d7:b4:23:8b:a8:1f:aa:e4:63:bc:6b:2d:6a:
b2:17:d6:1b:da:b1:39:00:77:02:4b:ed:64:10:69:
ef:f3:94:4d:fd:5b:b0:f3:61:98:1a:7a:2a:62:22:
af:b1:f9:47:38:a7:f2:94:9c:a7:c9:3b:a2:09:2b:
e6:34:f7:75:33:d4:f9:31:0f:22:3d:06:6a:76:76:
31:af:d6:f5:59:2b:86:ea:58:e7:48:f0:13:60:7a:
25:a8:82:98:2b:e7:e0:4e:da:6e:1e:97:ec:03:13:
63:e3:07:d0:91:3d:49:ff:ed:52:c7:01:a1:75:53:
c3:c0:f2:33:80:a1:ff:43:fa:68:be:ff:d2:d0:4d:
6c:69:b4:2d:94:68:73:5a:82:3c:eb:43:37:4f:ad:
76:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:9C:F5:7E:7C:A7:D7:7B:96:69:2A:48:B0:4C:ED:CA:71:38:6F:D5
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:be:c3:4e:34:b1:57:82:9c:b6:e1:43:43:aa:93:bf:0c:ce:
98:dc:d2:f6:57:7a:9a:44:60:26:8c:0b:39:f6:8b:08:02:c0:
9a:69:e3:95:64:a2:2a:a7:eb:9d:98:6f:69:70:36:3a:4d:a1:
07:5c:66:5d:2c:89:32:7a:a4:e5:ff:37:b3:f6:27:80:c0:d6:
25:8e:b1:46:35:a9:2d:73:fe:e8:37:ee:d9:49:4f:8b:34:11:
ef:80:ec:ec:9b:88:d0:20:2b:b0:f6:d2:cc:c0:0d:53:72:d8:
42:d7:4f:86:35:97:01:f5:cd:cb:8f:71:3b:c7:ed:6b:5a:e3:
a3:5c:df:70:fa:93:db:ff:9b:56:2e:d8:ca:81:8d:1f:90:e7:
52:cc:f5:7c:6f:59:09:92:af:cc:e4:f3:57:5a:62:3e:9c:cf:
ce:69:6f:bc:9f:ad:b6:f7:11:f8:6d:8a:9c:8b:2e:f0:20:db:
15:dd:f8:c5:37:16:8f:49:10:98:9c:ff:2b:7b:fe:0e:50:51:
19:09:a2:12:db:d0:74:96:58:c7:27:23:7a:80:e7:d9:56:50:
5d:2e:8f:12:40:8f:86:ea:9a:7d:7c:bc:93:cf:69:bc:4c:91:
f4:5a:43:16:fb:30:89:fa:62:71:b4:bf:b4:3e:ac:c4:71:5a:
1e:f0:61:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:13:19 2025 by rpki-client