Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
File: iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft (raw, json)
Hash identifier: 8AmL6Zk1oDUQagzCoIlck5rbnTB39vXEYRPyPxkY6lA=
Subject key identifier: 82:A0:22:96:80:F6:29:35:51:CC:1C:3B:7E:BD:9C:18:DC:AB:50:91
Authority key identifier: 89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
Certificate issuer: /CN=898825d2f064989b38c781f2a8535189a26928c3
Certificate serial: 0198D473CF486DE5B8246F04B66685D19F5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
Manifest number: 14CB
Signing time: Sat 23 Aug 2025 01:03:36 +0000
Manifest this update: Sat 23 Aug 2025 01:03:36 +0000
Manifest next update: Sun 24 Aug 2025 01:03:36 +0000
Files and hashes: 1: iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl (hash: z8IU7jNm9Xg4Q8v1jpAE5RAZqSVDUAvmn0/7idkp1y4=)
2: zbnBRUeVPnEEwLI2vvj0r39FPtE.roa (hash: 4AvpkRySedv9+g3/SFfJUIRAayJwpWmaa1FdREtJu9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:cf:48:6d:e5:b8:24:6f:04:b6:66:85:d1:9f:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=898825d2f064989b38c781f2a8535189a26928c3
Validity
Not Before: Aug 23 01:03:36 2025 GMT
Not After : Aug 24 01:03:36 2025 GMT
Subject: CN=82a0229680f6293551cc1c3b7ebd9c18dcab5091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:80:ce:bc:8a:8d:31:18:ba:1f:c8:f1:20:17:
21:b8:2a:b1:8f:e5:29:15:70:6a:b2:ff:57:f1:72:
2f:0c:f9:2b:47:3a:0e:b2:1f:0e:99:df:d4:b4:bb:
5b:ed:bc:9b:a6:bb:15:ba:63:7f:bc:ce:2c:95:0b:
dc:19:ee:ae:07:17:65:79:76:71:2d:95:8b:7a:1f:
d7:08:b9:70:a5:a4:67:54:c7:f3:b4:0a:89:07:b9:
4f:e6:d8:f3:92:80:1f:c6:cb:82:1b:99:8a:ed:7b:
65:ae:7c:c0:1a:b3:9a:d1:16:ac:75:2f:d7:68:5b:
d2:95:01:e8:9e:f1:53:58:8f:ad:4c:87:5c:db:9f:
0c:d7:c8:36:33:09:f7:76:04:77:11:10:99:23:9f:
bc:74:32:f1:98:fe:5d:32:bc:bd:45:b0:fe:53:9b:
84:c4:b1:e0:1c:7d:f3:4b:71:67:a8:d7:18:81:0a:
f1:d3:57:5a:a0:18:d7:ee:e2:cc:6d:60:78:21:cc:
a5:4d:4a:db:16:1d:fb:ce:7e:b4:27:c1:09:ba:31:
69:f1:a3:ab:5d:29:3d:dd:40:4a:09:02:9f:41:57:
5b:68:13:3d:43:29:f1:af:80:8d:61:73:a2:5e:fa:
d7:6f:59:24:8a:ad:20:28:ed:d8:ad:8a:46:9b:28:
8c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A0:22:96:80:F6:29:35:51:CC:1C:3B:7E:BD:9C:18:DC:AB:50:91
X509v3 Authority Key Identifier:
keyid:89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:30:54:0d:22:0d:ab:ef:c8:e5:25:aa:47:18:f8:87:8a:65:
95:2c:66:53:af:af:f7:9e:43:49:b7:a8:d5:12:be:ea:a7:8a:
77:c4:6d:27:dd:4e:ff:23:52:63:59:6f:fa:2a:2b:16:58:54:
2c:22:09:82:b8:cc:af:a1:28:16:92:11:e4:c5:6d:72:cb:a8:
c8:a1:90:db:6a:8a:ed:4f:96:10:99:e5:04:e3:1e:8b:7b:79:
2f:62:72:f5:db:37:67:fd:fd:72:84:27:97:dc:07:db:86:12:
44:f7:5d:d4:0c:16:e4:30:c2:d4:2c:ea:a7:a8:de:05:da:a7:
b9:f5:71:89:3b:4f:87:4d:1b:18:15:b7:93:58:be:b9:00:28:
44:b0:1d:99:bf:76:88:62:df:3e:18:9a:ac:03:2d:26:27:87:
9c:bd:82:8d:47:65:48:6d:54:9c:f2:83:ed:c7:d1:2f:ca:b8:
6d:a0:ba:65:2d:41:9f:dc:38:09:4c:68:d8:93:49:95:12:12:
06:a8:6e:b9:04:ec:a0:17:39:8b:3a:a4:47:cf:f4:46:60:23:
80:5f:e4:fe:ed:68:db:b6:6b:ef:e6:f9:f8:92:8c:24:96:d2:
cc:53:6c:64:8e:ce:97:3b:b3:07:22:e3:34:a6:07:cd:4a:8a:
a3:fd:76:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:11 2025 by rpki-client