Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
File: iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft (raw, json)
Hash identifier: qPCc0OEndHXyBZBR1loB1dAxz8SlXj67zRNhVoM4NOw=
Subject key identifier: F8:CD:63:5C:AA:00:4D:F4:A3:B6:8F:22:D6:C2:3A:54:D6:6D:82:5C
Authority key identifier: 88:7F:A3:73:71:D7:D4:59:3B:A2:90:EF:45:66:9E:A0:DE:29:37:82
Certificate issuer: /CN=887fa37371d7d4593ba290ef45669ea0de293782
Certificate serial: 0198D65F9EA49C698A7A9F08D3E51B0D4C71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
Manifest number: 076C
Signing time: Sat 23 Aug 2025 10:00:47 +0000
Manifest this update: Sat 23 Aug 2025 10:00:47 +0000
Manifest next update: Sun 24 Aug 2025 10:00:47 +0000
Files and hashes: 1: XWaEMNo4oCmJKw7xuT_lUqU1a9o.roa (hash: vlh1Ps1w/BBZ8U+fD5oVlO0yHpfRUnw+NHa2xAJ40qE=)
2: iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl (hash: UUTJLt0SVZ2IY5aHLR/JRP6aqh6dsh51KOfSsCG4JcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:9e:a4:9c:69:8a:7a:9f:08:d3:e5:1b:0d:4c:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=887fa37371d7d4593ba290ef45669ea0de293782
Validity
Not Before: Aug 23 10:00:47 2025 GMT
Not After : Aug 24 10:00:47 2025 GMT
Subject: CN=f8cd635caa004df4a3b68f22d6c23a54d66d825c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3c:ed:12:e2:96:d7:8e:2b:17:82:1c:b7:91:
b4:af:a8:66:a5:b6:53:d6:e9:b8:82:84:8c:84:96:
d8:14:a6:14:d2:eb:dd:c8:ab:37:a3:8c:e9:75:13:
9a:08:d4:ce:5f:c7:a0:e4:97:e6:ad:c0:77:60:1e:
3c:62:dc:18:fb:de:74:50:f8:49:94:07:8f:c0:a3:
3f:a3:a1:e3:59:30:8a:0f:78:f8:df:72:29:88:75:
44:fd:73:a9:bf:b0:0f:b6:72:d9:f3:d2:10:c7:ad:
8d:0e:50:b2:07:ec:94:e8:3d:58:da:0d:c5:70:ad:
f6:ae:de:5b:45:64:1a:60:dd:8d:56:b8:d2:d2:5d:
92:8d:18:5d:22:62:35:0f:a8:5b:38:b6:91:54:a6:
31:26:b4:fd:11:f2:be:de:3c:b5:51:b0:b5:e7:96:
24:6a:bb:75:49:97:ae:32:b5:9c:6f:dd:2c:3f:b4:
47:ae:07:c3:ae:b2:c6:1e:be:af:9f:34:a2:97:52:
ec:e0:59:f0:b3:f7:9c:fc:63:32:6f:12:f8:64:28:
0e:bb:f2:f7:d2:1d:22:d6:56:3a:7a:f5:a2:ca:36:
de:2c:8b:bf:2b:1b:b9:39:b4:5e:ab:0d:8d:4f:6f:
60:40:c7:6b:81:c0:05:fd:73:43:ca:d0:77:35:f7:
7a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:CD:63:5C:AA:00:4D:F4:A3:B6:8F:22:D6:C2:3A:54:D6:6D:82:5C
X509v3 Authority Key Identifier:
keyid:88:7F:A3:73:71:D7:D4:59:3B:A2:90:EF:45:66:9E:A0:DE:29:37:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH-jc3HX1Fk7opDvRWaeoN4pN4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/09db8c-6df0-4cee-ae07-a1e24aaf610f/1/iH-jc3HX1Fk7opDvRWaeoN4pN4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:06:e1:ca:e1:f7:65:23:0a:06:d4:a7:be:d3:59:1d:72:99:
03:c7:96:96:cb:e6:66:ac:ed:ff:be:71:fd:94:8e:11:12:87:
91:d2:e1:d6:01:e6:0d:8a:18:b0:6c:2d:8b:c2:bf:fe:65:03:
8e:24:3f:a0:5f:b3:e4:62:14:49:a6:d3:29:2a:2e:13:43:17:
6f:fc:d0:f8:65:a4:9a:60:5a:9a:f8:c3:d3:9c:68:9f:ef:3b:
ef:5d:78:c1:f4:c5:6e:b1:0f:16:b8:39:e6:8b:36:42:7c:bf:
2e:f5:99:1f:c5:a2:fd:c2:d9:50:b9:5f:1c:ef:fe:8d:d4:57:
0a:ba:d6:e2:85:07:83:9f:6f:e3:84:5c:eb:b7:98:a4:da:1f:
c5:8d:ad:0d:d0:76:9d:67:82:fc:e8:64:fb:f7:3f:fd:80:c8:
5f:af:6e:70:73:7f:15:28:cf:33:0b:38:b4:eb:b9:a7:ca:fd:
12:a4:43:34:51:cd:20:da:16:36:3f:3a:23:6f:53:5d:c4:ac:
43:e4:67:17:87:6a:5f:f8:2d:47:97:50:bd:e8:ff:b2:1e:cc:
e2:35:68:0b:2d:3f:71:cc:ee:2b:2f:db:f3:7c:74:2f:67:5d:
b1:06:ef:ee:ff:71:81:e3:7b:ba:cb:e0:a8:02:46:d5:89:7c:
dd:24:12:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:10:28 2025 by rpki-client