Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: Mb8i91T2RwikzyxKllf7vmHrClXyVNPalyMo4ihmQK0=
Subject key identifier: 92:20:D7:38:40:46:96:EC:E0:C9:B7:A9:80:AE:E8:05:85:80:42:2F
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 0198D73B386EFCA885F8B09411DEF3D0E231
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 0E45
Signing time: Sat 23 Aug 2025 14:00:39 +0000
Manifest this update: Sat 23 Aug 2025 14:00:39 +0000
Manifest next update: Sun 24 Aug 2025 14:00:39 +0000
Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=)
2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: n+n1UEblDuAluQAtJKxNAK986T5LKt+lkjMMO6/c9Sc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:38:6e:fc:a8:85:f8:b0:94:11:de:f3:d0:e2:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Aug 23 14:00:39 2025 GMT
Not After : Aug 24 14:00:39 2025 GMT
Subject: CN=9220d738404696ece0c9b7a980aee8058580422f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c3:b5:d6:75:a1:73:48:f7:92:a2:c1:b3:44:
5d:da:07:a1:41:ea:c1:17:15:ad:8e:70:72:51:7a:
02:32:07:91:08:56:ae:aa:bc:22:2a:07:e1:c7:c4:
5e:51:f4:bc:f9:d4:b8:d1:ac:26:69:b0:98:e2:14:
14:53:25:b9:ee:cf:7d:0b:f5:20:53:47:a1:4c:d1:
2c:35:29:9f:b9:0e:03:ec:5b:f7:01:af:5f:bc:4d:
f6:ee:6a:be:7b:ba:56:53:a6:66:27:94:bc:e0:7c:
06:20:bf:00:7c:49:6d:d0:c1:ba:b4:76:3f:d4:ef:
e9:65:83:97:f3:99:3a:fd:52:dd:04:4b:74:db:d6:
8d:9d:55:d6:2f:7b:e1:b4:96:5d:2b:0f:9e:c7:1e:
ec:44:88:c9:52:36:a7:32:89:e0:f2:2f:c1:61:af:
b3:a1:90:4a:dc:3a:34:8a:b3:db:db:e3:0f:0d:b6:
c2:61:f2:5a:c2:b3:2a:03:9d:20:c6:07:58:59:c8:
3f:60:a0:6d:d4:1d:a4:ed:b3:38:94:ef:6e:9e:24:
05:b4:38:bc:62:69:48:ae:c6:39:c2:8e:ea:0b:da:
94:ad:ca:f6:cb:16:0a:25:2e:6a:7f:a8:71:80:a3:
81:78:63:2e:9d:7b:25:0b:13:55:a0:d9:3e:ac:61:
53:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:20:D7:38:40:46:96:EC:E0:C9:B7:A9:80:AE:E8:05:85:80:42:2F
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:dd:82:e8:59:3e:94:54:cc:35:34:a8:ab:91:2b:15:4e:e2:
ba:ca:65:28:a3:95:e1:51:7d:07:77:c9:c2:b6:43:fc:31:b5:
c8:b0:73:4f:3c:09:b8:a6:bb:b9:b5:82:60:8d:0f:63:09:40:
a1:1f:cc:95:94:60:7f:47:b1:7c:37:e5:d5:1b:5e:bf:4c:df:
8b:dc:2b:15:df:a5:97:07:27:7b:90:09:a6:19:0a:52:12:d6:
21:ab:c7:76:6e:ad:35:5a:33:01:4f:9c:fd:86:7e:06:77:64:
9e:72:3a:93:fe:b6:54:4d:2f:f3:b0:e4:06:49:85:79:d6:bc:
e8:f1:64:6e:36:a2:38:2e:41:1a:ef:aa:ae:32:ec:4c:5d:27:
35:f0:27:5c:1a:46:7c:c6:8d:df:0a:91:7e:91:09:c9:e1:9c:
4e:6a:eb:f5:0e:45:3b:ca:5e:b4:ae:ce:43:4e:43:8d:fc:f1:
f1:17:0d:08:b1:a9:bf:33:6f:58:2d:3c:27:74:fd:e8:54:38:
d6:64:2d:e3:b9:3b:3a:0c:7b:97:f3:34:b9:84:27:33:0a:d2:
43:dc:0a:e8:62:ce:62:53:b9:bc:6a:fb:8b:01:54:5d:d1:04:
13:f8:06:22:02:89:3b:c0:c3:9a:d5:c1:3a:63:61:48:04:33:
11:2b:f9:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:58:37 2025 by rpki-client