Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
File: i5HgoQS1s93x9dCOessreeDVZvk.mft (raw, json)
Hash identifier: qlwJucC4EZpuhLBRtdbg0jvVFE3rcNrGAF8GVsNKwxg=
Subject key identifier: 79:36:4B:07:C5:74:0C:06:94:F1:DD:82:23:12:70:90:30:0D:54:7A
Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Certificate serial: 0198D472647B6DC4926B7FBDC4D70688442D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
Manifest number: 1054
Signing time: Sat 23 Aug 2025 01:02:03 +0000
Manifest this update: Sat 23 Aug 2025 01:02:03 +0000
Manifest next update: Sun 24 Aug 2025 01:02:03 +0000
Files and hashes: 1: KwomHtAHnCM0D-yGdW_0Sf3mopc.roa (hash: nJuUP0j6H239g1R7GMJyKq0zviXnK+AhK7Q4U43dyg4=)
2: ZYlcf7X6lFUqPdlZgjx7h6pY7f0.roa (hash: Z91lhusvfId6xXTKVa6gm5qmkQJNcO8M7YoIqY37LFU=)
3: i5HgoQS1s93x9dCOessreeDVZvk.crl (hash: DEf2ipPWqimdqHFe5KVa42YCLovncVlvb8NunWxO/ds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:64:7b:6d:c4:92:6b:7f:bd:c4:d7:06:88:44:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Validity
Not Before: Aug 23 01:02:03 2025 GMT
Not After : Aug 24 01:02:03 2025 GMT
Subject: CN=79364b07c5740c0694f1dd8223127090300d547a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e8:c5:a8:d6:d1:e1:4c:37:2e:01:da:18:e8:
b3:6b:51:43:c2:9d:c0:7b:0b:f2:4d:db:b1:b0:87:
ff:f1:55:a9:2a:a4:fb:5e:02:d3:c1:d5:99:71:28:
4d:f4:2c:69:e3:5d:2d:28:fb:03:95:21:0e:c3:91:
15:99:db:59:b4:1e:bd:07:09:6c:ba:0f:b4:8b:a4:
e1:0f:11:de:6a:9e:38:51:ff:55:f3:92:74:5b:e8:
16:5f:14:84:97:4e:47:96:f1:b6:24:9c:c9:ba:05:
1e:0e:ba:63:8d:d4:ff:a6:f9:75:e7:bb:fb:1c:da:
62:51:7d:4b:4e:a2:8c:b5:0a:1a:0c:68:32:0f:9d:
74:ff:1b:07:2f:b7:ca:3d:bf:3f:57:52:13:f6:34:
f1:03:25:38:4a:2e:46:8f:24:ed:5a:b8:ee:b5:d5:
6e:bb:81:56:67:0a:9a:fe:7f:ac:1b:64:d4:9d:0d:
61:d7:2b:f1:02:80:65:d2:e5:ad:b6:56:a0:74:68:
7f:17:c1:72:c9:e6:b4:a5:50:59:3e:53:e9:c2:86:
00:21:b5:f0:8b:18:23:d5:67:fb:4a:b6:31:07:df:
89:71:98:7f:44:71:f3:8b:0c:3f:6f:2f:38:45:df:
52:bc:bf:2c:42:dc:c4:3c:7f:bd:9d:b6:c2:f5:53:
d0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:36:4B:07:C5:74:0C:06:94:F1:DD:82:23:12:70:90:30:0D:54:7A
X509v3 Authority Key Identifier:
keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:62:06:dd:82:9c:bf:15:92:d5:71:cb:5d:54:12:2b:1d:b2:
a0:00:15:fc:8f:73:b7:e1:5a:0c:d6:cd:da:0c:36:46:7f:c3:
8a:1e:76:f6:04:06:11:b8:d7:c0:55:59:89:c8:ea:1a:c0:dd:
01:59:12:54:bf:75:bf:8d:75:69:5d:73:d4:0c:f7:fb:5e:8a:
4d:de:8c:2c:a2:0e:58:7b:32:d5:8b:5c:55:6b:fc:ac:3c:49:
b2:99:04:7a:39:22:94:43:7b:bf:70:72:58:b0:4e:a4:38:48:
33:6d:c5:ab:8d:0e:49:1b:dc:ec:83:79:9a:d1:11:f5:dd:c1:
e5:af:2c:14:24:a3:64:6a:26:a7:20:e9:11:50:9b:4b:01:3e:
ca:68:11:61:6f:dd:54:35:d7:70:54:36:fe:9a:61:7c:fb:ad:
22:f1:14:47:2e:de:12:d9:5f:e8:d0:77:a6:93:95:24:2f:f3:
98:e4:e7:7a:b4:57:c8:23:1e:4d:00:8f:d4:9d:f3:e1:86:04:
bc:ce:e7:6c:e9:6d:d7:cd:6d:79:cf:39:25:99:c9:1f:53:c0:
a9:19:0b:e6:dd:b0:52:38:86:71:07:b2:8a:26:b6:f0:d1:be:
c3:29:b3:c4:8c:5e:2e:07:5f:5c:62:2e:c7:28:09:db:cd:29:
0d:ef:92:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:12:52 2025 by rpki-client