Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft
File: IlS8wDKT460OGaej_Rsc-9NMCZA.mft (raw, json)
Hash identifier: 34tQ5rBVDeFumuA6AAIRlFK1n49asgMUeO7eBrGouHs=
Subject key identifier: 8B:46:6F:C6:69:7C:F5:27:7A:51:8D:8B:A3:2E:37:6E:BF:59:13:49
Authority key identifier: 22:54:BC:C0:32:93:E3:AD:0E:19:A7:A3:FD:1B:1C:FB:D3:4C:09:90
Certificate issuer: /CN=2254bcc03293e3ad0e19a7a3fd1b1cfbd34c0990
Certificate serial: 0198D773BFF1C014B953701960AC242EE183
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft
Manifest number: 13EC
Signing time: Sat 23 Aug 2025 15:02:23 +0000
Manifest this update: Sat 23 Aug 2025 15:02:23 +0000
Manifest next update: Sun 24 Aug 2025 15:02:23 +0000
Files and hashes: 1: IlS8wDKT460OGaej_Rsc-9NMCZA.crl (hash: e5hjD0GGY9rsTkQGFBr2EJvAnmKrojL7dEKymRNrelg=)
2: iYAJK9Z1vSabwblAeb2bbovBgWQ.roa (hash: UwR7QsThfF3C52K+v8ctdTEGP4PnZH+tKi6tWCBxuy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:bf:f1:c0:14:b9:53:70:19:60:ac:24:2e:e1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2254bcc03293e3ad0e19a7a3fd1b1cfbd34c0990
Validity
Not Before: Aug 23 15:02:23 2025 GMT
Not After : Aug 24 15:02:23 2025 GMT
Subject: CN=8b466fc6697cf5277a518d8ba32e376ebf591349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c8:67:31:71:76:c5:f6:18:a4:3b:cc:79:9f:
a0:75:08:ab:bc:2e:1e:a4:79:6b:68:05:cb:5d:d3:
a4:d0:f4:f1:c0:a6:b3:d4:fc:f2:13:30:7d:54:91:
2e:88:eb:a1:e8:4e:b3:bb:bb:31:70:ec:be:9f:ad:
1b:df:ec:1f:da:b6:55:69:3c:ab:ad:d7:ca:0b:f8:
d8:ec:09:cf:30:ec:65:2f:3c:c6:9a:21:f0:f0:51:
cd:c3:10:54:16:1d:24:ae:c3:0d:9c:19:87:0a:e2:
e4:80:56:1e:df:34:8d:04:5c:f2:20:dc:f4:ec:a3:
b0:b0:8b:78:90:e4:b9:e7:96:e8:cb:cb:85:a6:35:
59:0b:69:b1:9f:29:a5:c7:a2:a5:ef:de:e9:c7:86:
3d:1f:8b:5d:c4:a2:bf:e9:f6:f5:47:d0:8b:43:09:
c6:83:e5:ed:58:a1:f3:de:4d:3f:4d:4e:6a:81:46:
a3:cf:f3:3c:14:cc:43:d0:5e:9d:ac:20:20:13:ac:
9a:85:1e:93:cf:d5:8a:4b:e8:42:39:bc:d5:2c:5c:
01:43:e0:fc:a5:fa:da:dc:a6:33:0e:f0:60:90:e4:
d5:67:f6:a4:91:48:fb:ec:b8:e8:ee:a7:ec:87:c8:
4d:2f:02:82:b5:59:0e:61:04:90:57:f8:75:25:48:
46:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:46:6F:C6:69:7C:F5:27:7A:51:8D:8B:A3:2E:37:6E:BF:59:13:49
X509v3 Authority Key Identifier:
keyid:22:54:BC:C0:32:93:E3:AD:0E:19:A7:A3:FD:1B:1C:FB:D3:4C:09:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:5b:e1:8e:5d:17:13:f4:51:8c:06:48:21:d8:df:f5:a4:82:
b6:78:34:3a:bd:d4:55:9c:b0:e4:3b:e1:e8:86:f0:5d:b8:e2:
bd:7e:4d:7f:c7:1d:95:19:d5:2e:07:8e:9d:a3:77:a1:e9:77:
6d:4f:a6:c9:4c:8c:8a:b3:9b:b5:08:ee:4f:7d:9a:44:20:ad:
12:7f:1a:35:6a:ef:e0:fc:db:40:8f:b9:53:c5:0b:12:4f:fb:
92:f5:06:db:41:d3:e0:dd:e2:e3:34:38:31:9b:51:22:2a:3b:
87:48:b8:d1:34:72:e7:b5:4c:b2:f2:1c:b1:5a:75:80:b0:d7:
b2:bc:fa:4c:c8:aa:f7:b7:12:f2:38:12:19:f3:fa:5e:26:56:
74:42:78:54:00:e1:98:7e:b2:dc:d2:06:99:38:e2:09:c6:e7:
75:07:fd:de:fc:ad:5f:4a:19:8b:06:58:c2:97:cb:c6:89:08:
64:4b:d1:0c:6a:65:de:01:26:46:68:32:3b:61:4f:bb:02:95:
09:eb:d3:16:f4:43:c3:b2:ec:17:ad:3b:a9:a6:ad:92:c4:7f:
14:3e:91:b0:57:57:cc:6b:55:06:6b:25:f3:a6:0e:5d:c8:fe:
a5:41:0d:0b:a9:8d:58:bd:38:34:02:1e:29:84:7c:ae:ba:74:
48:7a:fc:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:29:29 2025 by rpki-client