Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
File: IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft (raw, json)
Hash identifier: ec1x7X8L2ny8yxJ1YMBadElusnFNDfgBH0SwQjEb1rA=
Subject key identifier: 01:97:4C:09:15:2E:5B:DF:D0:46:77:A9:1C:D9:EF:F2:18:41:0E:C4
Authority key identifier: 21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
Certificate issuer: /CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Certificate serial: 0198D65F7A1A62A62F24D78B9C49F70FA43C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 10:00:38 +0000
Manifest this update: Sat 23 Aug 2025 10:00:38 +0000
Manifest next update: Sun 24 Aug 2025 10:00:38 +0000
Files and hashes: 1: BIaGV9Zs8uGBriNQ8U7uQ0gnNfA.roa (hash: 7T5AV/yHdfgZicPaqkaiWb9Osz7vZVkyB1rTGAClRcg=)
2: IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl (hash: Z/B8MqaXbTkQIcCYFhdCgehRqUZu2OqGQkLn30L+jpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:7a:1a:62:a6:2f:24:d7:8b:9c:49:f7:0f:a4:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214a0f42190944ac6b45e00a24ae41a345fdcb35
Validity
Not Before: Aug 23 10:00:38 2025 GMT
Not After : Aug 24 10:00:38 2025 GMT
Subject: CN=01974c09152e5bdfd04677a91cd9eff218410ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:60:8d:e5:83:3b:1c:fe:b6:f5:90:d1:79:7c:
38:74:d3:7f:b4:3a:e9:40:4b:b5:da:55:69:cc:24:
97:f7:b7:9f:30:8b:bd:27:19:04:ee:4e:d1:c6:e6:
5d:c3:85:0c:5b:bc:a3:18:00:bb:ec:a2:62:dd:75:
98:3c:bb:49:fd:96:38:eb:b6:47:4c:83:b0:3f:18:
ab:6b:c3:cb:bf:e6:4d:5c:e6:a5:5f:5a:0e:f8:6c:
ec:ef:2d:5c:f7:96:09:1c:ce:49:d1:b2:20:96:ad:
3b:36:6a:23:8f:39:2f:aa:67:52:a5:5f:72:05:c1:
43:02:fe:81:78:b7:20:53:cc:64:e2:63:f6:65:97:
9f:f8:9c:a4:ed:9c:12:b2:8b:f0:f3:4b:38:74:e1:
3b:bc:0a:f6:83:2b:0f:35:9b:d4:4a:57:32:3c:6a:
ca:b2:0a:d9:40:1c:08:2c:cd:3a:e5:ce:bc:e1:e6:
a4:0f:a8:2b:3b:0e:39:94:1c:0d:36:ab:4c:13:61:
d8:d1:95:3b:c6:2d:8f:12:ef:89:6c:e9:e0:65:28:
52:c2:54:c9:07:d7:38:4f:8a:43:f9:3d:cd:d4:f8:
f6:59:10:6c:d7:e9:14:c4:11:10:5f:4e:68:a9:5b:
37:2f:54:9b:6c:b4:8e:d5:62:e2:07:ab:fa:d9:f3:
d7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:97:4C:09:15:2E:5B:DF:D0:46:77:A9:1C:D9:EF:F2:18:41:0E:C4
X509v3 Authority Key Identifier:
keyid:21:4A:0F:42:19:09:44:AC:6B:45:E0:0A:24:AE:41:A3:45:FD:CB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUoPQhkJRKxrReAKJK5Bo0X9yzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0d57ff-5530-460d-8b53-b6656cc1bd59/1/IUoPQhkJRKxrReAKJK5Bo0X9yzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:72:7a:89:ed:6a:ee:5a:24:19:7e:c6:63:90:66:2f:1a:00:
cd:b7:52:49:b9:63:3f:98:06:78:0e:41:89:4a:58:18:f0:ab:
e6:94:46:03:48:df:6e:56:bd:d9:e0:81:bc:ff:a9:32:13:47:
87:2f:7f:aa:0e:fe:99:f6:a2:57:19:02:af:03:51:6f:0c:79:
d7:49:a7:7d:57:5a:28:19:d3:41:c1:4f:5b:ff:79:e6:50:61:
33:ec:31:f0:b0:82:27:fe:91:ed:80:42:49:af:ed:64:da:b2:
ba:c1:6d:60:50:fb:e1:82:19:a6:ee:4d:89:f3:df:b4:19:b9:
ba:80:9d:33:76:77:96:1a:b8:90:70:cb:48:89:93:c0:3f:64:
ed:3c:e3:d1:2e:61:e1:5f:95:40:5c:65:8d:60:69:65:23:a8:
cc:69:ca:b7:41:28:c5:33:e0:a1:da:c1:fe:c6:15:7b:f9:a1:
6f:3b:b7:e9:fa:41:a3:cf:3e:6c:45:84:f9:9d:33:48:8a:64:
9f:5e:a5:ff:17:42:98:8c:44:78:2f:67:56:1a:12:9f:95:67:
e5:7a:78:05:c2:82:b9:c7:12:b9:cb:77:00:0d:ec:0d:dc:cf:
80:77:f9:8a:46:9d:85:06:d2:d0:69:e6:d9:38:9b:7d:54:de:
f6:da:cb:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:35:29 2025 by rpki-client