Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
File: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft (raw, json)
Hash identifier: VUeD7Zf7PhcsZLPz971OsMKH9kbtD1sA+60RdYN3X5E=
Subject key identifier: 91:6A:9B:9C:DD:C5:9F:4D:BE:11:06:4D:A7:5E:3D:55:D6:9A:9B:87
Authority key identifier: 89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
Certificate issuer: /CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Certificate serial: 0198D5F1C16ADCCA0C31AD64D7DBE5425DD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
Manifest number: 1620
Signing time: Sat 23 Aug 2025 08:00:47 +0000
Manifest this update: Sat 23 Aug 2025 08:00:47 +0000
Manifest next update: Sun 24 Aug 2025 08:00:47 +0000
Files and hashes: 1: QdF_t5GM6hFZDI7Ycz1kPbhRE0s.roa (hash: gZA+5nFU0e3J+dZOb0p/gBtvIfB/51rVDEOTe4nlfP8=)
2: iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl (hash: XwG1sQeQJrhnNJF14xUZlmjh+Gi4bLczcCB792I5P7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:c1:6a:dc:ca:0c:31:ad:64:d7:db:e5:42:5d:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Validity
Not Before: Aug 23 08:00:47 2025 GMT
Not After : Aug 24 08:00:47 2025 GMT
Subject: CN=916a9b9cddc59f4dbe11064da75e3d55d69a9b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8f:64:30:1a:35:db:04:8d:16:b1:a3:10:3e:
8c:7b:f2:d6:7d:24:4d:72:53:dd:68:e8:76:ec:8a:
c5:ea:af:1d:3a:d7:00:af:18:53:ea:f0:80:e9:d0:
bf:2d:59:f8:ac:4c:58:22:73:64:63:b3:5b:77:5b:
61:c3:32:20:1d:e3:c4:a1:74:6c:64:69:f6:a4:1c:
c6:3a:97:ce:bb:0a:ca:65:31:c3:15:27:0d:47:6b:
89:78:56:5c:cd:73:36:97:41:8d:92:97:bc:76:a8:
36:9e:0a:61:82:07:85:00:9b:b7:0c:b4:e5:a4:b0:
0f:c4:d8:7f:58:19:4f:53:0f:dd:1d:ca:b9:26:89:
dd:d6:a8:71:6c:d5:96:ef:60:80:f0:cc:6c:40:22:
06:b7:7d:23:ce:d4:65:48:6f:7c:b8:f1:48:76:e1:
eb:c7:aa:19:d2:17:8f:9b:0a:5b:69:42:eb:2f:c7:
8c:5a:4b:60:cf:44:98:e2:d9:dd:a1:87:b3:0f:b9:
f3:b0:f7:4b:f2:d4:a1:4c:21:0b:40:5c:cb:05:e3:
78:95:e3:3f:69:91:0e:20:da:ea:ff:b7:ff:96:da:
6e:c3:a8:83:77:41:85:d2:6b:93:9a:a0:31:1b:7f:
22:16:ab:f4:13:9c:6d:9a:b8:c4:d1:6c:e1:e7:fb:
41:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6A:9B:9C:DD:C5:9F:4D:BE:11:06:4D:A7:5E:3D:55:D6:9A:9B:87
X509v3 Authority Key Identifier:
keyid:89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:12:1e:4c:2c:e7:b0:30:35:36:3b:4f:87:00:81:12:3f:80:
e6:54:41:9f:6b:56:42:e6:19:a1:d3:cf:75:84:32:5b:b6:90:
d8:b9:77:ff:e2:bd:84:1b:07:a7:7b:c8:81:2f:67:e7:ac:ee:
1d:50:a1:4c:e6:8a:76:3c:92:9f:2b:1a:f7:2a:bc:6b:a6:ed:
73:63:f1:19:2e:2e:12:dd:32:f1:29:da:4a:3f:9f:4b:23:6e:
ed:5b:f5:be:af:33:f7:21:0e:d6:8f:61:ad:37:50:66:9e:a0:
4e:9b:a8:88:03:50:15:18:5b:b2:8f:27:cd:0e:1d:aa:6e:66:
1a:33:1d:be:d2:88:c9:d8:63:c7:bc:3b:ef:01:a2:43:f1:ff:
35:97:3c:76:16:a4:bb:cc:85:3e:64:29:62:73:97:40:e8:cc:
13:32:ed:ea:56:2b:96:fe:b7:4e:1d:2a:57:6b:a5:fe:31:8d:
db:3b:ae:55:96:23:d5:c2:2f:fe:62:4c:fa:47:de:31:c8:f7:
f4:e4:9f:5b:db:f5:89:18:24:e6:e8:1f:61:aa:62:e3:b7:01:
fa:d7:31:21:84:8f:a0:0d:dd:e5:ba:81:56:00:fc:e6:9e:d4:
91:3d:5d:6c:25:f4:db:a2:7e:14:1e:b1:17:10:8b:ed:47:3a:
16:a0:f7:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:23:01 2025 by rpki-client