Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
File: I7GUMIfOaWI-drIUWzR5rCBLock.mft (raw, json)
Hash identifier: SOktG3pUH2PyLVkvUyV68GXiN7LMbwEyCL8kMTxWxPk=
Subject key identifier: 7C:BC:BD:5C:CE:AA:E9:5F:8C:A3:01:17:E6:24:1A:4F:A0:30:D9:CD
Authority key identifier: 23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9
Certificate issuer: /CN=23b1943087ce69623e76b2145b3479ac204ba1c9
Certificate serial: 0198D5BBC53FF6F9E0CD7121B92DCE0935A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
Manifest number: 1588
Signing time: Sat 23 Aug 2025 07:01:49 +0000
Manifest this update: Sat 23 Aug 2025 07:01:49 +0000
Manifest next update: Sun 24 Aug 2025 07:01:49 +0000
Files and hashes: 1: I7GUMIfOaWI-drIUWzR5rCBLock.crl (hash: 7bC2diPSxswnftvc4xtLy1bbOlK011N3e8587l5rYVk=)
2: IGzDnKyfU3XrsCi1kVIq3v9WjnM.roa (hash: BCjdpahib4P29wEhEZ+5HfDxKnWj0l2OSsP7lZ3IOHg=)
3: fngY7vAjtnIa6khyzBr6ohfARXc.roa (hash: 8j7K0AdGmWd/+RMVsdDrX0khITQq1MTMhTuPXkbPnqc=)
4: xgdlAL2WKr_Js4V_ZLjPaz6bev8.roa (hash: CfOyHBtQR8zjYYv9qA3Dd8n5he3YeIT+MsIzoT30dKc=)
5: z5Ucz1kkGg56QZyAblN2WefSoGM.roa (hash: 5hK/qHn0csimMvRktmqCqsq2To8mi7zen0Vo1KFJGyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:c5:3f:f6:f9:e0:cd:71:21:b9:2d:ce:09:35:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b1943087ce69623e76b2145b3479ac204ba1c9
Validity
Not Before: Aug 23 07:01:49 2025 GMT
Not After : Aug 24 07:01:49 2025 GMT
Subject: CN=7cbcbd5cceaae95f8ca30117e6241a4fa030d9cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2e:c1:86:af:72:db:78:5c:3f:51:f1:4b:13:
4e:cc:e5:db:c7:f2:dc:e2:35:1e:0a:ab:25:98:a5:
b5:40:4b:f1:2c:ff:68:2d:ae:12:43:c3:fd:5a:34:
3c:b5:98:19:ca:c9:e9:99:42:16:ca:9e:af:be:e0:
9a:35:8d:d1:22:f7:06:b9:23:c0:f9:e8:6c:ef:24:
47:60:5f:0c:44:99:9e:9e:b9:e8:7b:c8:91:05:7e:
23:1b:11:e5:8b:ef:81:fd:03:f4:56:22:87:78:85:
82:02:45:04:93:17:9a:81:3a:ec:d3:93:1f:27:63:
93:6e:5a:11:09:b8:7e:0a:8a:50:de:18:fa:ee:08:
a9:db:c9:ac:27:2a:52:d3:e3:aa:16:e6:93:33:c2:
35:63:c3:8f:57:b6:39:3c:4c:86:bb:ae:9f:99:21:
81:87:00:25:ae:88:62:39:85:04:17:fa:5d:a9:4b:
54:35:7f:9d:14:09:b5:40:84:f8:d8:c1:b5:93:bb:
44:20:eb:06:b2:46:40:01:79:9a:94:93:7c:eb:d7:
38:ff:3a:aa:d7:d6:07:24:14:73:64:a0:ef:34:58:
2f:f4:ea:4c:15:67:d9:14:45:d4:77:4c:bc:5a:8b:
9c:e6:72:ec:6e:6f:cc:f6:db:c9:2b:35:2f:42:d8:
63:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:BC:BD:5C:CE:AA:E9:5F:8C:A3:01:17:E6:24:1A:4F:A0:30:D9:CD
X509v3 Authority Key Identifier:
keyid:23:B1:94:30:87:CE:69:62:3E:76:B2:14:5B:34:79:AC:20:4B:A1:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7GUMIfOaWI-drIUWzR5rCBLock.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/73f1c9-82b0-4ede-b899-f742f395aaf9/1/I7GUMIfOaWI-drIUWzR5rCBLock.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:ad:6c:30:a0:7e:d0:43:35:5b:ca:a2:28:fe:6e:d9:93:69:
1c:29:36:d3:21:93:95:28:f4:51:30:7f:3a:11:89:49:16:7a:
55:36:30:9e:a9:66:9b:fe:15:61:f9:a5:10:da:45:0f:98:4d:
5d:3e:db:7d:63:80:90:d8:3b:dc:94:c4:4f:15:f9:f6:20:5b:
65:22:12:30:8d:10:7d:3f:14:85:bc:a5:d3:0c:5c:ea:0a:f9:
39:aa:3b:86:4f:d0:38:c9:45:7f:10:c0:e9:c0:fa:d6:a0:2d:
87:76:94:49:03:32:c3:26:ef:38:e9:12:dd:99:f2:15:49:93:
f3:54:df:a2:73:26:39:db:58:ab:32:b9:c8:81:1f:e2:5c:2c:
dd:2b:dd:38:5a:12:dc:49:28:67:74:fa:8f:a8:72:03:f7:a7:
ba:7d:b4:fe:9a:de:91:3f:dc:80:a9:bf:9c:cc:79:1a:7e:be:
92:c8:52:9d:19:56:28:5a:7d:32:03:81:9e:5b:c2:47:24:19:
d2:16:2a:5a:ce:75:80:7d:f5:af:a9:e2:ce:1c:d5:62:94:aa:
5c:ef:69:94:c6:a7:77:05:cb:1b:26:8e:25:4f:7d:63:35:94:
e9:65:c5:7a:d0:05:2b:bf:a8:1f:cf:03:d3:da:b9:75:70:b2:
c8:17:7e:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:28 2025 by rpki-client