Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
File: 20IFnOKR1Jpmkgcxx2faVj7yESQ.mft (raw, json)
Hash identifier: 0dVlOavZlJTtyEP7tJ2jmEjkrQd9u8BFFYgDeZKA5TY=
Subject key identifier: 1F:92:39:C8:EC:09:F6:AC:87:8C:2F:74:54:25:0F:F1:99:5B:7F:1C
Authority key identifier: DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
Certificate issuer: /CN=db42059ce291d49a66920731c767da563ef21124
Certificate serial: 0198D4E029BBAF8E2A0D57FFFCF4653F83DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
Manifest number: 0945
Signing time: Sat 23 Aug 2025 03:01:57 +0000
Manifest this update: Sat 23 Aug 2025 03:01:57 +0000
Manifest next update: Sun 24 Aug 2025 03:01:57 +0000
Files and hashes: 1: 20IFnOKR1Jpmkgcxx2faVj7yESQ.crl (hash: fa4kBCkoRqlq/MR0pbdayJvZKwIYkg0tBo6104VSJNU=)
2: 4Eso2GRh3TFlocCc5lcI1-kD4Pk.roa (hash: ZZWcQEmA2vmSeltVrHKBZfPJ+X7E/tLB/wKbTZ0f8BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:29:bb:af:8e:2a:0d:57:ff:fc:f4:65:3f:83:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db42059ce291d49a66920731c767da563ef21124
Validity
Not Before: Aug 23 03:01:57 2025 GMT
Not After : Aug 24 03:01:57 2025 GMT
Subject: CN=1f9239c8ec09f6ac878c2f7454250ff1995b7f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6e:b4:d4:dc:99:9c:39:8e:73:54:09:62:b4:
58:b9:35:f4:e1:d5:24:8e:95:58:c1:c5:06:74:34:
37:1a:dd:8b:c0:c0:b8:5a:1f:42:c2:2e:f3:7a:9c:
7d:e8:a7:15:54:e7:91:ea:85:99:b8:88:18:f5:49:
a9:dd:54:39:11:55:41:a3:7c:74:c3:03:ae:05:c2:
a6:2e:77:7d:63:89:1a:26:09:b6:c8:41:cd:29:22:
2c:2b:e8:9f:43:82:ab:e5:f6:2e:23:42:34:71:a4:
aa:57:b8:ca:d0:52:51:c8:eb:87:3d:7d:77:87:98:
81:72:5e:f4:14:ae:2d:73:9e:72:95:b8:77:15:b4:
88:ca:36:44:d5:ea:5a:a3:ea:76:3c:2c:38:76:12:
16:a1:19:c0:52:5d:a3:2c:fe:21:78:54:e2:c9:5a:
fa:48:9e:65:44:4b:27:51:49:f6:dd:b4:c6:cb:5a:
a7:85:b1:00:f6:11:1d:de:2a:6f:9c:32:76:b4:c8:
64:0b:2a:fa:69:8b:f2:12:42:18:8c:c6:5c:89:24:
77:49:5e:6f:13:27:3b:aa:4f:93:53:fb:27:8c:35:
0a:73:1a:76:f5:12:b6:06:07:8b:82:dc:36:b7:56:
67:94:1b:91:0d:01:ac:72:2e:55:25:3b:7a:84:ab:
31:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:92:39:C8:EC:09:F6:AC:87:8C:2F:74:54:25:0F:F1:99:5B:7F:1C
X509v3 Authority Key Identifier:
keyid:DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:dd:27:1e:be:b4:1a:41:bd:21:b1:25:9b:53:82:f5:80:1b:
14:60:19:99:36:02:4d:ef:4f:7a:4f:63:a0:b2:d5:41:a6:5a:
06:e4:0f:2b:d1:bc:ed:fb:1c:1b:62:c2:70:8c:5f:8b:97:09:
78:56:eb:61:4d:73:5e:b6:27:34:d4:57:63:d3:99:d2:9a:30:
d2:80:d9:77:ab:81:ef:7e:6c:72:b1:2e:11:24:4a:bb:d2:31:
b4:33:bc:ae:ad:53:b7:8d:cd:65:30:e0:21:92:34:9a:18:c9:
dc:15:d2:da:33:cf:c5:9b:83:28:48:cd:91:09:cb:ee:98:6b:
3e:14:31:ea:ba:4b:da:0f:47:da:38:03:41:a2:3d:a3:68:59:
e1:51:37:fd:b7:7c:ee:21:91:6f:bb:be:3d:07:ad:32:61:20:
5f:ce:31:1e:fa:22:04:a0:ae:75:dd:69:de:f8:0b:01:61:c8:
c6:0a:98:e3:ae:1d:8f:aa:b1:f0:3e:a5:67:dd:00:06:21:cc:
85:d8:93:0e:e9:9b:0a:39:17:4b:5b:92:3c:34:9d:c5:b7:86:
0c:73:43:f7:91:47:d4:86:ca:7e:d2:6f:6f:d1:a8:49:01:5c:
bc:eb:99:0f:d5:b9:4c:c9:3f:a1:fe:29:58:28:d2:ae:15:f9:
56:c0:06:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:16 2025 by rpki-client