Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json)
Hash identifier: uz7/AlxWJbD9H6FsqfoaCiwAWbm3jyGL1+nv31x/g8Y=
Subject key identifier: 58:A6:F9:40:C9:23:D0:93:90:2B:42:08:05:42:CC:EE:85:AA:5E:1A
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial: 0198D515618A1F3CCC22FBB9F9001A34F45E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
Manifest number: 0D92
Signing time: Sat 23 Aug 2025 04:00:04 +0000
Manifest this update: Sat 23 Aug 2025 04:00:04 +0000
Manifest next update: Sun 24 Aug 2025 04:00:04 +0000
Files and hashes: 1: CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa (hash: xkyChTjHPfmap3pEfIzmPahUIANDsQxEAOedvER2SvU=)
2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: qzxOQYr0t56L42FCJTi/a6t/lKbiLLjADoEXoRbM0Pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:61:8a:1f:3c:cc:22:fb:b9:f9:00:1a:34:f4:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b8801543812040477d4744229466c8537d45171
Validity
Not Before: Aug 23 04:00:04 2025 GMT
Not After : Aug 24 04:00:04 2025 GMT
Subject: CN=58a6f940c923d093902b42080542ccee85aa5e1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:6a:36:1c:c2:f1:47:fe:12:79:cd:fe:b9:b4:
b8:a6:f0:6c:56:ab:ac:2b:c3:16:f9:1b:63:0e:56:
62:65:4a:77:7c:b6:01:25:2a:f7:ec:24:5b:30:6f:
75:7c:7f:15:6b:40:52:b1:a4:d7:ce:a9:f3:ff:76:
28:b0:a6:59:42:d1:ca:2b:ce:99:b7:9d:87:e9:40:
c2:ce:b7:25:c9:c7:73:a6:8d:0f:11:f3:ff:7b:4f:
01:9c:d2:80:7a:26:f9:ed:e3:a8:23:50:b3:ef:3e:
00:6c:f2:be:24:c3:4c:c6:2e:7a:30:b9:6c:cb:d9:
17:4e:c4:18:6a:5a:19:8d:84:4f:c3:49:c2:7a:11:
5a:f1:d1:77:41:82:3f:f7:63:b4:13:8c:11:79:9c:
98:d0:16:5b:77:1f:35:bb:c5:37:09:16:1d:04:eb:
48:a2:f6:cd:b8:0a:a7:4e:a7:71:f1:98:54:4e:a3:
3a:78:14:74:65:9d:57:70:f3:48:4a:d3:e5:0c:30:
59:6c:36:fc:91:26:e1:34:a5:a0:0b:fa:ac:22:46:
22:65:66:11:c7:48:76:64:7f:07:7d:4c:23:d1:7b:
dd:f6:f0:f9:fc:16:48:6e:7a:82:11:e8:47:6e:7c:
9c:10:5b:be:de:c0:88:48:58:51:ea:c5:13:23:bb:
b7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A6:F9:40:C9:23:D0:93:90:2B:42:08:05:42:CC:EE:85:AA:5E:1A
X509v3 Authority Key Identifier:
keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:e3:75:b7:e1:08:09:f7:19:0d:95:eb:c3:10:e8:df:62:f6:
fa:f4:23:50:ab:dc:0a:c1:65:2c:2c:4e:9d:b2:d5:b7:2b:40:
d7:dc:26:12:e3:60:13:ad:9a:3a:d3:98:be:fd:76:12:52:6a:
10:f8:8d:2d:51:5a:77:22:f3:d9:02:95:fb:e7:9e:7a:d3:cd:
7e:b3:2b:42:ad:07:e9:9d:fe:27:b9:96:e0:33:87:3b:71:ff:
bf:e3:3a:0d:f8:35:ef:88:3c:45:e6:ff:07:9a:20:4e:a4:57:
e6:1c:da:3c:6b:52:f3:c1:b7:62:36:2e:eb:7b:61:aa:97:48:
04:f1:c8:ed:5c:d0:16:91:31:4d:f4:3f:2c:40:33:36:18:30:
3c:0a:f2:ed:0f:b5:4e:62:79:b4:8f:9f:1b:9c:23:1a:4f:05:
e5:ca:9b:6e:db:80:22:4d:69:75:31:d2:23:dc:e0:d2:bb:a8:
55:af:8f:e3:60:aa:23:93:25:6f:fb:b7:ac:d5:b1:e0:c8:c9:
3e:d2:45:25:00:4d:a4:60:97:d4:8c:da:8d:4a:cc:b9:09:59:
01:59:cb:d5:4d:81:4a:93:92:3c:4c:78:26:1d:1d:fa:fa:cf:
63:05:32:08:78:a5:c5:5d:b2:f9:ea:b4:a2:d2:cc:7d:fd:39:
b2:b5:99:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:25:06 2025 by rpki-client