Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
File: I08I-kIiU1wK8moNc0fb8XJUcZY.mft (raw, json)
Hash identifier: YSf/ZTPm0Pl/Sns7/cOLI3TQLRDu0ZZx7sWqL+qrOPM=
Subject key identifier: 38:BB:80:D7:A0:ED:54:C6:10:AD:2C:B4:44:B1:61:8C:23:41:AC:5C
Authority key identifier: 23:4F:08:FA:42:22:53:5C:0A:F2:6A:0D:73:47:DB:F1:72:54:71:96
Certificate issuer: /CN=234f08fa4222535c0af26a0d7347dbf172547196
Certificate serial: 0198D6CD2455463422ADB50C229B46C6059F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
Manifest number: 0138
Signing time: Sat 23 Aug 2025 12:00:24 +0000
Manifest this update: Sat 23 Aug 2025 12:00:24 +0000
Manifest next update: Sun 24 Aug 2025 12:00:24 +0000
Files and hashes: 1: I08I-kIiU1wK8moNc0fb8XJUcZY.crl (hash: 2/cA67h19rDqpVtmSF6HtO1XGzDfZecN527e/npSMbE=)
2: PMihf48EDZLf86f7BmXfYmZbV4M.roa (hash: kAi2yEZhpDZ5dFlA+0hzmB2XiAS3L8tb6zCyB/FGwDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:24:55:46:34:22:ad:b5:0c:22:9b:46:c6:05:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=234f08fa4222535c0af26a0d7347dbf172547196
Validity
Not Before: Aug 23 12:00:24 2025 GMT
Not After : Aug 24 12:00:24 2025 GMT
Subject: CN=38bb80d7a0ed54c610ad2cb444b1618c2341ac5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f6:68:0a:9b:2d:b3:42:2f:07:bf:12:73:69:
cd:55:50:f0:ce:1f:be:be:8f:74:92:7b:e5:c4:f1:
38:c0:80:23:fb:d8:4f:19:bc:2e:1c:04:2b:88:d5:
0e:bf:21:4f:04:f2:23:aa:ad:79:d7:d9:ce:1e:62:
b2:50:31:83:09:ce:bb:d4:0b:ff:2e:d4:79:32:76:
21:d3:f0:f0:3e:48:ef:25:ed:78:01:17:f1:cf:1a:
01:e9:dd:49:3a:a1:d8:c1:90:dd:85:4c:d5:3d:48:
43:e7:e4:20:c6:75:f3:2a:6f:53:ed:ed:ed:c4:f5:
4c:9f:5c:95:85:0f:ce:be:1f:e2:2a:cb:15:44:f4:
b1:f0:95:6b:9a:8e:2b:4a:b8:8d:bd:bc:53:1e:43:
c8:dc:8a:57:59:b1:a7:fd:ec:35:99:05:79:5a:cd:
a2:46:6a:fb:da:53:90:b3:5e:08:00:35:16:11:e2:
8e:d9:6c:7b:4c:da:c4:10:bc:e7:ae:e7:ad:c5:83:
1b:29:7a:1e:d2:ee:13:e0:bb:af:2a:8e:e4:6d:3b:
bf:e7:dd:b0:0f:dc:1a:b5:c1:81:e9:a7:e5:4e:b1:
87:74:05:7e:47:ef:32:e3:05:26:b1:ee:e1:6c:72:
c9:07:a6:e2:11:63:73:4f:5b:0f:fb:fd:7b:14:0a:
a6:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:BB:80:D7:A0:ED:54:C6:10:AD:2C:B4:44:B1:61:8C:23:41:AC:5C
X509v3 Authority Key Identifier:
keyid:23:4F:08:FA:42:22:53:5C:0A:F2:6A:0D:73:47:DB:F1:72:54:71:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I08I-kIiU1wK8moNc0fb8XJUcZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/638a9c-ec64-45de-bc2e-2be7edc7932d/1/I08I-kIiU1wK8moNc0fb8XJUcZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:7d:bd:e7:dc:af:ca:39:bd:31:78:5e:ed:a7:16:b1:d8:ea:
33:cf:3f:8f:7d:91:12:d6:48:b8:cf:c8:3f:b4:3e:ab:10:3c:
c5:14:26:2c:14:2b:f1:90:b4:12:5d:fe:dc:f7:1e:93:45:11:
a9:1c:10:4f:b3:e7:c2:03:37:19:b0:94:6a:05:4b:4a:e8:16:
9f:9e:7e:0d:83:de:de:11:58:d4:0e:43:c9:37:0c:9a:75:df:
79:01:fb:52:44:e2:70:9b:09:7f:9c:30:6d:24:4b:71:1e:b6:
ae:07:19:db:ec:f2:c9:06:82:5e:95:57:e1:c5:57:9b:6f:b9:
f8:87:83:09:6e:58:66:12:71:5d:56:7b:01:4c:42:40:02:6a:
ea:d4:d8:b0:d1:73:76:da:f1:b8:c6:23:75:2f:ac:77:98:e2:
f6:ce:7a:be:81:6d:69:e7:03:31:60:ed:c4:23:59:39:ed:00:
02:de:52:ca:35:65:7d:27:91:8b:cb:a2:1b:96:33:89:27:3e:
1f:cd:4d:cb:d8:72:71:82:1b:b0:d0:eb:b4:06:32:91:c1:3c:
07:3a:1f:b0:be:9b:4c:de:98:07:b6:bb:ae:af:6c:23:cb:fd:
fe:af:0c:d6:34:f6:4b:f0:33:a4:63:ff:41:46:c3:34:b8:5b:
8d:e8:5a:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:46:22 2025 by rpki-client