Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
File: iKlKQUDhmzIGP8bnefWTFKdKDFE.mft (raw, json)
Hash identifier: eV8ritasO69r+BymDwWIaOMbXaVIwyfrEj4nWBJwW5U=
Subject key identifier: DC:CF:29:A3:3D:44:72:ED:AB:92:54:2F:11:19:B4:A6:D9:29:7B:B0
Authority key identifier: 88:A9:4A:41:40:E1:9B:32:06:3F:C6:E7:79:F5:93:14:A7:4A:0C:51
Certificate issuer: /CN=88a94a4140e19b32063fc6e779f59314a74a0c51
Certificate serial: 0198D4DFE5FBEFF29C4D26F229CD7D66E992
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 03:01:39 +0000
Manifest this update: Sat 23 Aug 2025 03:01:39 +0000
Manifest next update: Sun 24 Aug 2025 03:01:39 +0000
Files and hashes: 1: S1kW1dWYYAUdp34Ffvr3hqq6tx4.roa (hash: HPlJ0x+8hEc9+twnaORN/j75RT2RjTnSkW49RshA3cE=)
2: iKlKQUDhmzIGP8bnefWTFKdKDFE.crl (hash: AhDnokZBw2+Z+qGw9YRuEpZeLgeWQCsIhCvfGXknlt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:e5:fb:ef:f2:9c:4d:26:f2:29:cd:7d:66:e9:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a94a4140e19b32063fc6e779f59314a74a0c51
Validity
Not Before: Aug 23 03:01:39 2025 GMT
Not After : Aug 24 03:01:39 2025 GMT
Subject: CN=dccf29a33d4472edab92542f1119b4a6d9297bb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a3:e4:ba:bf:51:fd:af:8b:59:45:08:bc:e9:
0c:14:db:2d:81:50:f6:94:2e:b4:41:09:61:4e:b6:
85:e5:c1:a0:fe:41:f0:52:ac:81:da:f9:95:36:ba:
27:c9:e8:ee:bf:3d:ec:d7:93:d7:9f:5b:5f:fe:9e:
84:d2:d5:ed:84:4e:7c:42:49:70:ca:1b:c4:c9:ef:
a7:b9:c1:24:d2:84:43:e7:be:7d:3e:b7:e3:53:d3:
b8:a3:fd:88:3d:c4:a5:5d:66:f7:eb:dc:80:02:a4:
84:6d:e1:77:75:ff:58:83:57:67:a2:67:69:c0:2e:
34:3a:f5:8a:eb:79:f0:c5:10:91:8d:d1:b4:c2:a8:
7c:e1:32:6c:69:97:77:e4:06:f1:ef:ad:d4:00:c2:
fc:25:27:c0:57:62:1b:1b:aa:ee:76:de:ec:53:09:
bc:bf:2a:76:50:af:b0:f3:53:11:0f:0a:4f:29:bb:
fd:5a:c3:1a:f9:2a:1f:7e:af:24:6b:ce:eb:7a:53:
d0:6a:95:8b:b7:48:9c:8b:b1:ad:d1:4f:37:a6:83:
c4:54:ba:13:30:42:fb:50:80:3b:d4:d0:45:44:e9:
d3:32:15:8c:78:1a:cb:36:e6:ca:2a:dc:25:00:d5:
39:15:3b:c2:97:8b:21:5a:e6:80:92:65:7a:84:a8:
99:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:CF:29:A3:3D:44:72:ED:AB:92:54:2F:11:19:B4:A6:D9:29:7B:B0
X509v3 Authority Key Identifier:
keyid:88:A9:4A:41:40:E1:9B:32:06:3F:C6:E7:79:F5:93:14:A7:4A:0C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:49:a2:7e:47:c7:23:1f:b5:e8:4a:fa:26:a8:24:7e:2a:6f:
d4:bb:40:81:03:e4:a8:86:f2:65:d7:df:89:db:b3:87:8b:d9:
3d:b3:63:0e:58:12:97:67:45:23:b0:9b:f1:67:e1:aa:67:46:
0d:d7:fb:45:c0:03:a1:97:5e:73:16:f2:40:7e:95:0f:44:13:
47:bf:fc:92:8e:5a:c1:d1:9d:ec:ae:ec:be:93:62:4c:bf:ed:
62:94:bb:64:ef:ed:f4:63:91:81:de:95:a3:8b:83:a7:91:b7:
7b:4c:9c:d0:ab:b1:3e:d3:ca:d2:d0:24:aa:39:89:b5:20:dd:
87:25:98:ce:e1:7f:eb:48:04:98:fb:2b:ac:05:af:1c:f3:bc:
f9:84:52:4a:15:d8:da:74:b3:59:ef:bf:22:33:cc:33:4e:e0:
e6:b6:2c:36:3b:ae:da:43:d1:a2:f9:83:06:53:e6:41:5c:a1:
e1:71:39:4b:08:76:b0:6c:f3:a8:ba:27:85:76:39:4c:b8:5a:
97:4f:39:54:5a:18:db:ad:31:10:2e:f3:0e:ef:ee:62:9e:73:
d7:c0:13:a8:d4:01:16:d6:e0:81:5e:da:7b:0e:a7:a0:62:50:
8b:27:ea:c6:90:63:09:b8:5a:b9:06:1f:fc:0c:2c:51:84:b0:
b9:af:a6:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:45:47 2025 by rpki-client