Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
File: I3ikqcUjJahZIICboaTYniHALxc.mft (raw, json)
Hash identifier: PE2NS5WBYIYYH3kygvhY0vppjPw5/bxJRBwuWrEMYnw=
Subject key identifier: 4F:71:1A:C6:2B:BD:70:25:D4:9E:F1:55:E5:53:D8:7D:F7:D6:9B:9B
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 0198D4A7A165401523BCD5846C3B02FC0F84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
Manifest number: 1398
Signing time: Sat 23 Aug 2025 02:00:12 +0000
Manifest this update: Sat 23 Aug 2025 02:00:12 +0000
Manifest next update: Sun 24 Aug 2025 02:00:12 +0000
Files and hashes: 1: I3ikqcUjJahZIICboaTYniHALxc.crl (hash: lVxB0W22Q/hv6hrmFlLLjycf4u7z/Ddkias+HLNQLWI=)
2: LWXmlZUU3ecfqvwZHXpe4N13PwE.roa (hash: 4NYVwWGAs7YF0X626zcPKU0/2BhITxR5hdojEVCb7vQ=)
3: Sb-J4R6jgDy1hu0trOifGY0aUIY.roa (hash: BnRnuIbBZBHwGOy/+XFTLzwpti+5vGhUFRVEfpqfups=)
4: XNLU8qoxsRXpQnmwz4ctSe-cqyE.roa (hash: JQ5L08jadmyYilDYeIqvPylZ8SNDZ1MGMwYpTLmwoLo=)
5: caXYCCXqjYg5FcmsNZB3ePKReDk.roa (hash: XSzupsyXsQ8GmhQZJGGSHfiNeG8fCN+9mFDFmlJ4Bu4=)
6: gnOWx6TZJqqJDVFgIEMBOXAqJm4.roa (hash: fy9tgSe6kfwMDX9Ibp9s7/6EtOy/O5uDNSQU1PskuXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:a1:65:40:15:23:bc:d5:84:6c:3b:02:fc:0f:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: Aug 23 02:00:12 2025 GMT
Not After : Aug 24 02:00:12 2025 GMT
Subject: CN=4f711ac62bbd7025d49ef155e553d87df7d69b9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a2:55:68:1d:6c:6b:29:78:02:82:c4:fa:74:
fb:26:0b:1b:53:74:05:ca:ac:d2:b6:7b:69:37:18:
ef:72:55:17:9f:d5:1f:8a:6f:ed:4e:d7:ad:d4:75:
94:06:e9:46:88:7c:67:8e:8a:bb:fc:25:9e:c9:c4:
96:2c:bd:cc:07:7d:47:ad:af:10:84:38:69:24:f2:
ba:db:be:aa:c8:12:c7:8c:a9:66:3e:f5:a0:07:cb:
41:42:1e:35:e1:8b:2c:8b:33:c7:8a:52:ba:c5:1c:
61:64:db:ba:d9:33:5f:02:a8:0c:12:ae:6f:51:c1:
8c:e7:38:61:d2:0d:a0:38:92:dc:d4:56:74:bc:b2:
8b:f4:d4:f5:2c:2f:24:ea:cd:8d:61:bf:01:8f:83:
80:f8:19:6c:82:13:d5:59:b1:9a:e4:a1:f9:ac:6e:
d8:8c:83:f5:7e:47:78:ee:0d:a7:11:e2:c8:e0:ef:
68:87:c6:af:11:91:e8:da:b2:c0:0d:d5:f6:b3:ef:
6b:64:12:46:60:3d:58:2f:4f:18:5e:c2:1f:82:1c:
b7:a6:9b:30:77:e7:09:c0:3d:fd:a2:d3:3c:46:5c:
d1:98:88:3a:4d:b4:62:fd:60:ee:6a:fd:94:30:ce:
58:37:a3:0e:9b:21:f5:aa:c0:28:e2:3c:dc:23:13:
f7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:71:1A:C6:2B:BD:70:25:D4:9E:F1:55:E5:53:D8:7D:F7:D6:9B:9B
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:01:93:33:d8:41:72:94:d8:9e:c3:b1:ab:54:3f:aa:37:e1:
ef:26:28:4a:f1:b5:2a:e9:63:c5:4b:31:35:51:29:34:fb:a9:
7d:6a:14:88:6a:c7:06:70:db:00:60:ed:88:dd:56:b5:4f:10:
d7:03:fb:de:af:55:fc:e9:31:4a:18:bc:8d:a8:6f:40:4f:ba:
a7:20:84:d1:a1:2d:40:ed:e0:69:ef:e7:32:40:96:04:38:4f:
ff:1d:24:82:1b:f8:bd:28:20:5f:f8:e2:a2:23:04:ad:a1:e4:
ea:55:ce:28:fb:6f:c7:bb:90:af:1c:b4:1e:5b:94:65:1e:77:
56:51:ff:77:ec:cf:62:75:99:77:05:4d:50:d3:df:f0:7e:a4:
dd:7a:2c:fc:9c:ee:ee:f0:ff:df:f0:cf:fa:a0:13:7b:8f:9c:
6d:19:81:ce:ca:35:26:74:d0:7e:4a:85:77:e5:8c:2b:88:18:
45:b8:93:4a:cc:05:2e:2d:de:42:b1:62:0a:5e:0f:ea:09:a8:
d1:43:e7:c2:66:34:ba:c2:79:89:9f:89:28:71:3f:44:08:d5:
62:98:c5:8d:4f:53:b1:f5:f3:22:b9:b2:71:40:a0:87:60:ea:
cd:bf:b9:19:d7:a6:fa:78:27:3c:b6:fe:83:0f:c7:47:43:19:
ee:96:99:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:26 2025 by rpki-client