Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: iDXqsd6VULvF4HiYATWGwCaMQyXrNCIQnx4n5gcMAqY=
Subject key identifier: B1:72:DD:3A:07:48:9B:27:D5:88:C7:09:C7:29:34:54:E2:D6:0D:EA
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 0198D4727A5671617FAC27F4F08CE2B547C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0D03
Signing time: Sat 23 Aug 2025 01:02:08 +0000
Manifest this update: Sat 23 Aug 2025 01:02:08 +0000
Manifest next update: Sun 24 Aug 2025 01:02:08 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: XjOzQCHTPZK30X+5sxiVqkB0VT9DdgBRTbzIaA3HcWY=)
2: wnACGaMKOrsg5i1-6PAAx8VKQ0Y.roa (hash: kxRyBHTXArEsk0qrBdKwIl2FB5x6O/p6TWut1bU4JRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:7a:56:71:61:7f:ac:27:f4:f0:8c:e2:b5:47:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Aug 23 01:02:08 2025 GMT
Not After : Aug 24 01:02:08 2025 GMT
Subject: CN=b172dd3a07489b27d588c709c7293454e2d60dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:10:23:aa:8a:1c:50:8f:7f:57:c4:af:a7:78:
d2:f4:56:38:55:05:49:7e:02:a0:83:c7:6a:0f:d9:
60:9a:fb:1a:84:ee:2a:f4:f7:79:a4:e3:f8:09:d1:
34:ad:4d:12:f5:0a:34:c0:eb:33:f9:c9:8e:5f:3d:
c5:b1:2e:c3:a6:e7:cb:7c:fd:41:ec:27:df:03:58:
93:60:ae:33:bd:98:c8:15:3d:c9:83:22:a0:9f:ff:
4e:16:5f:b2:05:26:e5:a2:d0:4d:cd:cc:27:44:13:
fe:17:76:24:83:2d:46:bb:a8:78:8c:2d:2c:52:ad:
99:c5:ad:44:cd:b3:07:53:60:6a:fa:4b:40:2d:6d:
f1:48:82:5e:4d:33:17:37:b9:7b:44:a4:3c:dc:39:
2d:44:30:52:dd:bc:9a:cd:b8:11:c1:fa:b5:e1:ac:
31:f2:b7:1c:a0:56:31:93:65:53:2c:c9:b8:ed:1e:
d3:54:35:0c:0b:11:4a:a4:4e:fa:6b:c6:8e:e3:66:
e6:99:02:bc:02:ca:d8:c4:a8:49:0d:49:2e:26:38:
17:92:61:a6:0a:c2:6a:90:0a:b7:9c:41:eb:9e:0f:
f4:2c:3a:9e:02:68:b5:f2:ab:93:2e:2a:15:43:21:
87:d8:48:be:2d:a0:0a:eb:9a:a4:96:6c:d7:14:e5:
e6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:72:DD:3A:07:48:9B:27:D5:88:C7:09:C7:29:34:54:E2:D6:0D:EA
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:ad:64:e9:09:ed:3e:08:65:8e:ed:4a:38:18:73:6c:c6:29:
b6:3e:e3:20:2a:ce:28:db:04:68:63:7e:83:bd:9d:08:be:c0:
d6:e0:82:a9:89:f1:bf:e7:61:fd:3a:83:8f:b3:fa:0b:c3:0c:
92:e3:16:22:73:57:6b:a5:15:f6:49:25:3c:01:1c:77:d8:98:
92:b0:40:ca:df:04:b9:70:e8:d8:e4:0d:b6:06:df:c7:67:51:
00:1d:25:d3:e7:6a:5a:2e:13:bf:c0:35:0e:93:c9:d1:2b:ee:
66:a8:12:96:c6:05:7b:a1:a7:af:41:6d:c4:8b:2b:2d:02:1d:
c4:d6:da:97:c6:2d:cf:94:a5:37:49:8c:48:b4:d5:fb:da:32:
74:34:b6:88:cc:de:8c:b0:6e:ff:93:43:10:b8:28:63:a6:67:
7b:4a:39:07:84:d6:d5:a4:c9:6c:df:35:6f:73:1e:65:1f:d1:
83:5e:4e:02:9d:7a:db:7d:a4:d4:29:58:8e:56:3b:cd:ee:da:
78:aa:bf:e2:8f:d4:6a:fc:dc:9a:e2:36:a1:3b:ee:b5:91:ad:
be:4c:f5:d3:f4:38:e1:b8:fd:fc:96:a6:bb:e6:20:84:2b:d4:
f5:7b:26:5f:4d:17:96:30:a5:c0:08:61:c6:ad:de:59:33:b2:
8c:57:38:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:38:58 2025 by rpki-client