Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
File: iZJ3h0cqfL3Zff209Tt077O7vFs.mft (raw, json)
Hash identifier: 82Rhjj1ZzXfIiLOitsBEp8X5uv20PW4jf7aSkD7ADGM=
Subject key identifier: 4E:D0:C7:F7:06:F6:77:79:59:09:7E:CB:DA:6E:08:B4:E8:A1:FF:72
Authority key identifier: 89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
Certificate issuer: /CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Certificate serial: 0198D5BC2693A3769C0A8A8166E25BA68215
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
Manifest number: 117A
Signing time: Sat 23 Aug 2025 07:02:14 +0000
Manifest this update: Sat 23 Aug 2025 07:02:14 +0000
Manifest next update: Sun 24 Aug 2025 07:02:14 +0000
Files and hashes: 1: iZJ3h0cqfL3Zff209Tt077O7vFs.crl (hash: UC9hBTgukf8UXI3DkuB7i38TGZIzzGatJ6GVWMdcM8w=)
2: k_0z9yImMkkx7Q7hZaLKVoTRO74.roa (hash: bY1XGYbefYoSOVyj59OiTxL9N9Rlyyr/sbaOhEye3EE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:26:93:a3:76:9c:0a:8a:81:66:e2:5b:a6:82:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Validity
Not Before: Aug 23 07:02:14 2025 GMT
Not After : Aug 24 07:02:14 2025 GMT
Subject: CN=4ed0c7f706f6777959097ecbda6e08b4e8a1ff72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5c:06:bf:6e:2f:5f:e8:03:f2:b2:be:6d:58:
cf:27:6e:cb:47:f9:c7:de:d6:a0:fe:da:2d:51:67:
6b:51:3f:30:52:f3:d9:27:b8:9a:bf:7d:fa:7a:dc:
87:d5:f6:ea:1f:e8:3d:6d:d2:bb:c0:dc:2a:bb:61:
8e:e0:b0:a4:83:b8:f9:b0:58:82:56:8c:3f:62:06:
7d:aa:16:c4:d4:f3:fb:fb:2d:d3:6c:f1:e5:3a:5a:
49:98:47:42:5c:cf:25:ab:b6:94:19:58:2e:3e:81:
c4:b5:31:10:d9:81:29:85:7f:86:d7:fd:1c:9b:70:
a9:74:af:42:8d:cd:98:97:ab:9b:b0:ba:77:cc:ae:
58:ce:44:24:15:b2:bc:d0:36:93:f0:19:b6:5b:8e:
01:a0:4d:09:8d:04:e2:7e:3e:b7:9a:55:47:10:f3:
41:95:c7:e1:57:aa:54:57:44:85:dd:ea:d4:9d:1b:
33:65:75:2d:52:1b:12:45:52:65:7e:48:8e:33:b0:
37:6d:e5:33:70:f7:6c:b9:dd:fc:b4:a2:1c:61:d8:
74:20:19:98:2f:db:c8:83:83:af:d0:d3:bb:17:b8:
a6:37:44:26:0f:6c:57:e5:e1:18:ed:33:2e:a3:71:
a2:68:e8:ca:4a:2a:d2:dd:7e:eb:ef:34:c4:90:e4:
9e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D0:C7:F7:06:F6:77:79:59:09:7E:CB:DA:6E:08:B4:E8:A1:FF:72
X509v3 Authority Key Identifier:
keyid:89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:3c:19:f5:30:14:8f:8d:3e:b4:c9:1e:4f:a2:2d:fd:e1:33:
c6:2b:21:82:00:dd:b4:a9:30:01:32:a5:e7:f0:30:63:fb:99:
e7:74:ac:bd:f6:a3:18:9a:c3:f3:17:f9:d4:05:16:d1:fe:e8:
2e:9f:bc:90:a5:94:0d:f4:f8:f7:0e:ab:8d:35:67:08:c5:83:
9b:b4:ff:7e:fd:67:56:66:64:7e:d9:86:64:4c:43:e3:eb:db:
6e:7a:68:f8:f0:37:1c:1e:c6:9c:9b:6b:da:b5:d1:7d:f2:a3:
e5:fd:55:d5:74:9c:c5:46:41:d5:97:71:19:e0:db:67:00:25:
f8:9e:a9:80:46:a3:53:f1:ff:78:0f:cf:6e:c8:88:99:1f:98:
61:ec:ff:c0:15:aa:82:f2:02:e8:e8:c8:5c:f1:0c:52:a2:f6:
75:a0:74:21:87:9a:14:f1:5a:2c:af:b5:79:84:d7:cb:5e:98:
ee:f2:32:6f:b0:5e:dd:27:fe:21:70:2a:68:07:80:21:be:e9:
0f:e6:12:d1:c1:e5:15:c7:fe:0f:64:c3:a2:4e:ad:19:66:fa:
a2:b5:b7:4c:e4:d5:3b:cf:74:a0:30:ec:d7:ca:ea:7a:c6:e3:
44:07:2f:48:76:94:bd:83:d7:4f:82:ff:ca:61:be:41:63:6c:
e0:a4:26:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:30:26 2025 by rpki-client