Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
File: iyH_rekwvR_S4XiM_0B9nTQTThc.mft (raw, json)
Hash identifier: nwVafyoND86R7fOU9BHesbkNSR/5Q2tsiliZc6Pw1m4=
Subject key identifier: 5E:37:72:FA:17:D0:63:1B:0C:23:49:8A:5F:9A:61:2E:87:51:65:0F
Authority key identifier: 8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
Certificate issuer: /CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Certificate serial: 0198D472921F3E1695BEF06D4047D0D01A9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
Manifest number: 127D
Signing time: Sat 23 Aug 2025 01:02:14 +0000
Manifest this update: Sat 23 Aug 2025 01:02:14 +0000
Manifest next update: Sun 24 Aug 2025 01:02:14 +0000
Files and hashes: 1: YR9oUfcPn7hi-EfIp0zPWNgdoLI.roa (hash: gZUlOd3rhYgj7y7iYiifqKrTqOs4vDy8o9fKugEnj2M=)
2: iyH_rekwvR_S4XiM_0B9nTQTThc.crl (hash: XWyNJ53HXhuqLYIncHPL5DhnTquTxMYfC4NawSCJO8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:92:1f:3e:16:95:be:f0:6d:40:47:d0:d0:1a:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b21ffade930bd1fd2e1788cff407d9d34134e17
Validity
Not Before: Aug 23 01:02:14 2025 GMT
Not After : Aug 24 01:02:14 2025 GMT
Subject: CN=5e3772fa17d0631b0c23498a5f9a612e8751650f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:14:ee:a7:21:fa:2e:a4:5e:6c:bb:35:26:49:
22:05:dc:f2:22:a4:1f:52:22:cd:ac:45:5b:a2:26:
49:1f:fe:32:16:f7:86:8b:0f:40:19:4f:cc:37:e0:
b7:77:d3:6e:f2:13:54:a9:8c:f7:27:12:e5:b4:25:
1a:df:ad:f4:87:49:3c:e9:c1:6a:a0:10:31:1d:d0:
d4:a1:37:31:a9:38:13:49:f9:0c:0f:a5:93:44:f3:
f5:73:c4:22:23:1e:ae:fd:12:4d:ce:91:15:d0:a2:
f4:0f:4c:fd:5a:25:0d:76:0d:b3:00:68:47:dc:a4:
7c:da:e4:db:4e:bb:f0:7f:05:64:93:6a:d4:ed:f1:
4f:9d:cf:b6:f8:46:8b:34:1a:19:c7:49:7d:5c:d2:
a6:1d:1d:06:81:4c:50:c4:f4:d0:c6:81:14:fd:aa:
2c:b0:9e:7d:ab:5a:a1:53:bc:5a:67:92:b1:4e:b2:
b8:17:e1:94:5a:c9:8d:07:cc:1a:50:82:65:2c:82:
e2:18:47:fb:61:57:dd:97:50:73:92:b3:ee:87:4e:
35:bf:d0:56:70:cc:df:24:73:2b:86:39:99:79:b9:
97:aa:64:2a:2e:d3:52:d9:d5:84:35:f4:1a:63:d3:
88:05:a0:a7:27:00:fc:93:c8:13:a0:a9:59:fd:2c:
2e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:37:72:FA:17:D0:63:1B:0C:23:49:8A:5F:9A:61:2E:87:51:65:0F
X509v3 Authority Key Identifier:
keyid:8B:21:FF:AD:E9:30:BD:1F:D2:E1:78:8C:FF:40:7D:9D:34:13:4E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyH_rekwvR_S4XiM_0B9nTQTThc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/9ce0eb-3aba-4b36-b7c4-425c51d7888b/1/iyH_rekwvR_S4XiM_0B9nTQTThc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:56:0c:72:74:c3:3a:2f:99:4a:f5:01:eb:d4:04:8c:f6:4b:
2e:17:2b:59:da:05:9a:9f:2a:50:0e:47:5c:1b:05:80:a7:47:
4d:20:02:c7:63:b2:3f:32:98:01:6d:8c:31:22:5b:4b:cf:c2:
a8:a8:14:92:07:62:c6:3d:9f:56:45:ec:27:9e:0b:30:a6:66:
ac:d1:ec:02:46:79:2c:04:58:78:ab:1e:e7:57:56:a6:b1:28:
04:1d:69:a0:42:6b:8f:c9:60:14:0c:23:53:42:f3:82:53:c2:
7e:ba:56:55:13:16:5c:3d:9f:31:75:5a:47:a8:c9:63:bc:6d:
25:5d:1e:e9:c3:03:6f:b5:10:4d:d7:09:d0:d1:6e:28:37:74:
80:9f:93:12:ea:30:22:01:b0:cf:af:52:b8:04:98:1d:ef:89:
ec:aa:f2:37:ae:91:b8:aa:69:aa:c0:35:75:6c:21:e3:e1:15:
aa:19:6e:95:3d:09:58:d8:ae:a0:cb:75:9d:e3:fc:6a:a2:ef:
17:f0:b4:3c:c6:9d:3d:d5:8d:be:39:71:a5:c6:74:78:03:53:
cf:c0:fa:0a:2a:1a:5d:a0:11:5e:7b:40:cc:97:10:b9:c7:d7:
87:4e:33:4e:3e:a1:c5:82:dd:9f:14:b1:3e:e5:92:95:6b:9a:
17:38:b9:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:41:09 2025 by rpki-client