Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
File: IQm0ddOrXNHMHElnHnf_nbXOGfE.mft (raw, json)
Hash identifier: I9LNvRze+ac6nSHpHcV+0v/Ii4wfJwRG0tGVj/kWszk=
Subject key identifier: 3B:3F:4B:68:DF:6D:0B:33:54:D3:C0:9D:C7:89:F8:11:13:41:E0:25
Authority key identifier: 21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
Certificate issuer: /CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Certificate serial: 0198D515A2541611392DE82722C702354B3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
Manifest number: 1044
Signing time: Sat 23 Aug 2025 04:00:21 +0000
Manifest this update: Sat 23 Aug 2025 04:00:21 +0000
Manifest next update: Sun 24 Aug 2025 04:00:21 +0000
Files and hashes: 1: IQm0ddOrXNHMHElnHnf_nbXOGfE.crl (hash: oez75v7zEVGhS4GSNtuj4BNm53si/DcNE6M7WRdKnBw=)
2: gxfPyS5KakpFEwmfLQLrUMtzDuA.roa (hash: rxllc4raZ48lNaZN0VdX0i2mHb0wFctajLKxvoGGQes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:a2:54:16:11:39:2d:e8:27:22:c7:02:35:4b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Validity
Not Before: Aug 23 04:00:21 2025 GMT
Not After : Aug 24 04:00:21 2025 GMT
Subject: CN=3b3f4b68df6d0b3354d3c09dc789f8111341e025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:3c:b0:bc:7a:ae:2c:98:7e:85:bf:61:e6:f1:
5f:a1:0e:b3:20:bd:0e:6c:13:c2:5a:a6:f9:a9:03:
b7:70:9e:eb:51:8b:3c:ec:37:7c:0d:8f:de:d7:9b:
98:95:6f:03:51:b2:a6:26:3e:45:12:5e:e8:4d:54:
04:79:fb:20:cc:1a:f4:30:26:48:31:11:69:f8:97:
73:95:0a:72:77:08:5f:da:ad:64:a4:6b:97:65:f3:
1e:d9:9c:9c:32:f6:82:d6:e4:db:c1:2c:f3:3f:09:
0d:35:01:e2:ae:ee:28:e2:b2:ea:c8:f1:1f:f6:f3:
63:17:ab:b1:bd:5e:04:d0:56:1d:5a:cb:68:5b:3a:
69:59:79:cc:12:75:5f:77:21:49:39:2c:0c:49:5e:
80:bd:d3:4b:cd:90:74:e6:58:58:fe:d4:01:48:73:
f7:2a:c5:13:a0:3a:a1:5b:bb:be:46:2b:ef:a0:e8:
6a:4b:08:bd:7f:32:9a:f5:74:b4:c3:74:a7:b4:1c:
9e:87:36:70:f3:be:c9:8f:c3:f3:f6:1b:f5:5a:72:
a6:49:5f:26:1d:e5:f6:f4:43:ac:8d:c3:ec:73:66:
2b:fd:d5:22:f9:ae:06:b9:18:c7:77:33:9c:cd:82:
63:74:39:18:8f:fb:40:41:96:c3:dc:e5:e0:da:7b:
fc:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:3F:4B:68:DF:6D:0B:33:54:D3:C0:9D:C7:89:F8:11:13:41:E0:25
X509v3 Authority Key Identifier:
keyid:21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:5e:00:13:4c:ba:94:e7:ee:e4:92:e0:cc:2e:2e:56:d5:30:
32:db:dc:3f:51:ca:c4:4e:a9:37:02:2d:1c:6d:c0:89:4f:7d:
66:05:0e:6e:22:d8:70:6d:79:3e:5b:c3:ab:5d:78:d9:e4:f4:
fe:52:e3:5a:73:a0:29:a2:97:93:8a:1e:43:75:5c:fb:c3:ef:
c4:f3:82:37:57:da:3f:ce:4a:91:50:79:d3:74:3d:d3:c6:70:
11:b3:99:1b:5c:42:30:ce:63:58:e8:e3:5f:ec:e3:bb:0a:33:
e9:c6:ad:57:22:f2:c8:8e:44:ad:95:0e:d9:08:ee:66:0c:24:
44:4a:56:04:fd:ab:72:f9:63:fa:fa:b4:05:2a:2c:72:68:87:
65:bd:77:fb:fa:a8:b3:1c:7a:a6:01:ac:0c:27:ed:e6:50:c5:
67:9e:db:33:d9:61:5f:b2:d1:4d:41:fe:ad:fe:10:df:0b:26:
3c:91:d1:eb:a0:34:8a:a8:12:9e:57:c1:cc:7d:49:98:a7:a8:
93:16:e2:55:02:e1:d0:33:2e:04:b8:7b:f2:b6:41:3d:19:e4:
1f:46:37:f5:63:d9:62:d3:94:2b:35:a1:4d:4d:b2:b7:4f:d5:
2a:c1:a8:bc:66:eb:26:33:d9:c7:0b:d6:69:bc:14:08:0d:35:
48:25:70:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:13:31 2025 by rpki-client