Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
File: ilUqhuMbaeXVMg7egdNLsSikXO4.mft (raw, json)
Hash identifier: nMl+09jAhVUqSO5ZnZm06TeogLhHYlzb1QCERP9F+zI=
Subject key identifier: 30:5B:47:AD:C0:70:51:80:45:B4:4B:A6:E2:E3:F5:D5:5F:53:72:B8
Authority key identifier: 8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE
Certificate issuer: /CN=8a552a86e31b69e5d5320ede81d34bb128a45cee
Certificate serial: 0198D583E3BDD7599A368E7A68F696A7FF2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 06:00:47 +0000
Manifest this update: Sat 23 Aug 2025 06:00:47 +0000
Manifest next update: Sun 24 Aug 2025 06:00:47 +0000
Files and hashes: 1: gx1SCX17EN8yNFFOaZKqHyy38bg.roa (hash: y86l006aIRQbh6g6sMv1/V04L9sTmUKHfB0xrZAQk4Q=)
2: ilUqhuMbaeXVMg7egdNLsSikXO4.crl (hash: kg54RFwrt+YRnv5aeIGUAOWDyDDTUAZqCqzhcSszyKA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:e3:bd:d7:59:9a:36:8e:7a:68:f6:96:a7:ff:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a552a86e31b69e5d5320ede81d34bb128a45cee
Validity
Not Before: Aug 23 06:00:47 2025 GMT
Not After : Aug 24 06:00:47 2025 GMT
Subject: CN=305b47adc070518045b44ba6e2e3f5d55f5372b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e5:c1:4c:87:56:7e:af:6d:c5:b7:ee:52:5a:
04:30:46:f6:d9:c3:c9:57:b9:14:d8:10:c8:59:25:
5a:81:d6:94:af:e7:95:74:89:42:87:0d:b5:0f:2d:
1a:95:85:0a:00:d4:b7:4a:20:4d:28:cc:02:60:0d:
6a:ef:52:36:6f:a3:24:18:a5:7d:b0:a6:a0:19:74:
20:dd:73:71:e5:bd:09:2c:29:03:4b:bc:50:4f:c6:
c4:27:42:df:7b:0c:c9:72:79:cd:e8:23:ef:3c:cc:
5a:14:ad:5a:61:d5:16:e9:49:01:4c:a5:fd:97:b1:
a8:b5:4a:ba:82:9d:f0:16:c9:85:c2:cd:5f:67:80:
de:4f:5e:b5:9d:94:42:06:4b:e7:8a:91:14:80:0c:
5a:b8:b6:d5:63:de:9d:2b:e4:6b:00:6e:ec:2d:3d:
92:0d:cc:4e:51:c5:44:8c:c3:91:fc:c8:37:97:4e:
fa:9b:8e:e6:0a:3e:30:4e:a9:09:57:d9:36:37:a0:
e4:7b:d4:33:14:97:9e:c2:44:e2:f2:cb:a7:8d:39:
17:16:09:bd:ef:80:08:31:e8:e9:4b:72:a9:6d:28:
9c:76:dd:b0:00:b2:10:da:4b:4c:1d:11:3e:cf:a7:
e8:c9:7a:2e:1c:a2:9e:64:02:4a:9b:8a:a0:48:36:
e3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:5B:47:AD:C0:70:51:80:45:B4:4B:A6:E2:E3:F5:D5:5F:53:72:B8
X509v3 Authority Key Identifier:
keyid:8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:30:07:4a:e4:f6:7c:8e:8f:17:ee:02:b9:fa:70:be:fc:72:
e8:1a:e8:cb:e2:ac:69:d6:9e:0f:cc:53:d7:15:09:43:8a:4d:
64:35:b3:71:8c:a5:d2:ae:0f:2c:98:b3:ac:3a:5d:05:eb:ed:
1a:13:26:5b:8f:05:8b:9f:05:6d:10:42:d3:97:9a:f5:02:26:
18:dc:72:cb:a0:ef:c7:8d:67:08:df:c2:58:46:53:3c:f5:8c:
79:df:bc:9e:64:c7:b7:b5:7c:db:11:40:08:39:79:70:8f:1d:
47:58:30:53:f8:9c:9a:9d:0e:67:22:49:3a:b0:0d:44:4c:3c:
69:dc:58:75:f1:c3:8a:4d:36:8a:ef:02:04:99:00:8f:fb:be:
11:50:43:6b:20:f2:c8:24:70:29:c7:96:e7:5f:e0:ad:84:f1:
2d:73:51:1c:44:94:6b:f2:ad:46:6b:27:4e:a4:17:a4:c4:6b:
db:00:7a:cd:62:7e:b1:b5:39:b9:46:79:66:ad:d3:93:b3:9a:
90:5f:96:2c:14:66:fc:f8:37:4c:11:91:69:87:b8:82:80:21:
3c:79:ea:73:d9:e0:9f:fd:6d:ac:b2:3a:b9:4a:bb:92:59:1a:
ac:d7:72:2f:29:7a:60:8a:2a:88:00:9b:cb:75:7f:43:41:fc:
22:e6:46:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:32 2025 by rpki-client