Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
File: I32X8VCOekR4mfWaVfuKpiQe9RA.mft (raw, json)
Hash identifier: 8T7MRcveTIqztuoyEvbJFsJRZvt+79ULjV9OYjuSYmY=
Subject key identifier: 0F:98:57:4C:89:0B:3D:63:FE:32:52:6B:68:17:F7:15:FE:B7:30:42
Authority key identifier: 23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
Certificate issuer: /CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Certificate serial: 0198D4E0D928DC9D0318AA6E6AFA26767F33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
Manifest number: 04D5
Signing time: Sat 23 Aug 2025 03:02:42 +0000
Manifest this update: Sat 23 Aug 2025 03:02:42 +0000
Manifest next update: Sun 24 Aug 2025 03:02:42 +0000
Files and hashes: 1: AgvVH_Z5ZikBFIUyEGB_f4ftLfg.roa (hash: Ii6l1o1UjR6zsFk/Ik5xPFxEIQrzvV/YcOC6UeUTh7g=)
2: I32X8VCOekR4mfWaVfuKpiQe9RA.crl (hash: pvSonAbO0CWyKBQtANHa4enj12stFOR5ryVBQPsVgtE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:d9:28:dc:9d:03:18:aa:6e:6a:fa:26:76:7f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237d97f1508e7a447899f59a55fb8aa6241ef510
Validity
Not Before: Aug 23 03:02:42 2025 GMT
Not After : Aug 24 03:02:42 2025 GMT
Subject: CN=0f98574c890b3d63fe32526b6817f715feb73042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4f:98:0f:58:d2:d5:0c:9a:52:23:70:07:88:
16:3b:f5:c0:9d:a3:4f:4a:91:a5:1e:4b:dc:d1:d2:
47:60:8d:a1:c0:1f:d7:fe:71:92:c3:71:28:97:8d:
57:e5:c1:a7:66:40:37:51:9f:cd:5b:cc:9d:2e:5a:
07:c5:18:d8:c9:8f:8d:91:69:6c:64:b1:86:c4:13:
7d:a8:3e:90:41:3d:ae:61:ab:45:91:bc:ff:f1:ad:
be:1a:65:21:07:3f:ef:c0:25:13:4a:d2:bf:65:ed:
76:93:27:6e:ac:bb:ee:80:b0:9e:ec:c0:55:3a:82:
da:31:6a:75:93:85:c6:d6:d5:61:7e:13:fa:4b:02:
e8:b0:76:5c:9f:5a:2f:b0:3c:0d:fb:f8:de:ae:4f:
a3:38:55:73:67:c6:6d:0c:76:8d:3a:cc:17:3d:e5:
43:bb:c3:8d:a1:97:6c:f3:c8:77:82:78:ac:49:dc:
06:6d:6d:d9:c4:0a:cf:5a:00:85:e6:39:9e:92:c4:
4a:de:5f:87:9a:5f:0b:75:d4:71:aa:9e:7c:58:8a:
25:88:4f:80:84:f0:e1:45:28:14:7d:cc:40:30:54:
ae:b2:b4:33:67:8c:a4:ca:f1:53:20:89:17:6a:ac:
39:a7:bc:fa:4d:5b:5d:3b:90:20:5a:3e:57:dc:5d:
94:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:98:57:4C:89:0B:3D:63:FE:32:52:6B:68:17:F7:15:FE:B7:30:42
X509v3 Authority Key Identifier:
keyid:23:7D:97:F1:50:8E:7A:44:78:99:F5:9A:55:FB:8A:A6:24:1E:F5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I32X8VCOekR4mfWaVfuKpiQe9RA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/f503d7-1fb6-4370-b44f-44a41a93113e/1/I32X8VCOekR4mfWaVfuKpiQe9RA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:65:0b:3c:bf:24:26:31:51:59:20:38:3f:f1:b4:d0:28:d7:
17:d0:de:d0:14:38:06:7f:c6:2f:30:07:df:e9:05:9d:fa:04:
fb:24:d8:79:95:98:7c:c2:61:83:2c:32:0c:b6:fa:98:1e:fc:
5e:69:c0:7c:87:61:01:76:96:17:9e:0b:89:9e:f2:f7:cd:f6:
99:8a:d9:44:2f:06:c5:76:41:c6:6a:30:d9:6b:e6:68:2c:e4:
f3:ba:15:b2:8c:73:da:6e:59:7d:9d:cb:93:97:77:3e:68:54:
38:8e:f0:e5:d7:02:33:93:09:0f:61:93:51:e0:fa:6a:97:3a:
e6:3c:b9:46:18:54:f6:1b:ac:f8:63:ae:fd:46:63:25:02:22:
ae:0f:79:60:66:84:0c:5c:58:c9:47:96:f2:b1:f7:e8:1d:48:
6e:b1:d7:32:aa:40:0c:32:55:60:5a:53:48:e8:2c:12:07:7e:
7d:39:c0:91:d3:ef:dc:0a:67:83:21:eb:a8:fb:42:47:b4:ac:
f5:7b:52:8b:35:cc:d5:fb:f9:43:58:69:c9:b6:d7:3f:41:a6:
56:3e:35:12:30:e3:fa:97:8f:c6:4b:2d:d0:96:56:31:76:60:
2c:db:75:73:f2:2d:15:84:08:15:48:6f:d1:55:95:3e:ab:94:
e7:01:60:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:18:28 2025 by rpki-client