Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
File: i70nOhRTYWFVEmDYSNdvomRGzUY.mft (raw, json)
Hash identifier: hxWg6ZX92bsTUDKoJ6OTJ7J4w7ksIwn+81cp67G3ius=
Subject key identifier: 03:A0:AB:6A:B3:81:6B:1E:2E:9B:CC:D1:55:59:7C:71:2A:25:E3:6E
Authority key identifier: 8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
Certificate issuer: /CN=8bbd273a14536161551260d848d76fa26446cd46
Certificate serial: 0198D6981BBDB374D614F8074DB84456FDD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
Manifest number: 0222
Signing time: Sat 23 Aug 2025 11:02:29 +0000
Manifest this update: Sat 23 Aug 2025 11:02:29 +0000
Manifest next update: Sun 24 Aug 2025 11:02:29 +0000
Files and hashes: 1: i70nOhRTYWFVEmDYSNdvomRGzUY.crl (hash: KcqfsP0fOzQ+W61zhP+u3mkeBdwFTTFdbVy7KshLorM=)
2: iW3M8w8EnOfRKmq5UL0Jzk_nXrc.roa (hash: vQxUQ/gQ4diOyDGNSgt4mcIRpvqTprh0PY77byZ05KY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:1b:bd:b3:74:d6:14:f8:07:4d:b8:44:56:fd:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbd273a14536161551260d848d76fa26446cd46
Validity
Not Before: Aug 23 11:02:29 2025 GMT
Not After : Aug 24 11:02:29 2025 GMT
Subject: CN=03a0ab6ab3816b1e2e9bccd155597c712a25e36e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f5:f7:25:be:49:92:01:c5:6e:fb:36:04:ea:
47:7d:b6:76:68:8e:11:f2:c5:83:07:18:bf:15:d9:
09:c2:69:98:53:9a:8a:3e:aa:3d:a3:54:f5:31:d7:
bc:e7:94:99:d3:2a:cb:40:c1:21:a7:a5:f8:8d:11:
e3:5d:a5:ea:67:5e:46:a1:4a:f9:cc:1d:0e:bc:ff:
22:4f:10:91:5e:70:3f:d0:a9:5b:d4:8b:f7:34:63:
b3:79:fe:66:3e:2e:82:17:23:9d:0e:15:2a:5f:9f:
13:a3:f4:bd:9a:c3:77:04:f2:f3:5d:c1:3e:cb:4f:
bd:5c:07:e0:1b:d8:7e:ef:df:8d:a9:71:5f:ce:65:
16:50:5f:b8:72:c7:09:57:e8:33:fe:60:5c:a9:2f:
26:e0:5c:a3:1b:17:05:5e:49:9d:a2:e0:60:7a:4b:
ac:2b:1f:8f:af:9e:d3:18:d7:11:6b:0f:c9:82:e9:
58:66:b7:a2:d0:52:62:14:19:86:6b:52:44:4e:99:
c1:c5:6a:a0:35:43:c0:b4:2b:4a:f2:d6:93:c8:ae:
57:f6:c2:fa:91:e5:cd:b1:c0:b8:33:8a:4c:fd:23:
d3:29:11:99:ba:db:95:c0:80:48:a4:22:99:a3:6a:
4c:88:ce:bd:86:59:da:13:8c:95:02:fb:23:9c:6a:
68:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A0:AB:6A:B3:81:6B:1E:2E:9B:CC:D1:55:59:7C:71:2A:25:E3:6E
X509v3 Authority Key Identifier:
keyid:8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:73:f2:be:9c:54:49:52:e8:4b:8c:5b:30:17:e1:6a:ae:0f:
c5:9c:33:f0:b8:84:f1:ac:c2:94:85:60:93:a8:c9:a5:b8:0d:
62:d8:35:ab:0e:79:d3:41:53:99:48:1b:b3:5e:d4:07:d6:d9:
a5:31:26:00:6d:0f:f2:45:98:b1:b1:43:dd:c0:e1:b5:ee:36:
27:dd:47:c4:c8:56:04:e1:87:60:c2:fd:f3:00:65:b6:d3:01:
8b:c6:47:38:e7:1b:88:e5:21:09:b4:3e:a6:6e:66:fa:71:4e:
56:fc:a5:3a:6b:8f:01:90:ff:c9:64:ab:51:db:47:9d:92:0c:
c4:f8:bf:6b:6b:cd:ba:6b:d5:98:bb:74:ac:cc:56:78:c7:1a:
77:39:17:b6:03:ce:fe:0f:ab:c4:f9:f3:56:a7:0c:c4:aa:66:
81:f1:a1:27:1e:b8:78:bf:7e:34:2c:c2:2c:b8:d2:7a:2e:79:
c3:09:bc:da:5a:ba:b3:39:04:78:c8:df:13:82:0f:aa:e7:7f:
ae:82:49:20:d2:1c:ab:e6:4c:c7:d8:72:21:1a:56:45:b8:bc:
51:a2:5c:b0:c6:8e:f4:a5:4e:26:e1:63:05:b2:90:5b:0b:6c:
1d:a3:65:f4:6f:44:83:1d:ab:de:01:d1:c3:65:58:44:63:1f:
52:d5:7b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:07:44 2025 by rpki-client