Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
File: IvtSiroBjxQvRETMzJcjc2zU5LY.mft (raw, json)
Hash identifier: OoKucTKnejwzJOS8PugtRC8mtVOPKOmcm6qQO2DMnag=
Subject key identifier: 5F:C6:08:E3:9D:B8:ED:53:CF:DE:85:81:FC:99:6A:9C:D9:A8:38:8B
Authority key identifier: 22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
Certificate issuer: /CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Certificate serial: 0198D58404C642672B0EA9804B11B121A555
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
Manifest number: 1234
Signing time: Sat 23 Aug 2025 06:00:55 +0000
Manifest this update: Sat 23 Aug 2025 06:00:55 +0000
Manifest next update: Sun 24 Aug 2025 06:00:55 +0000
Files and hashes: 1: 4Qe9-T0nXWoVHW9lPtNAFV1MJeQ.roa (hash: MEUx9Qe02B/09ozBtbyk47nH68xJFm0Hu6pf18Q/8p0=)
2: IvtSiroBjxQvRETMzJcjc2zU5LY.crl (hash: cr5DkGabwfqhBoMd6L2NMhURyMFTC9z+C2X2YYJP7cs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:84:04:c6:42:67:2b:0e:a9:80:4b:11:b1:21:a5:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fb528aba018f142f4444cccc9723736cd4e4b6
Validity
Not Before: Aug 23 06:00:55 2025 GMT
Not After : Aug 24 06:00:55 2025 GMT
Subject: CN=5fc608e39db8ed53cfde8581fc996a9cd9a8388b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:af:7f:ea:c7:0c:8f:0e:3c:98:a4:65:c9:de:
73:48:ba:4d:84:39:20:41:5b:ad:3b:b8:6f:85:9c:
1a:03:dd:17:44:3c:b6:8c:62:a4:1e:d6:ff:fc:fb:
6d:5d:10:bd:c1:0a:cb:71:9d:c3:11:c5:1d:07:8b:
29:5d:b4:69:c1:71:d9:75:d4:6a:35:ac:fc:54:1c:
6e:00:2c:3b:b2:02:d9:ce:c4:68:62:d4:96:9c:d2:
4c:53:eb:b1:c6:0b:03:34:ca:20:41:51:21:b4:39:
bd:4d:09:a7:b3:84:33:f6:8c:25:a0:fb:9e:09:bd:
f8:ec:75:1e:66:32:9f:c5:a9:a1:7a:f7:de:80:b9:
ea:db:22:1e:67:5e:fa:da:67:0b:f7:16:93:cf:51:
08:62:cc:c9:19:16:75:22:1b:a0:b9:4c:37:b8:d9:
b1:b9:87:fb:e4:1c:82:7b:b5:1c:1c:ca:b9:eb:a4:
bd:f5:d9:0a:17:b9:91:54:93:13:29:ef:14:b6:c1:
ef:52:cc:c1:20:c2:17:d9:98:31:cc:ad:ec:ab:7f:
30:fc:f1:e7:02:40:c9:8f:60:e4:ce:8a:eb:b6:73:
f9:d7:d6:e0:d7:7b:63:e8:15:45:a5:d7:aa:e3:f7:
65:97:76:69:9c:fb:f9:60:8d:50:90:02:69:cf:a7:
f4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C6:08:E3:9D:B8:ED:53:CF:DE:85:81:FC:99:6A:9C:D9:A8:38:8B
X509v3 Authority Key Identifier:
keyid:22:FB:52:8A:BA:01:8F:14:2F:44:44:CC:CC:97:23:73:6C:D4:E4:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvtSiroBjxQvRETMzJcjc2zU5LY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/381d69-2c41-45a8-90d4-6ae90b247592/1/IvtSiroBjxQvRETMzJcjc2zU5LY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:5e:85:8d:2c:96:59:72:48:d2:16:bf:4c:17:af:85:52:b6:
81:75:cc:1f:59:e1:34:0a:db:3a:98:c4:88:2b:a1:81:d7:a8:
50:cf:e0:01:42:6f:76:82:40:f9:aa:e1:be:08:ab:d8:99:d4:
d1:bf:5c:c2:01:a7:3d:14:e5:43:60:d5:e7:cf:e0:7e:c6:d7:
84:cd:af:48:e8:24:b4:6e:db:17:2d:ab:77:a9:e4:e4:c7:90:
11:54:ef:97:1e:fe:5c:c0:aa:ec:c2:a2:88:c1:33:f5:53:5b:
a3:c4:bf:c7:59:dc:f7:08:95:b0:dc:d2:f7:38:97:9b:db:7a:
4a:94:90:9a:0c:41:22:cb:c8:b5:90:e9:9b:7d:8d:1e:44:2f:
91:29:88:77:d6:8c:38:a0:70:86:ec:86:7c:d5:94:b9:61:bd:
60:aa:df:a2:ac:ca:41:7d:62:0a:b1:b4:fd:ed:6f:b1:99:36:
6f:c2:0b:27:5b:11:e5:a3:fd:56:8f:f8:a5:ca:be:2e:dd:98:
d3:0d:a2:7a:fb:ab:45:38:11:e8:96:99:2d:da:e1:32:d1:37:
bd:98:2f:53:3d:37:fa:39:a9:41:b8:d2:e0:32:dd:95:cf:b4:
45:57:aa:58:ed:d0:ce:44:3c:1d:28:0b:32:af:c6:8e:54:18:
14:fb:ee:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:49 2025 by rpki-client