Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
File: IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft (raw, json)
Hash identifier: C1yRKUi93Ke6ePAnHkESE8Ct1t/GOPfIYrmnu4pVX/U=
Subject key identifier: 48:08:35:4D:10:51:96:25:51:F9:D2:C1:76:D7:49:DB:AD:59:D9:46
Authority key identifier: 21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
Certificate issuer: /CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Certificate serial: 0198D65F82B2BB84FBB88F2B01C9872BE79E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
Manifest number: 063A
Signing time: Sat 23 Aug 2025 10:00:40 +0000
Manifest this update: Sat 23 Aug 2025 10:00:40 +0000
Manifest next update: Sun 24 Aug 2025 10:00:40 +0000
Files and hashes: 1: IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl (hash: luC+uguzGsLFNQdMb/D/OJxSByNfjFXKrspkWxH4U90=)
2: ZXtK8i0ZkTBxTFkF4gT8SCIZTmw.roa (hash: KikSjMlfZMQPJYB8hmRvlc00FrgqM6UWZDTUG/QEicY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:82:b2:bb:84:fb:b8:8f:2b:01:c9:87:2b:e7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Validity
Not Before: Aug 23 10:00:40 2025 GMT
Not After : Aug 24 10:00:40 2025 GMT
Subject: CN=4808354d1051962551f9d2c176d749dbad59d946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b8:8f:a2:dd:3b:8c:30:56:13:a2:dc:dd:2c:
3a:72:2c:46:ee:77:5a:05:72:3b:bd:a1:76:a8:2b:
cf:41:8c:ed:76:f2:4a:ef:53:17:bf:bb:ed:22:12:
23:9e:09:b8:c0:54:35:0d:d2:8b:1d:3e:64:21:22:
1a:bc:3b:b1:e8:09:39:da:54:11:e7:19:e0:6e:26:
a0:97:52:58:c3:4a:9d:a8:c6:1c:f5:85:fd:f0:7c:
f1:75:a4:b1:7c:f6:76:9d:b4:e6:e6:41:64:3a:8b:
96:34:13:5a:3a:51:df:b0:97:21:6c:28:f1:30:18:
4d:4e:48:2d:ff:c1:dd:6e:0d:fd:2b:a0:cd:f8:1d:
6f:21:fe:ca:dd:13:91:73:89:43:0f:a1:c7:04:54:
d7:63:fc:15:86:0c:63:29:50:c3:b2:74:4f:d1:ed:
ce:82:5f:67:d8:fe:15:7f:ad:04:93:b0:7d:c9:2a:
f3:c1:b3:ef:c5:9a:78:ad:1d:b0:fe:5a:e6:6b:b9:
e9:8c:b1:ad:6f:b0:24:14:86:d2:25:fa:60:fe:76:
41:8a:7d:3b:45:b1:b3:87:f1:22:bf:04:cd:30:e5:
87:c9:c7:88:9b:19:3c:71:af:43:91:c7:c9:cd:d0:
f9:07:98:6f:40:0a:da:bd:f5:42:2e:f4:88:d5:54:
58:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:08:35:4D:10:51:96:25:51:F9:D2:C1:76:D7:49:DB:AD:59:D9:46
X509v3 Authority Key Identifier:
keyid:21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:a7:2d:ba:89:7c:6a:67:33:f9:7d:0d:63:96:86:93:04:06:
36:00:60:ab:39:1e:9c:ca:92:77:44:89:7d:f4:01:c8:eb:54:
e4:bf:5d:2e:60:13:f7:61:f4:4e:b4:ab:23:a8:4f:13:ff:2d:
a5:a7:d0:ba:aa:0e:2b:51:6d:17:01:5c:77:18:ad:fb:99:ac:
95:b5:2e:c1:68:48:03:40:96:8b:c8:ef:4e:63:7b:b1:a8:10:
1d:44:7c:58:56:c5:08:fb:0b:66:c7:2f:d0:8c:05:a1:17:50:
1c:7f:fe:48:e9:fd:87:f0:8f:7b:07:a9:61:f6:88:38:41:2f:
01:3b:37:49:04:b4:bf:bc:39:14:27:ba:8a:44:2a:c3:7b:96:
81:74:d1:e6:e6:65:7f:af:0d:92:6a:55:e7:71:b7:72:6e:98:
12:46:93:23:99:68:1f:0d:f9:d3:4e:bf:72:f6:25:9b:cf:f7:
61:a4:41:7c:0c:99:37:21:7e:4c:0d:d5:71:f5:77:19:fe:e7:
48:6a:db:56:df:8e:e4:1a:e0:4c:33:32:5d:71:b1:ae:77:eb:
b2:a8:3e:42:22:1b:bd:ec:7d:17:64:89:a3:95:3b:c0:b1:e2:
f9:60:c2:fb:68:b6:a1:68:75:07:ea:fd:12:f0:9e:1a:7a:dd:
fe:b4:43:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:52:25 2025 by rpki-client