Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.mft
File: i8OUjYuToh5tV9nGVU1e3RB9Ca8.mft (raw, json)
Hash identifier: PddHGLTBKJLn0JLUgh2/TSNef+M2FYY1YkwUKurLVlM=
Subject key identifier: 38:A9:44:F6:7F:6F:4D:55:A6:80:D6:0A:71:1E:90:B8:D9:A1:1D:02
Authority key identifier: 8B:C3:94:8D:8B:93:A2:1E:6D:57:D9:C6:55:4D:5E:DD:10:7D:09:AF
Certificate issuer: /CN=8bc3948d8b93a21e6d57d9c6554d5edd107d09af
Certificate serial: 0199FCFD3D807C626A5447F98A6BF4027972
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8OUjYuToh5tV9nGVU1e3RB9Ca8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.mft
Manifest number: 02E4
Signing time: Sun 19 Oct 2025 15:01:18 +0000
Manifest this update: Sun 19 Oct 2025 15:01:18 +0000
Manifest next update: Mon 20 Oct 2025 15:01:18 +0000
Files and hashes: 1: fvjwad8hv5M8RT1bW6F3smOFB2Y.roa (hash: at0gl2Sa+um/oWDDDgR4biQkEbCFJi5QlnnXaGwjc0g=)
2: i8OUjYuToh5tV9nGVU1e3RB9Ca8.crl (hash: YLFHIRuF1DjNbZcFZgc0PNA9ztWXWVO6aU8KnJ21JzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8OUjYuToh5tV9nGVU1e3RB9Ca8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:3d:80:7c:62:6a:54:47:f9:8a:6b:f4:02:79:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc3948d8b93a21e6d57d9c6554d5edd107d09af
Validity
Not Before: Oct 19 15:01:18 2025 GMT
Not After : Oct 20 15:01:18 2025 GMT
Subject: CN=38a944f67f6f4d55a680d60a711e90b8d9a11d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c5:30:33:9e:74:c6:1a:89:72:94:ee:15:e0:
2a:8d:e4:2f:ee:3d:cf:b7:b3:7f:95:26:e7:70:1d:
d5:b7:ac:0d:a9:9f:95:b8:66:bc:d0:99:cf:db:08:
99:69:ef:27:1f:c1:e3:6f:00:98:2c:c2:73:b3:77:
db:c3:98:c4:8f:f3:8c:07:11:1d:f1:ac:3b:8c:1c:
ed:c7:46:80:0d:56:61:54:2f:c7:51:b4:cf:c9:14:
e7:71:2a:a7:f8:a2:2f:3c:d9:07:ae:d9:f4:47:23:
e1:87:a9:dd:0b:ac:13:32:77:a8:cf:20:c7:7b:c9:
5f:95:67:86:e2:a7:35:7f:85:a0:91:9b:9c:68:dd:
83:c7:31:f7:c7:a9:42:7b:91:13:0d:3f:fb:c1:38:
97:63:5e:b3:67:31:65:0b:36:6f:76:44:26:7e:43:
01:e0:9e:83:1f:61:60:18:02:1a:62:55:dd:09:08:
47:77:80:19:57:20:1d:1f:8c:29:60:35:c0:7f:33:
b2:f9:87:71:8c:1b:2b:3b:e7:0f:04:c0:29:1e:9e:
39:77:ab:06:6a:05:23:c5:b7:c6:87:23:0d:15:68:
83:aa:0b:5b:53:8d:98:e4:71:72:8e:16:9d:c7:0f:
08:67:a8:98:19:05:88:61:9a:b1:c0:1b:5e:6d:b5:
e4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A9:44:F6:7F:6F:4D:55:A6:80:D6:0A:71:1E:90:B8:D9:A1:1D:02
X509v3 Authority Key Identifier:
keyid:8B:C3:94:8D:8B:93:A2:1E:6D:57:D9:C6:55:4D:5E:DD:10:7D:09:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8OUjYuToh5tV9nGVU1e3RB9Ca8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:6d:dc:43:42:ca:79:89:09:82:b5:b1:22:31:1b:f9:6c:83:
b7:72:81:6c:ce:16:ec:00:a9:ae:f8:d7:2a:6d:a9:4f:88:fb:
fc:b6:7c:79:74:95:b0:09:e6:71:34:f2:7f:27:b9:fa:25:39:
59:58:24:6b:84:26:c5:69:d5:67:b6:e1:38:8e:15:fa:01:fa:
d2:d4:c2:ca:fb:57:e3:7c:c9:43:93:c8:2a:ec:ab:ad:89:b2:
99:b4:5d:3d:72:33:ea:0a:58:5d:da:71:ef:63:c6:67:8d:6d:
a8:9e:4b:13:5f:58:14:41:c1:0d:ab:c4:51:c1:97:7f:f0:1e:
6a:d5:7a:36:ef:08:5b:42:38:e6:fc:11:ce:63:d6:69:dd:13:
c8:5b:37:19:e3:f0:38:60:77:e4:50:5f:91:2e:b7:e5:91:90:
6f:3b:80:98:e5:c0:c1:15:85:a1:93:e6:b8:e3:e3:7a:a7:a9:
dd:3c:c4:98:6a:e0:4a:97:fa:06:e0:f9:cc:75:f0:e3:61:40:
24:3d:af:70:22:b3:2c:49:c0:38:52:96:f5:30:fc:56:35:e2:
ea:d2:dc:08:a7:f7:cc:c0:a3:b5:e9:1d:16:17:94:38:c0:5d:
51:96:a9:20:ac:9c:0e:1d:ce:47:a9:1e:91:24:96:76:64:8f:
da:a4:3e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:04:10 2025 by rpki-client