Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
File: iwVEhe5ixvGTlhPLogZp7vRQT3k.mft (raw, json)
Hash identifier: sXtuzFuVsEEWy2fdZNExPHx6jhQTK+NHFl4jsJ322Q0=
Subject key identifier: 72:D6:3A:9B:31:38:7D:40:27:AD:7F:18:69:D5:21:5C:28:09:23:8E
Authority key identifier: 8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
Certificate issuer: /CN=8b054485ee62c6f1939613cba20669eef4504f79
Certificate serial: 0198D8BCD61DF047D43FDA4193145CD0BC6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
Manifest number: 0C3C
Signing time: Sat 23 Aug 2025 21:01:50 +0000
Manifest this update: Sat 23 Aug 2025 21:01:50 +0000
Manifest next update: Sun 24 Aug 2025 21:01:50 +0000
Files and hashes: 1: FmWPQsDQv1I31vsCB-XoPwOttAE.roa (hash: xjF9H58/BASj6CKq3v5pVooMgpKIb+h+UMw0XGNXQo8=)
2: W0D9WIXmr4DG_xEj-xUZT82-dxQ.roa (hash: fBvWuzB9wp05SoO5x+Vb/EneDFqD/kJHT0KgvrAsF24=)
3: aheTt6_pS0K22xA67glREELod8A.roa (hash: qWC2pzWM7a75jc5rNLOSS10p2/VCBqYrjSpxRU7D9zI=)
4: g_SxF-_E_VpwVrwNdmKsnzbOYaM.roa (hash: wSo0WU3KC/Wo2i+eQ7vlG4IlKtTmfnJLRouHYXZqnO4=)
5: iwVEhe5ixvGTlhPLogZp7vRQT3k.crl (hash: tmNQLFhECU0PafF0KyTd7XBHrU1Wg7isz39Oc/IdCyk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:bc:d6:1d:f0:47:d4:3f:da:41:93:14:5c:d0:bc:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b054485ee62c6f1939613cba20669eef4504f79
Validity
Not Before: Aug 23 21:01:50 2025 GMT
Not After : Aug 24 21:01:50 2025 GMT
Subject: CN=72d63a9b31387d4027ad7f1869d5215c2809238e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c5:8c:4b:98:53:ea:40:64:c4:27:31:c1:f6:
07:36:83:68:ca:4f:a3:1c:e0:1f:36:5f:a2:4e:26:
90:b2:57:f1:8e:df:dd:40:07:d9:05:07:f2:93:9b:
5d:eb:c3:4d:bd:70:29:a7:f0:e9:db:e2:c7:de:bc:
87:06:4c:c7:0b:30:61:39:24:aa:49:30:0a:f3:d0:
d1:dd:4d:3c:5b:b2:10:3e:ef:d9:56:72:a6:48:f3:
4a:f9:cb:41:08:54:9e:81:5c:c1:3a:1f:5f:6b:4c:
09:3a:31:cc:40:ac:41:19:61:1e:b8:50:96:63:dd:
dc:ef:16:6c:04:34:90:36:da:bc:e1:61:47:f6:0e:
f0:93:d4:cf:4a:55:56:ac:8c:88:2d:d6:e2:fa:43:
54:88:ed:dc:80:8d:cc:09:1c:65:4b:b1:96:85:69:
0b:84:d9:f6:f1:5d:33:36:90:e8:18:ab:f0:07:c9:
6e:99:2e:e7:a1:41:fb:af:0a:b0:a3:10:9c:57:20:
6e:75:4f:ef:b2:4c:f9:4a:c4:dc:87:23:a4:d1:6f:
c1:89:24:f6:d5:12:29:33:1f:ce:35:6a:7d:f2:c5:
d8:8f:52:a9:cc:2c:f5:f4:a7:ba:85:58:40:d5:01:
d1:2c:5c:c0:14:15:50:04:8c:d0:13:58:ab:a6:e9:
55:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D6:3A:9B:31:38:7D:40:27:AD:7F:18:69:D5:21:5C:28:09:23:8E
X509v3 Authority Key Identifier:
keyid:8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:f7:fa:e8:18:c9:6a:1f:60:b0:6c:66:19:17:88:88:6f:a6:
a0:9b:86:3c:d0:87:06:37:0c:15:f6:71:c1:6e:0f:c3:73:01:
25:37:27:b7:b9:7a:23:99:ee:51:d7:1c:01:68:3e:17:93:3e:
e7:e3:c9:07:1d:69:14:fa:37:10:5d:71:ba:80:22:72:80:37:
fe:00:5c:ff:10:3f:c9:19:d2:54:4b:6e:55:b1:3f:06:e7:d4:
d7:3c:84:f8:7f:98:ec:4e:88:81:87:65:cb:ea:5d:f5:05:de:
e1:27:7b:eb:18:0e:43:fb:e5:ce:4d:2d:a1:40:9f:a1:73:60:
8e:98:9c:03:c6:60:3c:88:2a:9f:46:14:11:ca:01:64:c5:e9:
ca:6e:02:80:37:34:c8:df:1e:08:f6:2b:f1:e0:3a:48:37:ab:
15:7c:6c:82:59:f0:23:c0:a3:1e:8c:ad:3d:40:06:54:61:17:
e0:06:e1:d8:22:34:00:6f:0e:93:8a:e4:9b:10:cd:b2:b8:af:
51:0f:60:76:eb:3e:77:03:5d:d6:41:67:7f:fb:1f:73:19:8f:
17:10:79:e6:01:6b:7c:25:47:24:ec:63:7b:78:28:b9:13:a1:
ef:6e:33:92:0a:af:f6:e7:43:39:71:3d:ae:39:59:93:8f:15:
e5:18:b3:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 02:31:30 2025 by rpki-client