Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
File: IKDFQA4CP5P1GOQwBMM7x50vayE.mft (raw, json)
Hash identifier: XpON1qQS19QqBDKmeEkLXg+Vzg0MKvGwd0meBG3Wy6E=
Subject key identifier: 1A:65:03:77:E1:40:00:1F:53:A9:37:45:E1:58:74:CB:86:30:B8:E8
Authority key identifier: 20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
Certificate issuer: /CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Certificate serial: 0198D4E035C67713B6EC7E9E0E1BC3F1BBE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 03:02:00 +0000
Manifest this update: Sat 23 Aug 2025 03:02:00 +0000
Manifest next update: Sun 24 Aug 2025 03:02:00 +0000
Files and hashes: 1: HbgX7OEx-8g9VTQvYvbD_e0bPJ4.roa (hash: W8tzfEVYuZk67nGO3GJK/wSiRVXk9GPJqQ4Zpo1nq8A=)
2: IKDFQA4CP5P1GOQwBMM7x50vayE.crl (hash: DdznLBkAfFvTp7bi0CEII0Z3pL2/L7/3rVmwLzqRIFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:35:c6:77:13:b6:ec:7e:9e:0e:1b:c3:f1:bb:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20a0c5400e023f93f518e43004c33bc79d2f6b21
Validity
Not Before: Aug 23 03:02:00 2025 GMT
Not After : Aug 24 03:02:00 2025 GMT
Subject: CN=1a650377e140001f53a93745e15874cb8630b8e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a1:34:60:af:ca:87:52:ce:9b:48:98:e5:ad:
ff:73:45:48:46:1e:b1:6d:cb:ca:74:85:2c:3a:35:
1e:23:64:be:61:fd:66:9a:1c:53:c6:90:3b:10:ec:
65:7a:be:02:62:f4:96:88:ac:b3:87:76:b5:ad:b5:
ed:0c:07:8c:e8:a4:f6:bb:f8:7c:65:2e:d5:32:14:
49:d8:55:12:aa:96:51:fd:54:1b:1c:14:e3:f9:b8:
92:16:db:36:0d:c2:c0:1a:51:b6:bd:64:85:50:ff:
27:7d:e5:33:9a:26:12:07:90:6e:6d:6a:a3:17:23:
2c:71:5d:29:0c:ec:05:de:3d:de:52:a1:ae:8a:12:
ce:2a:b6:8e:8b:03:75:01:f2:23:df:2e:65:82:bd:
3c:bb:1d:45:50:55:db:f8:5c:f0:61:ef:09:d8:05:
5e:58:8c:ba:4e:9c:83:73:2f:b9:cc:f3:e0:b1:db:
a2:b8:22:a2:2c:fb:0d:41:b0:60:7b:43:c3:e0:1a:
f4:21:c9:80:d1:4e:93:ca:ef:a1:28:3d:23:0f:49:
2d:19:2b:b6:58:d4:e9:02:e8:28:1d:70:9e:90:96:
f1:7f:fc:5c:a7:19:4b:1b:ee:c8:41:9a:f7:e1:99:
f3:4e:5a:ff:b4:30:ce:4c:dc:3e:27:8a:2f:c5:95:
c0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:65:03:77:E1:40:00:1F:53:A9:37:45:E1:58:74:CB:86:30:B8:E8
X509v3 Authority Key Identifier:
keyid:20:A0:C5:40:0E:02:3F:93:F5:18:E4:30:04:C3:3B:C7:9D:2F:6B:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKDFQA4CP5P1GOQwBMM7x50vayE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/dfeb10-9524-41a5-bbd3-0769aa6271e6/1/IKDFQA4CP5P1GOQwBMM7x50vayE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:e5:d0:7f:5a:78:6e:00:27:f7:2f:b9:f7:2c:ba:d4:59:aa:
17:40:ef:65:93:40:98:32:c8:d0:df:02:b0:c9:88:55:c7:17:
40:c5:21:bb:30:00:41:1c:78:ce:de:84:fa:73:ae:c9:c9:55:
47:57:55:c6:28:7a:e8:e7:69:8a:82:8e:ee:f9:1b:76:bf:07:
4a:d5:f0:34:c6:2c:b0:2a:91:c9:c5:b2:9a:07:38:e5:6f:f7:
42:97:aa:0d:c0:9d:54:db:da:1a:e4:4f:53:f6:c2:8c:ec:47:
1a:52:71:6c:c8:1a:c0:1b:14:e9:a0:f3:62:67:fb:e0:07:53:
f9:38:06:f6:c5:d0:28:f8:2b:58:d2:c4:b9:cb:46:6a:09:8f:
e5:34:4b:a8:f0:19:35:69:4b:35:2c:2f:33:04:43:69:0a:c4:
3c:27:da:55:d1:4c:6e:02:53:59:5d:c5:43:10:56:c1:8f:59:
58:bd:e2:23:df:cd:1e:b0:f3:66:a8:df:ba:d2:26:81:a0:ba:
b3:6d:a1:88:1c:03:6e:79:d6:c5:66:49:2d:66:2c:4e:2f:be:
4f:04:a5:d2:2d:59:88:17:7b:03:d5:93:50:2b:9a:3d:8f:50:
30:32:47:c5:10:4c:4c:17:cb:07:2c:fd:d0:b0:7b:e4:3c:db:
4c:6f:4e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:36:21 2025 by rpki-client