Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json)
Hash identifier: vWigQmepUK4tkctJ0mZCNRxjXjpsbKGi7sU9rTWYSQs=
Subject key identifier: E1:A7:6E:D0:E3:E6:55:EF:A7:06:66:B0:CD:A2:6D:37:A2:A5:23:0C
Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Certificate serial: 0198D4E011A39F5033B449D42B9183F5DD39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
Manifest number: FC
Signing time: Sat 23 Aug 2025 03:01:50 +0000
Manifest this update: Sat 23 Aug 2025 03:01:50 +0000
Manifest next update: Sun 24 Aug 2025 03:01:50 +0000
Files and hashes: 1: XcIL6Sukfm7k1AWtWl445xp4QV0.roa (hash: 4UDRmx72tIl2+y56n6Ye2uGR21iaVE2WkWXR6GxV+6Y=)
2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: KkWRLvXxdgO8ojCqUA3HaLdwyB4TbVsLxDrYfA8g+pE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:11:a3:9f:50:33:b4:49:d4:2b:91:83:f5:dd:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Validity
Not Before: Aug 23 03:01:50 2025 GMT
Not After : Aug 24 03:01:50 2025 GMT
Subject: CN=e1a76ed0e3e655efa70666b0cda26d37a2a5230c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e1:7e:9b:65:8f:58:20:8c:b9:70:47:ff:98:
b8:b6:c4:6e:0f:ff:65:a2:30:78:9e:60:54:a2:bc:
c6:21:cb:9f:84:73:50:d9:d9:fa:a9:98:68:3e:ea:
9a:b0:28:29:2f:f7:89:10:91:b9:22:72:ac:c1:03:
01:1c:b6:4a:4d:16:37:bd:c9:3e:1d:df:b1:87:8e:
34:ba:d7:4f:50:08:d4:8f:c8:d5:9a:00:5f:a8:7e:
66:a4:b0:b6:41:9e:57:f0:11:fc:ef:f4:8b:e6:60:
41:38:75:fc:5f:08:f4:30:0b:5f:1a:8d:88:71:95:
3a:21:fe:46:e3:f9:16:07:a9:9f:71:c4:f7:c5:bc:
2d:88:3f:44:c0:63:f2:97:9f:bc:f9:53:b6:a4:c8:
7c:62:73:14:75:d5:58:02:fb:4d:8b:ab:5e:01:be:
d5:62:47:18:63:d6:ed:dc:45:9f:48:ee:c1:7c:36:
a6:b5:db:f6:ac:e6:cf:6e:5f:36:37:07:21:ce:b8:
65:ca:02:fb:5a:6d:91:f2:31:74:2a:88:fc:88:ed:
41:ef:78:1c:8a:e2:fa:9b:5e:e4:8b:73:3c:a6:21:
14:94:4f:0c:db:c4:4c:0c:6b:01:c9:e3:d0:9e:aa:
a9:c2:f8:7d:ec:b9:d3:da:aa:b3:3e:2d:f0:88:da:
66:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A7:6E:D0:E3:E6:55:EF:A7:06:66:B0:CD:A2:6D:37:A2:A5:23:0C
X509v3 Authority Key Identifier:
keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:49:2f:73:b2:02:7a:f0:56:9c:6d:dc:b2:ab:bf:75:a8:cd:
f4:96:f3:22:c6:da:2b:98:35:9b:3a:94:d3:dc:df:42:aa:7d:
4a:1d:34:c8:ee:0b:d0:fd:93:0c:bb:b5:e0:69:a3:82:b6:80:
ce:35:a9:98:f8:6a:29:48:92:30:a3:fc:ab:07:60:1b:5b:27:
46:e2:d2:26:90:cc:2f:bd:6a:92:f1:68:e7:35:77:7e:bb:e1:
9a:a5:a7:24:29:6f:12:51:bb:58:3d:7d:a9:77:84:a6:e8:e5:
01:6c:c0:1e:fc:cb:57:21:75:a0:d8:7a:53:f2:80:3d:fb:aa:
94:dd:6a:d0:44:eb:6d:e2:67:bc:40:83:d1:b8:35:a7:65:91:
b8:cd:38:ff:5a:98:03:a0:c8:b9:28:5d:68:79:ff:d8:2d:9f:
f1:6d:b8:4f:85:42:00:99:a5:42:50:15:87:1b:95:57:09:db:
29:e6:d4:92:f5:fa:4b:f4:d7:b5:2b:c9:b4:c0:53:5e:3e:06:
c9:ff:c9:e4:02:48:ee:0a:e6:66:5d:bd:1d:53:31:35:54:00:
3a:6b:72:c8:de:4e:04:91:3b:f2:7a:bc:38:90:c4:ab:25:69:
75:b8:fb:34:ee:35:a8:c9:b7:30:1c:5d:25:95:46:d9:71:8f:
ae:71:43:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:07:58 2025 by rpki-client