Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
File: iWkzRGOKywU2WC-rCJh2V472vFY.mft (raw, json)
Hash identifier: 26SILuggtUVmOA1Rx+3YiofRKACFIRuGd9xjsYj2dfo=
Subject key identifier: D7:B0:8E:F7:9B:4B:6D:2D:81:0D:06:E9:04:7D:38:87:32:4E:C6:D1
Authority key identifier: 89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56
Certificate issuer: /CN=89693344638acb0536582fab089876578ef6bc56
Certificate serial: 0198D66077FBDF2C729A9C25F4553DBFCC32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 10:01:42 +0000
Manifest this update: Sat 23 Aug 2025 10:01:42 +0000
Manifest next update: Sun 24 Aug 2025 10:01:42 +0000
Files and hashes: 1: fCZrKI-6j3JypnfEm5_gs1n5dFw.roa (hash: iZ/p7v8ZHeoQxTyUiH1KnvRb3hj8zk8sCV0wmzxeW2k=)
2: iWkzRGOKywU2WC-rCJh2V472vFY.crl (hash: GOvoixuqm52J0kvwgxTXbOYx1DCxwhhOXxDhInwoh1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:77:fb:df:2c:72:9a:9c:25:f4:55:3d:bf:cc:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89693344638acb0536582fab089876578ef6bc56
Validity
Not Before: Aug 23 10:01:42 2025 GMT
Not After : Aug 24 10:01:42 2025 GMT
Subject: CN=d7b08ef79b4b6d2d810d06e9047d3887324ec6d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:68:47:9e:b5:99:18:91:2d:9e:ce:59:b6:ec:
16:ad:1d:53:1d:c0:f1:d0:57:8d:5c:78:d8:34:bf:
06:42:49:b4:84:0c:87:c3:bc:85:7f:84:55:22:27:
9e:aa:54:da:8a:b0:3e:a8:71:47:af:7b:dc:ed:bc:
c0:17:29:1b:51:72:71:77:44:96:d6:2b:04:f0:c8:
d3:73:33:4f:6c:12:57:cc:bc:7a:68:09:07:80:de:
ae:e8:85:f3:d3:b0:fc:3e:a9:f1:d1:90:29:8f:87:
05:79:04:f7:3a:5e:bb:4c:4f:11:eb:15:71:b7:27:
be:5f:61:20:63:42:a7:08:3b:71:ee:6d:54:bf:94:
04:9a:63:9b:9b:1d:ee:cd:f6:17:c5:a9:57:cd:be:
76:76:66:90:03:d2:6b:ca:a7:56:0a:c9:28:17:fd:
21:67:e5:3e:39:10:c8:09:20:76:b6:7b:e6:25:64:
84:a4:d5:75:55:8e:5d:62:16:9c:f7:01:1b:f5:b1:
1e:43:ab:e8:fc:1c:f8:75:0b:6c:69:05:a3:a9:3f:
4c:11:38:4c:8e:90:88:4e:1c:8c:fa:5e:44:91:fa:
f2:6b:a4:b7:9c:8d:40:71:d6:54:3b:b2:2b:2d:86:
67:38:03:9c:45:bb:c7:23:25:ec:12:c4:e1:45:7f:
06:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B0:8E:F7:9B:4B:6D:2D:81:0D:06:E9:04:7D:38:87:32:4E:C6:D1
X509v3 Authority Key Identifier:
keyid:89:69:33:44:63:8A:CB:05:36:58:2F:AB:08:98:76:57:8E:F6:BC:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWkzRGOKywU2WC-rCJh2V472vFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7d8900-be76-40e2-8c99-70f943eac4db/1/iWkzRGOKywU2WC-rCJh2V472vFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:f8:9c:be:16:8f:70:95:d3:c1:b1:ad:a8:2b:a4:fe:b8:f8:
80:1f:ae:25:d7:07:86:50:94:2d:a1:29:df:44:d1:21:32:cb:
5a:de:2a:6b:66:91:fb:40:6f:63:e8:eb:ee:03:15:5e:af:6a:
2b:dd:65:2c:7a:a5:e5:2a:75:e6:f5:74:52:9b:03:08:06:50:
fc:eb:22:26:a8:ca:74:af:bb:01:83:a5:ef:61:7e:4a:fa:4e:
24:9d:34:ad:b4:7b:aa:0f:59:2a:36:91:62:65:e5:71:ac:94:
35:3f:35:98:70:29:ab:92:05:6d:55:16:8c:8d:9f:54:aa:74:
d9:69:ed:7a:19:1e:41:84:0b:7d:3a:c2:f7:82:11:25:78:b3:
76:42:03:6e:72:58:5a:42:fe:01:03:f7:76:65:ff:c4:d6:e8:
1d:17:f3:f7:82:97:b9:83:27:1a:17:aa:40:d0:90:7b:07:47:
ae:36:09:f5:ba:8c:1c:62:aa:26:89:0b:9d:59:e7:c2:d9:e5:
87:67:88:a7:88:3e:d8:d8:33:14:38:66:07:ff:cf:c3:8f:c8:
61:85:85:fd:8a:48:71:80:9f:f4:b6:52:5c:f4:55:04:1a:fc:
c3:8f:9e:09:e9:d0:74:85:8d:46:9c:f4:3b:b7:4b:6c:ae:18:
be:88:65:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:30:06 2025 by rpki-client