Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
File: IxMMmax6pAhscXVxFKQWP4AJAUI.mft (raw, json)
Hash identifier: VknGQ1GvK1O6Ywju2waI9iThJbL5hg03WD7UjikcPXo=
Subject key identifier: B0:8A:D0:1B:6C:1F:E3:2C:28:6C:2A:80:47:FD:9E:E0:E4:0C:6D:2E
Authority key identifier: 23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42
Certificate issuer: /CN=23130c99ac7aa4086c71757114a4163f80090142
Certificate serial: 0198D73B8C12C42C06311AF32945BD0483A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
Manifest number: 0993
Signing time: Sat 23 Aug 2025 14:01:00 +0000
Manifest this update: Sat 23 Aug 2025 14:01:00 +0000
Manifest next update: Sun 24 Aug 2025 14:01:00 +0000
Files and hashes: 1: 7LeNtT1Py-375udT6tgnEczdaA4.roa (hash: KcUWkl6MBuk85woap7zLa0rzE+sobb9Vo8npqesilrw=)
2: IxMMmax6pAhscXVxFKQWP4AJAUI.crl (hash: qxY9Gzr05iJCoRy77ox11BckXzeNh+viLGnGc5mBID0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:8c:12:c4:2c:06:31:1a:f3:29:45:bd:04:83:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23130c99ac7aa4086c71757114a4163f80090142
Validity
Not Before: Aug 23 14:01:00 2025 GMT
Not After : Aug 24 14:01:00 2025 GMT
Subject: CN=b08ad01b6c1fe32c286c2a8047fd9ee0e40c6d2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0f:cd:93:df:83:aa:b7:92:4c:76:cb:d7:0a:
2e:af:0c:09:71:cd:31:0e:1f:08:71:a8:02:c9:47:
c1:02:0d:da:08:59:c4:f2:24:5b:5e:30:55:ff:f1:
e3:06:e5:8b:ed:9a:77:ce:30:68:a2:12:5e:b8:67:
14:84:6e:99:93:4d:8c:26:ec:8a:50:00:2d:19:fc:
41:79:c3:89:dd:7d:b9:aa:56:7d:12:d9:ca:a1:34:
f5:82:72:5b:16:2d:13:f9:a3:69:cf:45:6e:01:44:
5d:b8:be:49:ed:2c:9b:bb:5c:b0:5d:51:60:b2:ee:
cd:f8:89:9f:2c:53:cc:3b:70:83:42:20:14:5c:df:
eb:67:2b:84:e7:9c:3d:a4:7f:91:21:bb:7f:93:e3:
94:29:40:74:6b:98:88:67:5e:56:6a:5a:cc:2a:56:
85:d9:75:7d:fb:92:52:17:55:14:12:f3:53:28:a3:
35:f3:0f:b1:dc:f4:b5:4e:32:ac:3a:b4:0f:fb:8c:
03:3b:cc:81:72:c6:82:f2:ce:d9:79:9b:04:d7:5f:
08:59:e8:5b:06:e8:aa:0b:5f:a2:2e:4f:bd:80:22:
f9:35:ea:9f:ef:e6:56:8b:04:99:d1:1a:fb:fb:7c:
75:ba:20:d6:fa:d7:60:ff:d1:9d:d2:23:01:c9:5d:
07:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8A:D0:1B:6C:1F:E3:2C:28:6C:2A:80:47:FD:9E:E0:E4:0C:6D:2E
X509v3 Authority Key Identifier:
keyid:23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:e6:e2:2c:84:ac:73:dc:d6:45:20:1c:8d:e6:69:10:d4:3e:
b0:5c:2e:f0:52:88:15:9d:1e:7d:66:c8:cd:d5:89:2c:a8:68:
4c:8c:6b:79:73:6e:7c:24:40:8c:59:d8:b0:09:16:0b:cd:01:
46:94:55:91:4e:3a:c1:c1:38:c8:ca:59:a6:f6:1a:e8:ba:1c:
66:bf:7c:19:f4:e1:43:e2:43:36:b6:ee:dd:cd:76:7f:4a:5a:
69:58:35:7b:f7:7d:25:2b:49:11:f4:82:e7:35:17:e7:fd:bb:
2b:f2:ea:de:9b:fd:fa:6d:b6:5f:8a:75:e4:67:74:b4:28:90:
ae:2c:08:21:c1:3f:63:5f:79:d3:8b:5d:46:4e:fa:65:8d:35:
35:29:93:19:0c:14:34:af:38:6e:a4:12:ad:11:fe:cb:f5:23:
fd:d3:a9:9d:56:23:bd:2c:63:46:95:17:ee:d6:cb:5e:e2:9d:
44:75:fa:d8:0c:47:54:1a:e1:8f:1c:4f:c4:a9:c7:4d:df:fb:
f9:f9:d8:ba:9b:0c:f6:97:e8:d6:3b:17:b4:8b:bd:24:07:66:
9d:23:01:1f:8b:46:ed:ba:59:93:e0:0d:e4:cf:a8:07:e5:20:
07:c6:b8:b9:dc:45:7b:ca:c5:cc:d6:cd:ce:59:cd:f5:f9:75:
65:fe:bb:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:56:16 2025 by rpki-client