Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: tRNhh7TwgJxqF2gZRfZvpRbK9GgINiRVVLyVITK9f24=
Subject key identifier: 6D:E9:DD:73:B2:5D:5C:DB:B4:F0:DB:3B:03:B5:73:F2:42:15:73:5E
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 0198D515CA42BF725F117B7CDEC4EDA6BE39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 0E2A
Signing time: Sat 23 Aug 2025 04:00:31 +0000
Manifest this update: Sat 23 Aug 2025 04:00:31 +0000
Manifest next update: Sun 24 Aug 2025 04:00:31 +0000
Files and hashes: 1: hi3FrnF-3jLI3lIxcnrMYtC-4ow.roa (hash: Hon+3addqQMzwZi2hE3IgLssZw3bA0MMDqOLsP3ZK0E=)
2: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: pLYTjNAVztOuqA897BnDloYaJ62MU5x8oRpPjWjOnHc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:ca:42:bf:72:5f:11:7b:7c:de:c4:ed:a6:be:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Aug 23 04:00:31 2025 GMT
Not After : Aug 24 04:00:31 2025 GMT
Subject: CN=6de9dd73b25d5cdbb4f0db3b03b573f24215735e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d8:07:57:56:1e:b9:ac:99:0a:2c:f5:5f:4b:
98:cd:8e:02:39:37:a2:45:82:96:cb:29:a0:d2:46:
9d:47:8f:cb:f0:17:1d:bd:50:31:ce:67:b6:fd:a2:
5a:44:54:7c:f4:af:d4:9c:35:5e:80:29:9d:3f:6b:
ed:95:3b:4a:4f:d9:2e:75:bb:24:69:90:68:6f:20:
b1:44:f9:21:1a:23:10:ef:1d:6e:8f:22:78:bc:01:
56:e0:f5:3b:9f:f1:9b:47:79:80:86:6f:f6:31:67:
4a:d0:64:7d:ea:87:0f:ee:73:c3:20:af:53:93:60:
fa:06:fa:86:49:63:80:06:87:99:35:fc:b7:54:85:
d7:f2:b3:17:57:71:28:40:e9:3e:b9:bc:d0:90:40:
c1:24:24:0c:44:f2:61:5f:dc:ae:40:60:d6:8d:53:
e8:9f:e3:de:c1:df:e6:58:b5:81:08:40:8a:9a:25:
3a:20:d3:b2:99:67:db:0c:c8:5d:ad:63:80:a2:b5:
ff:1b:f7:33:63:2f:8d:7e:67:b2:2e:8e:2f:2d:7f:
98:20:39:0e:de:fb:49:35:20:cf:0a:f2:9f:9d:1f:
55:d7:af:3c:f2:0f:ca:ab:74:4a:8f:a2:ad:f9:c7:
12:02:68:9b:dd:e8:4f:14:bc:1a:05:4d:2e:a5:7b:
06:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:E9:DD:73:B2:5D:5C:DB:B4:F0:DB:3B:03:B5:73:F2:42:15:73:5E
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:7c:33:f2:42:40:c7:e5:b2:0c:d8:f8:50:73:1a:dc:fc:cc:
98:a6:bb:3b:4c:1b:ce:20:97:06:68:d4:31:a5:1a:f9:fe:b6:
6c:39:59:02:42:9d:85:cf:48:d3:ba:41:c2:aa:88:a5:45:37:
cf:8a:9d:c8:09:06:3c:c8:97:73:8c:f5:47:2d:50:89:d0:6d:
46:fa:15:fb:49:fd:2e:f8:7c:20:18:ba:cc:47:14:77:a8:d0:
8f:f9:c3:50:76:45:19:50:d1:53:af:60:a3:8a:42:aa:6a:b0:
eb:4e:27:42:df:d8:e1:59:5b:b8:7e:98:c4:a0:fa:de:cf:5b:
1a:b5:5d:9b:2e:92:29:08:43:87:22:e6:d6:82:d9:bb:c1:90:
9b:c6:5e:12:24:9c:6b:22:a8:3c:ee:10:7e:d8:64:2f:04:59:
bd:9a:ad:72:6a:d5:24:41:9e:b3:9d:63:c5:d5:e6:18:ea:dd:
61:5d:72:cc:36:b8:48:83:71:58:5f:fe:95:14:e6:e7:f5:ac:
73:8f:ac:01:04:a4:7e:24:74:ba:42:a4:a4:de:ae:e9:77:c2:
b2:57:82:52:59:21:7d:0d:e9:dd:cd:27:a2:4b:e1:2c:e3:98:
d9:b1:c1:7d:66:54:7f:79:bc:cd:96:3b:17:f0:ca:cc:ef:c3:
13:33:9b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:42 2025 by rpki-client