Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
File: iP4ZBc16825jraY2bBR7Ydhcnys.mft (raw, json)
Hash identifier: GyG7LN2TAkcO4Ru4j+jVyaIa2dIc7gr0TkG2mfQFFQ0=
Subject key identifier: 30:C3:02:50:AC:A4:B9:3F:8A:7D:BC:A2:EB:55:68:A1:BA:1B:B1:C5
Authority key identifier: 88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B
Certificate issuer: /CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b
Certificate serial: 0198D4A809CE5D60143B7DDFD2FECC253438
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
Manifest number: 078B
Signing time: Sat 23 Aug 2025 02:00:38 +0000
Manifest this update: Sat 23 Aug 2025 02:00:38 +0000
Manifest next update: Sun 24 Aug 2025 02:00:38 +0000
Files and hashes: 1: DSjiByReVAFtGenTha4D-8dSQJA.roa (hash: LTaqsJLmNorNuR9w6MCAPY47C39e6eSxiN8KzBSficg=)
2: N3Ms1tO5Rc3q58ZodMbwcW3QRxA.roa (hash: QeEjLFu1bfyi8L5wOE2F/BxSn3Wihpq/1jEicr1OiIU=)
3: iP4ZBc16825jraY2bBR7Ydhcnys.crl (hash: mA7uGfPVwC1CGx833jiG85j4OTFiStB7uZZk6/75Dtg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:09:ce:5d:60:14:3b:7d:df:d2:fe:cc:25:34:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88fe1905cd7af36e63ada6366c147b61d85c9f2b
Validity
Not Before: Aug 23 02:00:38 2025 GMT
Not After : Aug 24 02:00:38 2025 GMT
Subject: CN=30c30250aca4b93f8a7dbca2eb5568a1ba1bb1c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:11:77:ee:3e:42:18:bf:d7:bf:7e:51:d6:92:
11:b0:c5:76:b2:f4:7b:1f:86:79:6b:41:6c:a1:36:
2f:c4:37:57:c3:5e:5b:1c:26:0e:ec:c0:dd:e9:87:
e0:f3:2d:cb:e1:33:82:33:7d:36:20:6c:bf:f8:4d:
62:d3:8a:fe:ea:a8:c6:ea:9b:ad:32:14:75:9d:1c:
2a:f3:dd:ff:39:01:b2:0a:fc:6a:bb:0d:53:22:f6:
fe:8a:36:f5:b9:d8:ed:42:e3:13:fb:85:8c:78:ab:
d8:57:07:d1:d1:7d:53:21:79:c4:92:7c:47:a3:0e:
88:82:61:74:b8:ed:17:26:53:6c:58:ef:c5:6d:7d:
2c:1e:54:ac:51:55:1e:8f:04:69:1f:50:cb:32:3b:
90:b6:2f:02:b7:79:6b:89:47:3b:de:06:83:ed:c5:
d5:06:0d:8c:2f:37:bf:eb:d6:85:71:7e:ea:fc:97:
65:f4:bf:e9:92:8c:10:0f:eb:ec:22:05:03:4a:51:
74:a2:d6:94:65:82:e5:cf:f8:0e:b3:39:d8:e7:72:
8f:18:4e:15:f1:4c:66:92:7f:fc:a8:48:aa:db:ff:
de:5b:b5:64:e9:44:63:f9:4c:eb:04:82:7b:2f:f6:
e3:56:b5:1b:c6:3b:9c:0a:36:10:0b:1e:81:9c:03:
4d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C3:02:50:AC:A4:B9:3F:8A:7D:BC:A2:EB:55:68:A1:BA:1B:B1:C5
X509v3 Authority Key Identifier:
keyid:88:FE:19:05:CD:7A:F3:6E:63:AD:A6:36:6C:14:7B:61:D8:5C:9F:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iP4ZBc16825jraY2bBR7Ydhcnys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/31952a-608c-468e-a00e-d633aa70dd66/1/iP4ZBc16825jraY2bBR7Ydhcnys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:26:a4:0e:cd:b0:90:91:ce:1e:92:ec:85:cf:60:c9:ae:e5:
3c:07:f1:a5:50:bc:6d:94:f5:ce:dc:0e:1e:ae:d4:ee:7e:b8:
5d:fd:a1:ba:d8:91:cb:9e:f0:e7:4f:6d:5a:e2:6c:f8:a9:b3:
4a:fc:80:49:67:5e:7e:23:57:b9:37:54:aa:53:47:c7:83:65:
2d:0f:e9:f2:eb:a2:be:46:9c:1f:01:39:db:b5:b1:d1:c0:62:
8b:44:f2:c3:2b:72:68:ce:06:15:d8:d8:6a:a1:66:d6:22:67:
64:71:0d:c8:fe:69:9c:b0:aa:a5:f2:35:51:1b:06:e7:a9:0e:
c9:2b:a3:70:78:ac:fb:ed:84:8c:78:d6:72:d3:b4:20:98:87:
b2:3f:c1:f0:1f:b9:34:30:e5:f1:71:4c:c8:48:91:5c:75:4d:
ef:ad:40:c5:9d:f5:e9:61:32:ec:7e:b0:2a:96:9e:98:73:88:
5d:41:2c:98:88:21:89:1d:b5:2e:83:6b:35:4a:5b:5b:b8:98:
1a:f7:0b:44:4d:1a:b5:c5:87:30:ed:db:14:9b:13:1c:ef:c0:
d1:68:73:e0:e7:b1:39:7d:6c:59:b0:e3:11:2a:a7:34:58:7e:
d0:fd:1e:cb:81:26:dd:2f:29:02:9b:e5:33:72:ad:e0:54:00:
10:9a:b7:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:47:42 2025 by rpki-client