Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
File: iCGjmu2dpO46tmOdJEUI-h6NIPY.mft (raw, json)
Hash identifier: K0tONU3wOZAVYPWNJpV2xyAWiN9Awfv4pxnaPiVzJks=
Subject key identifier: 47:5D:4B:8C:95:35:15:EA:3D:D3:79:6F:D6:BF:10:7F:19:B4:F8:4B
Authority key identifier: 88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
Certificate issuer: /CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Certificate serial: 01987C77F2C8C09E9EAD0F139935290807DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
Manifest number: 133C
Signing time: Tue 05 Aug 2025 23:01:32 +0000
Manifest this update: Tue 05 Aug 2025 23:01:32 +0000
Manifest next update: Wed 06 Aug 2025 23:01:32 +0000
Files and hashes: 1: OIDmEPbDXYESb6L8W110fitW4aA.roa (hash: AIH3VvHzWUC8AtgPyCBt/ld6YdiGtY4TDL+tLd/3C+w=)
2: OuQJP3rTcu0if4kJ5A5ZWqxKYpo.roa (hash: UN46ctiu4ND9IXGCd4EhP/dQ+ESw5QeLedCQ9yxaLnU=)
3: WV7QPmFglb32ubsYCfgK2rSXhGk.roa (hash: 7jclXGuRVqisqCezIaon+r4NXFS6nrK/O3nscYXGo0k=)
4: WYkwsfl1LrYxcZc4hOn_dwqrnKU.roa (hash: OFI3Jc8HI7chg6jym9Pd2h5sq7FHfkNT1WJbvujMSAY=)
5: iCGjmu2dpO46tmOdJEUI-h6NIPY.crl (hash: 8qdyVbYwSTxR4vbpUcemJZ4zQSh82lqF349o3GYAekk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:f2:c8:c0:9e:9e:ad:0f:13:99:35:29:08:07:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8821a39aed9da4ee3ab6639d244508fa1e8d20f6
Validity
Not Before: Aug 5 23:01:32 2025 GMT
Not After : Aug 6 23:01:32 2025 GMT
Subject: CN=475d4b8c953515ea3dd3796fd6bf107f19b4f84b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5e:1e:a5:ad:91:52:39:b1:64:5b:d1:45:2b:
4a:63:47:6f:06:3e:f4:85:e8:a2:fa:3a:2a:8b:0c:
4c:13:8d:ce:bb:40:f8:73:0a:d8:0e:7a:31:15:50:
c9:66:4b:02:b9:4f:d3:06:12:b6:84:25:8b:66:1f:
bd:f6:83:1e:45:89:ae:64:ad:47:1f:c3:f8:1b:2b:
6b:e1:89:75:ce:20:a6:cb:fb:2e:6f:05:d7:a8:47:
4f:60:aa:08:28:05:0a:ce:88:0d:c1:9c:91:f9:c6:
99:af:a8:8a:1c:a0:9c:ed:a0:5c:8c:db:e7:d7:e8:
13:3e:1a:1d:3c:c8:13:25:60:5b:f5:13:df:27:13:
9d:a3:41:f3:fa:4d:4b:5e:82:63:a7:cd:35:84:54:
f7:7c:d8:3e:f8:db:d6:22:4a:e6:dd:da:fb:b5:18:
5c:13:f0:dd:e9:6d:20:70:ce:e6:65:53:ff:10:e4:
fe:2a:c8:bc:ae:fd:3e:2e:67:8e:86:b6:64:ce:a6:
7a:35:ef:55:0a:c6:18:a7:e9:95:08:1a:30:28:c4:
6e:6a:bf:e3:87:90:53:9e:f9:e0:e5:24:5c:c2:56:
50:e9:d1:95:41:e2:c8:5d:b8:ef:a4:d2:76:a9:e6:
d0:29:49:4c:9f:92:ca:9e:ed:13:bc:67:f6:51:51:
ee:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5D:4B:8C:95:35:15:EA:3D:D3:79:6F:D6:BF:10:7F:19:B4:F8:4B
X509v3 Authority Key Identifier:
keyid:88:21:A3:9A:ED:9D:A4:EE:3A:B6:63:9D:24:45:08:FA:1E:8D:20:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iCGjmu2dpO46tmOdJEUI-h6NIPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/496773-5018-48dc-a240-f60d6f7182a1/1/iCGjmu2dpO46tmOdJEUI-h6NIPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:05:16:cb:e8:89:81:81:74:e6:6f:fd:90:26:33:38:17:f3:
ae:ba:8f:07:5c:0a:0b:c8:83:46:53:59:64:25:29:bd:8f:17:
fc:0c:30:ec:76:1f:45:21:44:2d:e6:65:d6:bd:79:c2:59:f8:
86:36:2e:64:1b:33:9d:70:64:80:d8:2d:43:e6:e2:85:22:41:
83:2f:d3:7f:d6:35:d3:e0:d7:14:b5:23:31:83:02:82:6d:75:
9b:0a:54:83:a7:52:31:52:75:dd:c1:75:7a:05:24:02:98:ea:
9b:d5:23:40:01:82:35:39:5b:02:79:c2:fc:55:67:42:3e:e9:
77:29:7b:97:a3:a9:0b:3c:24:77:a4:4f:11:3f:12:1a:92:7a:
06:64:fa:c3:46:dc:64:a0:c2:83:a2:fb:b2:e0:f6:6a:18:9b:
cb:ba:70:bf:2c:37:bc:23:2f:2d:94:6b:35:f6:48:1f:96:5e:
05:7e:52:5b:c0:ea:a5:f6:fe:f8:f3:1a:08:fe:85:9a:a2:fc:
a0:63:cf:69:de:4f:b8:45:5a:2f:d4:ea:16:ee:59:83:f7:29:
a8:ac:e2:c5:13:60:64:39:7d:de:c1:f7:9e:f1:e8:3f:45:65:
55:d5:8c:6c:d0:2b:a8:41:f6:14:70:92:ab:04:3e:8a:41:8e:
8e:e5:6c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:03:14 2025 by rpki-client