Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
File: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft (raw, json)
Hash identifier: 5ZIndrslgV4H+YaK2SX5SM37tXsgB8E6w4r35qI6aFQ=
Subject key identifier: A8:16:5E:97:82:54:4B:8E:36:44:0F:D9:40:64:41:05:97:CB:99:95
Authority key identifier: 23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
Certificate issuer: /CN=232872f431ada9b6826c5f0897ec4e5342092e98
Certificate serial: 019889C514131E8987EC7177A34039B35853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
Manifest number: 0382
Signing time: Fri 08 Aug 2025 13:00:50 +0000
Manifest this update: Fri 08 Aug 2025 13:00:50 +0000
Manifest next update: Sat 09 Aug 2025 13:00:50 +0000
Files and hashes: 1: 48SAL-XLUksWWK1voy4rKInz7oY.roa (hash: gFJO835mNcJuKRXk34iwBhwCN0pZ40KaHdrECvT9LmA=)
2: Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl (hash: weX0PHIMEJ5UsPnsvL8/AqxHC9oWDfsfD/QwxHbYL3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:c5:14:13:1e:89:87:ec:71:77:a3:40:39:b3:58:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=232872f431ada9b6826c5f0897ec4e5342092e98
Validity
Not Before: Aug 8 13:00:50 2025 GMT
Not After : Aug 9 13:00:50 2025 GMT
Subject: CN=a8165e9782544b8e36440fd94064410597cb9995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f0:50:cc:29:58:a0:43:07:0a:68:03:af:9c:
01:0b:c3:3a:cf:67:87:54:4b:f4:02:42:ef:db:43:
be:84:31:5e:83:b2:64:d6:9f:26:dd:3c:57:c2:fa:
8c:96:17:95:44:f3:30:dc:1f:ce:d8:08:30:88:e1:
c4:ce:64:bf:ff:fe:98:37:70:b3:5b:c0:e7:e2:08:
2d:1f:f5:87:4c:a1:11:f6:21:40:68:55:b8:e6:85:
fe:7c:95:2c:1b:b1:8e:d5:44:44:e7:e6:3b:23:77:
00:cb:17:3b:8b:80:d6:bd:31:69:3d:7b:f4:ad:df:
b9:00:2c:d6:30:43:fb:b4:91:ea:6b:87:f6:76:fe:
07:3c:0c:80:a1:d9:9a:ed:69:83:da:8c:cb:63:07:
b5:0b:1a:65:b3:4d:d3:de:de:a5:ef:19:24:68:84:
47:eb:81:e9:0f:03:e5:01:e9:c7:9f:3e:17:ea:47:
b1:cd:c1:01:ab:d3:c2:ae:b2:d5:43:08:21:65:1e:
11:9d:40:5a:d2:81:52:c6:9d:18:93:25:c9:18:0b:
68:1a:d8:c8:26:2a:18:bb:a0:90:5e:cc:41:f9:81:
6b:80:f3:a6:65:94:dc:a7:6f:0b:01:10:fd:ac:78:
b9:87:7c:f6:be:0a:77:a7:d2:61:e2:85:9e:19:eb:
75:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:16:5E:97:82:54:4B:8E:36:44:0F:D9:40:64:41:05:97:CB:99:95
X509v3 Authority Key Identifier:
keyid:23:28:72:F4:31:AD:A9:B6:82:6C:5F:08:97:EC:4E:53:42:09:2E:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7472f9-b403-42e0-b306-71aa63125128/1/Iyhy9DGtqbaCbF8Il-xOU0IJLpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:8c:25:5a:da:e4:8c:f1:89:fd:7d:89:0f:79:dc:11:43:26:
4c:66:d6:1c:80:ad:78:11:9f:7a:bf:85:38:03:74:ae:8f:55:
47:40:56:1a:8f:5c:f5:7d:9e:d5:fb:27:53:56:d5:25:15:2d:
b1:58:59:b0:26:98:94:3e:82:07:62:40:3c:2f:b4:98:b1:d8:
0a:58:ff:2b:ed:55:ef:fa:e6:ad:62:da:6d:0c:7a:71:81:a5:
dd:d0:7e:4d:17:83:45:8a:c6:1c:cf:e1:5c:4a:26:85:c3:9d:
79:2d:17:2c:3e:da:91:31:d3:b1:de:f2:54:0b:0b:26:ea:3d:
0b:bc:a9:fd:b5:11:d1:40:80:d7:8c:50:fe:62:95:45:ae:ae:
7a:dd:d9:3a:6b:e3:c7:c7:a4:76:e2:ed:15:7a:e3:75:0f:ed:
70:a2:b6:d7:10:46:5a:a8:6a:46:60:21:45:7f:69:4e:07:c9:
c7:f7:bd:8d:0e:f1:9a:46:bb:13:ad:33:2b:1d:dc:17:90:d3:
eb:50:a3:29:2e:56:83:22:5f:8a:7e:f7:3d:f1:6e:fd:d7:40:
55:dd:73:6e:63:9f:aa:d8:40:a2:f2:b5:0d:f6:27:71:af:44:
35:e1:16:e3:8e:b6:02:c7:96:7d:1f:e5:19:aa:62:46:b3:e9:
87:88:82:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 19:32:21 2025 by rpki-client