Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: A2tfche3gTYEam01KwUPs9u4XNHzQn1LczlOQp6iCes=
Subject key identifier: 54:86:DD:05:43:F0:45:51:1C:96:CF:13:AA:2C:53:91:FB:41:36:B3
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 01987D1C53996A1C9D67749D5652FB8C540B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 0121
Signing time: Wed 06 Aug 2025 02:01:05 +0000
Manifest this update: Wed 06 Aug 2025 02:01:05 +0000
Manifest next update: Thu 07 Aug 2025 02:01:05 +0000
Files and hashes: 1: h5XDYzeHNRC78pQldSdBc3wtmlU.roa (hash: y/jCUDtK6aEdyycsVox6EyAhTQt3+YacMPTfw4ggZeM=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: jsFQvytV1sPqau2f0bOz+RBVAMgBZNVU5/Roaa4VYfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:1c:53:99:6a:1c:9d:67:74:9d:56:52:fb:8c:54:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Aug 6 02:01:05 2025 GMT
Not After : Aug 7 02:01:05 2025 GMT
Subject: CN=5486dd0543f045511c96cf13aa2c5391fb4136b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c6:65:31:a0:c5:87:77:16:2a:d9:4b:e1:c8:
ae:fc:eb:87:4c:12:3c:6c:1e:d8:11:bf:6c:28:d8:
ce:73:80:50:21:c9:09:fd:e9:85:39:fb:ea:34:1a:
34:b5:08:6b:6e:02:6f:4d:f2:f0:a1:0c:2b:70:45:
05:ed:65:08:96:da:bc:b9:76:67:6c:6d:7e:5a:c2:
9a:7e:64:ee:ee:1b:f3:88:66:3d:61:79:b8:01:12:
4c:fa:14:f3:41:b0:43:22:de:b8:ed:d5:2a:0b:87:
f8:38:9b:80:84:82:37:24:61:64:d1:6a:74:2d:68:
d9:ad:2e:6a:b8:a3:b7:13:2f:0b:dc:3b:d2:9b:25:
6b:8f:2f:76:f0:8d:23:6d:84:64:52:22:50:d7:f9:
fe:46:49:44:8d:b2:97:34:8f:fc:2a:58:45:55:26:
8c:fd:f5:7b:ce:51:e8:86:5c:5f:c1:a8:57:c1:cd:
67:8a:8e:01:be:e3:eb:ed:e5:76:9e:81:1f:8d:22:
e9:82:9b:70:82:fc:ef:81:2e:d0:60:79:8c:2f:e9:
6f:f1:99:fe:0f:43:e0:1a:ff:b9:87:7f:da:f8:5d:
8d:6d:5c:f5:fb:d3:10:73:7a:9d:25:0c:64:f2:94:
b1:a0:33:f3:29:82:83:f5:a3:a1:0e:b1:18:20:5d:
d5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:86:DD:05:43:F0:45:51:1C:96:CF:13:AA:2C:53:91:FB:41:36:B3
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:aa:2c:95:a9:62:5f:8a:b8:af:78:49:58:ac:e4:5a:8a:6f:
53:e9:9a:82:68:69:97:21:5a:06:28:63:e0:db:b6:cb:86:44:
95:2a:09:dd:e0:66:78:66:a7:e0:ef:f7:b2:76:b9:d4:c1:8a:
16:c3:13:a0:c3:e6:fc:26:3e:90:b8:0e:6e:69:76:db:05:46:
8c:1b:62:71:15:1e:e7:c0:93:97:7d:88:50:c7:c9:b3:d3:ff:
0d:4a:27:19:e1:55:02:20:ee:ff:4c:c4:96:98:26:d1:b9:71:
34:a9:28:42:b1:ad:8b:1c:27:06:6f:ae:05:09:ae:d6:87:82:
11:42:a2:58:9e:0a:08:72:fe:9e:1e:0d:d1:c6:77:c4:77:f1:
68:f3:b1:ef:53:8b:24:5f:29:0e:51:80:27:60:9b:f6:f5:cc:
62:d7:69:b9:c9:e2:a5:be:72:cf:e5:46:40:b5:55:25:68:1d:
1c:9b:78:0c:85:07:0d:10:2b:fb:24:b8:12:9d:7e:94:97:21:
55:ce:f0:8b:2a:50:4f:de:01:45:5b:8f:b2:e2:3b:b1:74:ef:
a4:d7:b6:79:70:0d:23:e9:b6:81:7f:7d:74:8e:2c:d3:7c:3e:
2b:55:57:73:ab:ab:c7:fb:cd:6a:f0:5a:f9:95:e8:f1:77:8d:
de:f9:d0:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 07:59:00 2025 by rpki-client