Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
File: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft (raw, json)
Hash identifier: Ul2b0Ps5+FxjMv98fwDpg+ysEhskyJNNwENTUqq5BqY=
Subject key identifier: 81:5B:C7:81:CC:99:A2:A4:61:C4:EF:33:EB:32:66:43:98:40:54:D4
Authority key identifier: 22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
Certificate issuer: /CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Certificate serial: 01987CE5A791535ED6D81C86EB0C9405F597
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
Manifest number: 1621
Signing time: Wed 06 Aug 2025 01:01:22 +0000
Manifest this update: Wed 06 Aug 2025 01:01:22 +0000
Manifest next update: Thu 07 Aug 2025 01:01:22 +0000
Files and hashes: 1: DE9IUhyQDVKAZFd3LetU9Q2xs6k.roa (hash: 4yKIJoSmqEpGXf1pIollJ7FnnZ1pkmaGTlVLtjz3pSc=)
2: H8-4BKw4Tio0v7fBDDkOvu0xYf0.roa (hash: KAd/cINuj3Zmkb8yZBl9rfV147mzpewaBmWKPtSwHrI=)
3: Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl (hash: cRW4AClAn8AtbSYkSMkoiOARwYfU74LzvL8YhWM3Ego=)
4: j_UhRom1_CjoZ8ktPpSsCzemlX0.roa (hash: p3RE9tXJ28D2EkcXNDeylKcBqqXVLJJQRP9qM16ttXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:e5:a7:91:53:5e:d6:d8:1c:86:eb:0c:94:05:f5:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=220f413fb0af0bd8fe130820d3049d0e71ed4bb0
Validity
Not Before: Aug 6 01:01:22 2025 GMT
Not After : Aug 7 01:01:22 2025 GMT
Subject: CN=815bc781cc99a2a461c4ef33eb326643984054d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:be:c3:b3:50:f0:ff:74:63:6c:f9:ca:0c:0f:
2f:0d:6a:a3:d7:04:56:09:8c:fd:04:e4:eb:f6:5a:
fc:c6:b3:8c:39:80:2c:ff:3f:f1:49:04:a3:b7:8a:
f5:b3:7c:e5:fa:af:40:15:af:f2:53:46:b4:bb:ef:
64:8c:c0:67:dd:f7:ab:89:48:e4:af:74:2b:a3:d9:
74:a9:aa:7f:cf:ef:b0:ad:40:b5:67:74:67:d8:f2:
1e:6f:9d:de:c6:ee:5b:74:94:77:65:2f:89:4d:9d:
67:2a:e1:ac:09:5a:9a:24:66:81:f2:35:c4:eb:88:
20:8d:99:10:2d:6a:51:21:7b:7e:7a:bc:cb:36:5c:
3f:9a:ea:d8:54:d7:e7:14:1a:ff:f5:72:ed:14:1c:
69:42:90:91:b7:ea:ff:88:f4:a2:07:71:a9:9e:5b:
84:ce:10:f0:0c:37:0a:12:78:3f:9c:dc:af:36:c2:
58:92:82:02:6d:ac:23:bf:08:df:37:85:de:81:b9:
d3:38:01:88:6e:44:30:5d:c4:80:50:55:5a:24:45:
12:62:6e:b6:59:f2:35:49:95:55:c3:c7:66:99:12:
b9:96:c1:88:c8:82:2f:4d:e5:4c:90:8e:0a:a1:93:
0e:f8:ee:74:c8:b4:57:19:06:52:6e:59:4b:ab:34:
fa:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:5B:C7:81:CC:99:A2:A4:61:C4:EF:33:EB:32:66:43:98:40:54:D4
X509v3 Authority Key Identifier:
keyid:22:0F:41:3F:B0:AF:0B:D8:FE:13:08:20:D3:04:9D:0E:71:ED:4B:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db357d-b170-40a5-a669-82eba0cb3b0d/1/Ig9BP7CvC9j-Ewgg0wSdDnHtS7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:c2:28:96:98:61:bd:9d:30:25:1e:75:ad:84:27:77:bf:ad:
5f:2b:af:c9:69:d9:3e:13:b3:ae:1a:b6:57:93:a0:c4:a8:a8:
c0:50:8b:25:d6:de:24:9f:c8:78:c9:a3:ad:5b:d8:0c:c8:85:
1d:e2:4f:50:77:32:4d:3e:5e:91:56:da:5c:51:7a:6d:6f:21:
36:41:a5:3b:6d:72:42:87:86:bd:8f:5d:72:d6:e3:f1:3c:63:
03:6b:73:72:e3:08:64:b8:ab:20:3c:66:79:e8:00:89:b8:26:
90:e3:a5:6a:28:45:cb:08:78:59:b7:34:34:e1:1a:f5:21:01:
d7:16:f7:6a:67:6b:59:a8:12:dd:9f:9c:86:d3:73:a3:db:1e:
b3:23:87:b6:f9:02:7e:00:69:6a:e3:62:5e:2e:37:3e:13:cf:
d6:ef:82:9d:7f:0f:a9:82:2c:88:67:e1:f4:08:17:c2:ff:09:
71:56:dd:50:bf:ca:82:f0:cc:c6:14:0b:cd:9c:d6:30:7f:6d:
04:67:8c:01:99:a0:83:80:2d:ff:6d:d6:e9:cb:be:2d:6a:09:
56:93:e8:ba:eb:c6:74:cf:70:e8:af:61:98:83:ce:24:7c:ea:
0e:90:7c:57:0b:31:68:74:09:0e:fa:db:91:e0:e5:e7:69:de:
98:54:47:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:26:39 2025 by rpki-client