Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier: XEPN6Tqh+1cHFvhAOty1/wlr9DFX6zxySAnYYCbwN8A=
Subject key identifier: EE:0A:FB:B5:E2:90:A7:69:9F:CC:C9:06:E5:CB:73:F3:F8:A6:12:02
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial: 0198A0F1B5269121CEA5993658D143B0C50D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number: 0DCC
Signing time: Wed 13 Aug 2025 01:00:51 +0000
Manifest this update: Wed 13 Aug 2025 01:00:51 +0000
Manifest next update: Thu 14 Aug 2025 01:00:51 +0000
Files and hashes: 1: P5TwA4gqR6DNAZ9Tx38K6wVBeSw.roa (hash: JFHWlXs6ts8+WEohOsphMs0bmJPDZeURLkqEXMqad1U=)
2: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: cVtVu5uZX+dX162Wjs33fh+TKE7i8YtuLodKTfnYbpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:f1:b5:26:91:21:ce:a5:99:36:58:d1:43:b0:c5:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Validity
Not Before: Aug 13 01:00:51 2025 GMT
Not After : Aug 14 01:00:51 2025 GMT
Subject: CN=ee0afbb5e290a7699fccc906e5cb73f3f8a61202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3c:b3:dd:ad:04:04:3a:45:9d:82:6d:d4:23:
3b:91:4f:16:5e:4c:5c:71:cc:c6:13:6a:3e:00:b5:
d4:7f:ab:cd:81:82:ca:f0:0a:f1:13:4a:c4:28:4f:
c0:6b:1c:93:9e:ed:9b:52:b0:21:47:4d:ff:02:60:
89:ae:0e:02:45:31:b0:fe:c6:a3:20:93:7b:e2:56:
5c:58:50:e9:6c:59:48:df:f8:16:69:20:97:5c:e4:
f1:39:b9:46:b6:b6:2e:5a:60:a6:25:55:92:d6:b8:
08:3e:8a:98:fb:44:99:f9:d3:74:e2:1c:ca:27:b9:
db:94:b8:36:a0:03:d1:9a:2b:65:6d:ee:c7:f1:ee:
85:ca:00:5a:8c:2f:d6:bd:b0:2a:77:84:c2:b0:34:
a2:d7:72:67:6e:fc:29:8e:92:27:3c:30:c4:2b:50:
6e:58:e8:e9:5c:f4:91:b5:0d:76:72:6c:49:07:34:
4c:7e:7c:b0:e6:6c:9e:43:29:47:e2:e3:df:1a:39:
90:76:6b:e1:74:db:ec:d6:42:dd:6d:bb:f0:34:cd:
c8:c9:23:a0:8a:02:b4:2a:35:62:99:7f:e8:3f:c6:
d5:7c:c2:87:3e:d6:8d:20:79:67:89:d9:77:8b:f8:
bc:bf:7d:10:f6:bf:85:96:67:ee:02:db:3c:24:ff:
08:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:0A:FB:B5:E2:90:A7:69:9F:CC:C9:06:E5:CB:73:F3:F8:A6:12:02
X509v3 Authority Key Identifier:
keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:fb:20:01:fa:34:9a:c1:c1:a4:ba:0a:cd:94:7a:53:c1:74:
fe:19:04:31:d2:4a:54:1b:4d:c9:65:1b:aa:0e:9c:78:4e:84:
48:91:17:0c:5c:59:32:5a:f4:cd:51:e1:f7:9e:14:99:7a:32:
5d:06:1c:5a:38:d7:36:42:2d:60:de:b0:d5:4a:24:b3:29:7f:
40:f5:e3:5f:50:57:ab:68:07:94:8e:b0:d4:f8:63:29:92:15:
45:95:4b:06:08:72:9f:8a:8f:4c:f9:08:c4:ff:28:5f:d2:d5:
63:ac:46:39:68:3e:24:67:8b:d3:97:42:ea:b8:9a:88:f5:37:
fe:c7:04:aa:0e:9d:ca:c1:57:91:39:69:2b:b7:9a:67:e8:04:
bc:ff:19:05:16:84:60:9b:b1:0f:56:a7:a1:57:50:f9:f2:0a:
7c:49:70:8e:b5:00:bd:8e:4b:e7:f2:22:f5:9b:70:8c:36:60:
e3:62:aa:f8:e9:61:26:23:55:4e:c2:72:cb:e9:dd:09:79:88:
3d:92:c3:ca:fe:c4:46:52:d2:3a:5a:64:8e:51:7f:2d:a7:8a:
03:28:9b:0b:ea:19:70:0f:1a:ee:d1:18:9f:60:27:9d:e2:af:
2f:9f:bc:cf:35:cb:79:5c:3e:2e:0b:2e:7a:24:5c:98:3f:9c:
3d:1d:8a:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:42:53 2025 by rpki-client