Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
File: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft (raw, json)
Hash identifier: 1OIkhSPncK36T3D5zRaCpEP7Tlq+RdXXkk9RsI0laBU=
Subject key identifier: 1F:A3:D2:38:E7:BE:47:B9:BD:5B:96:B7:82:1C:9F:C4:F5:FD:F3:72
Authority key identifier: 22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
Certificate issuer: /CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Certificate serial: 0198744FAB7D8589187A4EE5A7C0790DCA52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
Manifest number: 0D01
Signing time: Mon 04 Aug 2025 09:00:34 +0000
Manifest this update: Mon 04 Aug 2025 09:00:34 +0000
Manifest next update: Tue 05 Aug 2025 09:00:34 +0000
Files and hashes: 1: 5h9N95WR6G3ZttKnfAaRL_2XfKs.roa (hash: Wu3zPxSXCsayNSHW7YvNoHAYtN3gQjTl9ho9qfJB69k=)
2: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl (hash: 32k5x6W9FSh/EiLB7lnYtfwxePP5Ku4S28Y6m/6DXjU=)
3: mWDbGVVpCQ84rC7Zv5fGnlAS0IM.roa (hash: p+WC5acLc9Vp8ZBrdZrqWpaCEJthWpQv4NHUQY+p8+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:4f:ab:7d:85:89:18:7a:4e:e5:a7:c0:79:0d:ca:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Validity
Not Before: Aug 4 09:00:34 2025 GMT
Not After : Aug 5 09:00:34 2025 GMT
Subject: CN=1fa3d238e7be47b9bd5b96b7821c9fc4f5fdf372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:11:d6:67:57:48:d0:4e:51:5c:e0:66:57:97:
66:37:81:85:2e:df:0d:8f:68:0b:20:af:0b:9e:f1:
96:28:cf:3d:dd:ec:58:52:96:83:50:85:20:76:3b:
90:8a:67:0e:38:b3:43:e9:80:6f:aa:cb:ea:94:03:
3e:c5:61:c9:5f:db:75:9f:f5:20:21:b6:3a:07:d1:
ae:ba:25:62:9a:f7:2c:b0:b3:b2:f4:af:d2:8e:d5:
d0:20:f7:75:79:a3:2f:3e:6c:62:9a:55:dd:26:ec:
67:0b:4a:81:33:99:67:4f:54:63:d1:fd:05:d8:69:
a0:15:63:29:ff:93:45:b7:52:06:66:cf:c1:73:71:
6b:fd:87:e8:3a:dd:80:2d:7b:9d:12:e1:a0:ff:8a:
af:99:86:a0:b8:11:a8:4f:f1:dd:ca:bc:37:63:9c:
ec:38:49:e3:60:77:ce:69:5a:50:90:cd:78:ba:dc:
ba:48:25:5e:7f:37:de:29:93:3c:58:58:22:d6:62:
f9:e9:c3:df:80:a6:24:00:56:b3:e9:c6:00:bc:a5:
70:85:8f:8c:5d:60:f7:3e:08:67:57:98:d5:46:88:
f5:01:9a:f5:aa:08:93:9d:80:0b:98:c8:fd:1e:ce:
db:44:f6:c8:86:c5:c9:8e:74:a1:a3:ef:3e:f5:2e:
2f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A3:D2:38:E7:BE:47:B9:BD:5B:96:B7:82:1C:9F:C4:F5:FD:F3:72
X509v3 Authority Key Identifier:
keyid:22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:57:e6:7f:4d:9d:ed:83:fb:2b:89:22:6b:90:98:1a:80:b7:
10:31:98:b8:0d:68:13:20:6c:69:a5:31:2a:16:ee:07:c8:38:
37:9a:7a:59:82:08:45:0d:56:2d:ae:14:ba:91:26:de:ea:de:
21:bf:3e:7d:e7:7e:17:11:9c:5c:ad:b1:f0:39:f0:95:94:cc:
8d:78:d3:a0:e6:76:46:cd:91:98:fa:00:8b:49:34:0e:c4:53:
a5:22:27:9e:12:bd:c6:82:c0:cf:a8:d0:c7:72:af:95:7c:b7:
c6:d5:19:e4:9e:ff:05:33:a6:fd:8c:e2:3a:d6:54:6c:3a:a9:
01:3b:c0:e1:f1:c1:2d:b4:14:e6:27:b5:e5:de:13:f0:98:5d:
fb:a2:10:05:41:3a:b7:20:cb:72:3e:37:7b:5f:3d:e2:0c:4d:
91:b4:a2:1c:99:a5:d0:c9:a9:9b:c3:14:97:b3:92:0c:fd:d8:
56:61:4e:50:88:51:62:8f:9a:69:e5:bc:b0:07:02:f6:9b:9b:
34:b5:e4:be:d7:69:a5:15:28:bb:0d:bc:c1:45:83:92:b9:1f:
e1:c1:9d:8e:e8:05:1a:da:8e:0f:34:84:aa:e4:9e:db:83:a5:
55:10:d3:13:b5:96:05:8d:e6:58:a0:9e:03:5d:19:8d:88:bb:
0f:c8:ac:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:00:20 2025 by rpki-client