Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: NvJww6TjubeJi9LhE6mZZYZelJOmG9qjzpGI5fUFc/U=
Subject key identifier: 7B:AC:F3:0B:70:5E:0E:F3:A9:B7:F1:EC:13:2A:0F:F5:77:7E:21:5A
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 019875D1C6BE6B179A62D9EC1DD9B5E857EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0977
Signing time: Mon 04 Aug 2025 16:02:18 +0000
Manifest this update: Mon 04 Aug 2025 16:02:18 +0000
Manifest next update: Tue 05 Aug 2025 16:02:18 +0000
Files and hashes: 1: 2N-Ad_PjuCdbWMhOkKca0e_4aH4.roa (hash: mX5PwA+5z3mRrepVsPYas6Uu6jFtb6sejxlwArRN7qw=)
2: 9qSGcGsaAT-Orj-BviLbbFBnobc.roa (hash: KGQdMGZUYXqZM3Cup0R+gwjVZv7t7VL1nDYpfpe2mMo=)
3: C6v3z8kGbpGtAYhEGvbIA9POeJ4.roa (hash: dVnxKmSOxpULCnBph8ARAXzts2lzvI7njmrNqMweylU=)
4: Q3cz4EEEExax1nv4wtLZZPPEgSk.roa (hash: ML1oxtfPutOEqYHFMGiG3+QvRpl8345MdKNoHGmCBSQ=)
5: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: WfdqeAHWP116YGi4n70h8kPgnFcIW9yXyM16XwblWjY=)
6: raR6qfZ5L-9hzvpYVK9us-1wIug.roa (hash: ARfa5iwtjYV/gUtHJTALBEg3MfK/IBejlaZvsXofCl8=)
7: tBuToTypjDQ6u5RK5DBD-fEJHi4.roa (hash: iFrIeR1iIdBgXE0Q5UKDG34iIF6/jJkNwFYF+l/o72M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d1:c6:be:6b:17:9a:62:d9:ec:1d:d9:b5:e8:57:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Aug 4 16:02:18 2025 GMT
Not After : Aug 5 16:02:18 2025 GMT
Subject: CN=7bacf30b705e0ef3a9b7f1ec132a0ff5777e215a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:66:ed:db:bd:94:b4:13:a3:ec:73:23:d3:53:
91:80:b0:16:f8:69:b2:60:d7:06:e6:1e:44:a9:c3:
44:1b:63:28:26:50:42:f8:35:e4:22:91:ce:61:e5:
8d:e5:d5:6a:85:7a:07:a8:cc:47:29:fd:07:2f:02:
a9:ef:f7:24:48:99:49:76:aa:5a:11:36:e9:fe:d7:
3c:ae:e7:61:5e:0f:e6:81:ee:d7:56:d7:60:c7:da:
23:73:9b:c2:18:98:aa:e9:55:20:e2:0e:49:d8:b2:
bf:c4:3e:5f:a8:48:53:b2:85:6c:a2:63:90:9a:8e:
a5:fc:d2:13:e4:f3:72:c4:18:7b:d5:88:95:d3:da:
2b:e6:29:27:c5:79:5b:61:56:1e:49:6a:f4:0a:23:
fc:dd:9c:0b:7a:68:32:75:5a:86:97:65:b7:95:7b:
8b:0d:e3:fa:84:b8:e7:d9:5f:79:59:a0:26:7c:f4:
5a:bf:a0:82:ad:45:ca:26:9b:04:6f:d0:b2:cf:40:
c4:ea:a2:cc:67:e7:b7:b1:44:e1:07:4a:66:f7:d8:
14:56:3f:43:15:49:1a:60:9f:9e:28:40:19:de:05:
a0:4c:55:32:01:0f:6c:fd:03:a8:e6:72:9a:37:38:
4e:83:d0:96:ac:c2:77:6f:06:ca:db:21:75:ca:af:
b7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AC:F3:0B:70:5E:0E:F3:A9:B7:F1:EC:13:2A:0F:F5:77:7E:21:5A
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:de:90:98:ea:3b:e6:bd:ba:6b:79:b3:b9:c1:bb:e0:66:cc:
aa:da:58:fd:71:b9:a1:21:3a:a5:d5:43:b3:e5:5e:ef:ea:e1:
90:fa:e8:f9:2a:61:62:02:df:4f:0c:0d:5b:15:88:2e:e3:93:
87:1a:83:f6:a4:48:89:8f:6a:0e:52:c3:1b:88:0b:bc:e6:d9:
53:ab:50:47:47:22:40:b5:11:6a:02:95:fe:59:ca:a1:3d:ea:
25:06:78:55:fb:bd:9b:52:d3:72:f2:2b:af:92:a1:28:e9:dd:
35:51:d8:48:91:90:df:2d:e1:3c:3c:53:65:44:6d:63:bc:1f:
69:ab:90:f9:6d:4e:90:d7:db:0b:65:9b:5f:31:31:76:33:15:
b4:83:20:94:87:93:cb:45:7c:be:d5:d4:08:e0:80:bc:3c:a5:
86:8b:83:f7:42:cc:78:99:26:52:43:e5:14:3e:69:eb:71:82:
5b:e3:d9:92:79:f2:72:57:79:43:0e:ee:e6:31:93:13:88:21:
48:6d:9e:07:c5:cd:5c:1c:6a:1b:e2:40:41:0a:5e:32:07:80:
68:a9:71:02:16:3a:e3:cf:a6:0f:1b:9b:ed:fc:e9:ec:ba:42:
09:4b:96:44:ef:20:f2:ba:08:87:8d:67:80:e0:87:be:e5:e8:
9e:ee:4b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:29:24 2025 by rpki-client