Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: Lu8WKT6MZNebHhl/R/jCalyHCs7So6AAAHfGpPmXGFQ=
Subject key identifier: 1E:65:FA:AF:1F:99:5B:6D:24:89:8B:2F:F3:86:31:DC:01:D5:73:88
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 01987374592616C8915A1DB4020514481833
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 10F0
Signing time: Mon 04 Aug 2025 05:01:01 +0000
Manifest this update: Mon 04 Aug 2025 05:01:01 +0000
Manifest next update: Tue 05 Aug 2025 05:01:01 +0000
Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: 62rFO7oBW94xEeSunmyShIaMfeTKVcIXEPrR0ki1VrA=)
2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:59:26:16:c8:91:5a:1d:b4:02:05:14:48:18:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Aug 4 05:01:01 2025 GMT
Not After : Aug 5 05:01:01 2025 GMT
Subject: CN=1e65faaf1f995b6d24898b2ff38631dc01d57388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d1:10:b1:ad:30:ea:f8:a7:b4:81:df:2b:8a:
c9:b3:15:d2:1f:90:ad:82:ff:18:fa:80:06:d4:63:
6c:8f:55:32:c9:05:4f:a6:39:c0:bc:11:b1:7e:9d:
aa:b2:6f:19:a6:ea:4e:cc:3d:c7:a9:9f:d3:71:7c:
fc:c3:55:bc:04:e9:83:98:4d:aa:c9:50:cc:c2:6d:
7d:48:2f:c7:83:77:47:5c:72:6f:a3:3f:4c:8f:ff:
e6:10:11:fe:4f:ca:c3:55:42:65:1b:6f:0e:02:75:
90:45:7f:68:ce:66:2e:7c:0d:a4:10:61:8c:d1:70:
da:b9:d2:8c:88:40:1f:7a:31:76:66:b3:c1:aa:4d:
26:c7:92:47:c6:e4:f4:47:ad:3e:a2:5a:5e:87:50:
73:fb:f7:40:29:da:07:82:3d:61:a5:cb:46:f7:84:
7d:49:a3:c8:a5:1d:e4:3b:eb:47:f9:14:47:98:dd:
35:7d:14:b1:80:c6:90:eb:d8:81:82:f9:02:44:5a:
a7:ed:76:70:09:db:89:f4:94:85:98:0b:27:66:b1:
7e:cc:c1:16:ee:78:ad:25:ad:94:88:c5:b3:cc:b3:
6f:fc:e2:67:c2:2c:d7:b5:e7:d7:6b:2f:59:49:45:
68:66:fd:9e:21:de:da:18:4a:0a:6f:9b:cf:86:b9:
5a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:65:FA:AF:1F:99:5B:6D:24:89:8B:2F:F3:86:31:DC:01:D5:73:88
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:18:56:ed:fd:6f:36:7a:78:77:7b:67:f4:8d:63:57:0b:46:
1d:7c:f9:a2:44:1c:6b:98:b6:a4:dc:19:e1:9d:89:de:0c:bc:
a2:7f:03:d0:0a:87:49:6b:24:ed:3e:92:a7:69:23:19:8b:47:
99:2e:a2:1f:be:58:1e:50:30:bf:2e:44:61:6a:07:ca:be:99:
6d:97:b3:d7:44:8a:4f:73:04:2b:4d:2d:4c:ca:86:d1:89:53:
19:d4:1f:0a:f8:01:1a:cf:8f:47:11:b0:56:8d:ae:e0:b5:d8:
7e:e3:ff:ea:a6:12:a5:0b:33:da:d7:cf:63:35:69:68:fd:63:
ff:51:f2:cd:86:79:39:47:43:c5:07:d2:60:db:ba:d6:81:5d:
56:5a:6a:f2:2b:b6:bd:14:1c:f0:a9:c1:68:08:ad:c0:63:d3:
bf:7d:b1:89:57:26:56:64:15:15:27:36:a4:e4:3e:4b:64:96:
08:11:ca:55:d2:d9:bd:19:92:88:ce:3f:e5:96:a2:0c:6a:6a:
15:d7:8d:c2:eb:1d:22:8b:f7:44:3a:9a:79:0a:67:d1:47:a6:
02:c0:f3:2d:a3:d7:f5:c3:f9:35:ce:b9:5f:ce:10:68:04:a2:
28:04:6b:07:0a:77:59:f1:4a:0c:42:73:04:a3:e1:6e:b8:47:
f9:b5:0a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:07:23 2025 by rpki-client