Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
File: iBLpJPysuGLPO2T1bnZ7wybyf8o.mft (raw, json)
Hash identifier: Ye1/bMhR7zWaGqCz6d08hkel3DU/nTwp57vnp8tCsb8=
Subject key identifier: B1:65:A2:4A:A7:61:57:2E:18:E7:D8:3B:27:57:09:64:8F:36:F9:8E
Authority key identifier: 88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
Certificate issuer: /CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Certificate serial: 0198887BF364DD6CA64E850184BEB4EC40FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
Manifest number: 161F
Signing time: Fri 08 Aug 2025 07:01:21 +0000
Manifest this update: Fri 08 Aug 2025 07:01:21 +0000
Manifest next update: Sat 09 Aug 2025 07:01:21 +0000
Files and hashes: 1: QKCpBgruuyz3i6ikVFdg6qQ3F0Y.roa (hash: G88p/gWLQ6tFindRbDEI4oT0jR5gYy6dY2FWfseB5AQ=)
2: iBLpJPysuGLPO2T1bnZ7wybyf8o.crl (hash: RK0q6AfqZlCig2QPNpAKL/sJ6ZAmDfhl+7lLvt0KFgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:88:7b:f3:64:dd:6c:a6:4e:85:01:84:be:b4:ec:40:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Validity
Not Before: Aug 8 07:01:21 2025 GMT
Not After : Aug 9 07:01:21 2025 GMT
Subject: CN=b165a24aa761572e18e7d83b275709648f36f98e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e3:5b:1b:5c:5a:60:b4:38:59:f2:40:cb:38:
5f:c0:b3:1f:1f:12:72:96:c9:dc:54:de:19:98:13:
0f:31:ef:4e:35:31:e6:fb:9d:65:bc:04:2e:ef:dd:
94:92:28:28:c1:c3:af:d3:9f:41:4c:4b:5d:2c:0b:
d1:96:6b:48:50:a8:92:eb:f4:c7:9d:2e:7f:b2:0c:
b4:5a:67:9c:66:e9:c7:43:31:7a:9b:4b:ad:ca:81:
89:40:bc:b4:27:b9:c0:d4:bc:10:8e:6a:6e:87:13:
f8:1a:75:3b:4f:7c:09:06:18:1c:f5:d7:9d:25:43:
0f:96:50:c8:f7:ab:c4:fd:6a:cd:ee:de:12:e6:02:
47:93:23:83:78:bd:42:b7:21:95:bc:b0:2f:fd:90:
e4:77:6a:4f:39:f4:9e:77:c3:f1:80:a8:f5:29:dc:
38:c4:8e:e9:bd:b4:a2:df:32:66:52:02:68:40:d1:
ec:ff:66:5d:5f:0b:fe:b8:bb:40:0d:a9:6e:37:6d:
2c:4c:3b:6e:61:85:f8:93:67:86:23:8b:74:df:3a:
7b:66:8e:4c:be:8f:e5:a4:b8:e1:54:8d:17:f5:47:
de:e3:9d:b2:84:4d:50:64:b3:a1:3e:6a:50:be:45:
33:9b:c4:90:a9:80:45:f4:a1:64:97:f9:e7:11:e1:
c4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:65:A2:4A:A7:61:57:2E:18:E7:D8:3B:27:57:09:64:8F:36:F9:8E
X509v3 Authority Key Identifier:
keyid:88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:c1:76:8d:70:cb:1b:6e:6e:6c:88:07:0b:d3:5b:13:de:79:
32:e1:51:fb:d3:23:27:fa:df:14:7f:cb:8a:d4:95:97:61:f8:
be:c6:d8:58:e1:ca:55:a1:d7:a0:4b:f4:d9:c2:1a:b6:f8:2b:
cf:14:cd:21:db:1b:93:29:8f:13:c8:3d:2a:7f:ae:41:b8:bf:
a2:d7:a6:fd:64:9b:d8:2d:3a:c9:f8:ab:f4:c5:85:5a:e0:b2:
30:94:16:0d:fa:f1:1d:dc:aa:6b:9f:9c:32:45:ab:51:d8:71:
ec:e1:bc:9d:d2:28:4b:30:41:2b:54:d9:69:06:12:76:2f:17:
b1:5b:ff:dd:cb:4c:90:83:4f:23:5d:01:1d:f7:4d:34:85:6e:
5b:3c:fe:a2:f5:51:88:98:ad:bb:1c:8f:76:60:a7:6d:1e:eb:
6f:98:67:44:f4:23:d1:ac:88:08:00:bf:bc:17:94:42:b9:e9:
b1:9c:29:40:97:f7:d2:04:d5:0f:31:af:0d:ea:46:28:19:de:
62:47:f8:75:37:83:03:f4:11:9a:98:91:79:46:19:22:c3:16:
5a:32:08:ea:0f:59:a3:12:67:96:a7:ae:42:1b:ea:4c:7f:0a:
d9:c8:70:4b:5c:48:c2:da:00:61:3c:28:4b:5a:38:bb:b0:07:
84:b5:28:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 10:15:27 2025 by rpki-client