Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
File: iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft (raw, json)
Hash identifier: jpgM5F+tI3r4mb7I5lFOFzDl1edF5c1S7XA1YL7FH58=
Subject key identifier: 21:6D:68:EE:8F:E8:98:AA:B2:1F:3A:23:35:77:C4:1F:AD:C9:F7:EC
Authority key identifier: 89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
Certificate issuer: /CN=898825d2f064989b38c781f2a8535189a26928c3
Certificate serial: 01988543E1CC7DFA2F3B31C952CFFC61B25F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
Manifest number: 14A2
Signing time: Thu 07 Aug 2025 16:01:15 +0000
Manifest this update: Thu 07 Aug 2025 16:01:15 +0000
Manifest next update: Fri 08 Aug 2025 16:01:15 +0000
Files and hashes: 1: iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl (hash: LO+u8C80KIU4En0AoUR6naoQzNS32FkTu4e+ZxaVEok=)
2: zbnBRUeVPnEEwLI2vvj0r39FPtE.roa (hash: 4AvpkRySedv9+g3/SFfJUIRAayJwpWmaa1FdREtJu9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:43:e1:cc:7d:fa:2f:3b:31:c9:52:cf:fc:61:b2:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=898825d2f064989b38c781f2a8535189a26928c3
Validity
Not Before: Aug 7 16:01:15 2025 GMT
Not After : Aug 8 16:01:15 2025 GMT
Subject: CN=216d68ee8fe898aab21f3a233577c41fadc9f7ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:61:4c:61:7a:b8:1a:73:8f:11:da:f2:16:9b:
f2:76:ae:e1:de:c0:a2:51:0f:58:39:0e:a8:15:5c:
e3:ba:c5:64:41:70:d7:49:79:da:30:fc:db:ef:2d:
b4:3f:66:eb:bf:b9:de:08:c4:1e:42:b6:2c:26:61:
02:7b:0a:8f:ed:73:9d:f6:5d:58:45:a6:82:e5:1e:
11:88:ba:72:f1:53:ce:f0:4d:ad:f1:5e:1c:0a:2c:
5a:81:08:89:33:75:bc:ce:a4:36:ae:08:6b:98:a6:
8c:1a:ed:f6:62:25:7c:79:42:e5:8e:f7:76:e0:12:
6d:21:67:0f:d4:a0:98:1c:de:06:1a:d4:ca:d0:37:
38:74:3f:b1:76:12:0c:79:79:da:eb:97:7b:18:c0:
3f:c5:40:10:b7:30:af:64:b8:b4:79:23:1d:a1:af:
d5:c5:e1:dd:fa:6c:74:ec:a5:ac:52:61:89:fc:eb:
c3:06:8a:10:63:10:55:31:d8:5f:b6:e7:52:8c:d3:
04:9d:e7:4f:bb:d5:b2:4f:b1:1b:ba:5f:e3:00:e7:
29:db:4d:65:c5:d4:35:c1:af:d9:5e:11:21:99:fb:
d4:a7:d6:f3:56:cb:0e:88:93:dc:13:32:89:d3:b8:
45:31:35:a8:b3:6b:ab:34:f7:25:87:16:3d:df:db:
03:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6D:68:EE:8F:E8:98:AA:B2:1F:3A:23:35:77:C4:1F:AD:C9:F7:EC
X509v3 Authority Key Identifier:
keyid:89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:64:fb:39:e0:06:d5:01:62:1d:16:22:17:af:13:1d:61:b0:
f2:62:6e:aa:44:54:61:dc:7d:b1:0e:b2:62:ef:be:ad:fa:b7:
59:67:d6:41:3c:a3:ff:8b:14:80:ec:0f:ff:37:e0:1b:68:24:
3e:52:9c:70:57:80:86:81:32:8b:e7:95:f0:93:7f:19:b0:a5:
7a:2b:d0:48:b9:cb:ef:05:02:50:7b:c2:4b:84:51:10:80:3f:
39:3a:5c:26:9b:d4:58:93:68:ef:8d:db:92:fb:2c:2f:14:5d:
28:cd:db:c5:02:c1:1f:c6:df:2e:99:0d:44:48:25:98:86:e2:
ce:fe:c1:25:50:7f:2a:b0:32:3b:1a:61:79:de:df:8c:f8:7c:
8f:97:9d:ca:f8:8c:56:93:b5:b2:7a:49:d8:91:67:0c:ed:26:
46:3b:a1:26:2a:d2:28:6f:62:30:af:0d:aa:03:66:74:b6:25:
e0:fc:30:32:c5:c3:9c:f1:f4:4c:76:9b:9e:3f:92:0c:21:ef:
04:0d:eb:9f:c9:23:3d:ac:97:43:2a:5e:70:8a:ce:fe:0c:75:
c0:b1:b8:c0:6b:4f:d8:96:5c:ba:ee:75:82:d2:01:55:b0:f6:
ff:53:78:b8:a5:b2:ac:c3:ca:3a:ee:8a:e9:4d:44:b0:4f:78:
71:85:9c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:19:05 2025 by rpki-client