Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
File: iydIPcFsMY5a__gyKTDIF_0ZLJE.mft (raw, json)
Hash identifier: gyGkaptOMz4WN8kpYCWSy9fBeJpv+7ukef9fZsBrEN0=
Subject key identifier: E6:66:A1:C4:0C:85:EC:48:CF:34:8E:B0:98:92:0A:BA:29:0D:03:47
Authority key identifier: 8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
Certificate issuer: /CN=8b27483dc16c318e5afff8322930c817fd192c91
Certificate serial: 019874BE0BB50047C30072958913A60A83FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
Manifest number: 0977
Signing time: Mon 04 Aug 2025 11:01:08 +0000
Manifest this update: Mon 04 Aug 2025 11:01:08 +0000
Manifest next update: Tue 05 Aug 2025 11:01:08 +0000
Files and hashes: 1: WG1KTWwRB1pYbj2P1y-YbJWElMQ.roa (hash: /RcbZ2ujStzbSPjPDGEz6Qg57WsDieIVmjOcowRraSQ=)
2: iydIPcFsMY5a__gyKTDIF_0ZLJE.crl (hash: iO6ZE82k4gW4k3xea9pX4u9zrmlHeW3VQ7TsvDPZDvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:be:0b:b5:00:47:c3:00:72:95:89:13:a6:0a:83:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b27483dc16c318e5afff8322930c817fd192c91
Validity
Not Before: Aug 4 11:01:08 2025 GMT
Not After : Aug 5 11:01:08 2025 GMT
Subject: CN=e666a1c40c85ec48cf348eb098920aba290d0347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:87:d6:9f:19:c7:23:7b:12:4f:a5:6f:e7:56:
5e:8f:44:0a:aa:b6:7d:ab:70:f6:e5:ed:04:74:f3:
1d:f7:39:0d:00:a4:f3:31:f0:8e:13:dd:db:c9:09:
4e:be:df:c4:92:45:6a:06:4b:26:ea:dd:08:1b:97:
ef:9c:e5:e5:e4:52:17:e6:84:46:b7:fe:77:83:ce:
f7:cc:c2:bc:7d:f6:b9:3f:29:d6:4c:28:8d:3f:57:
2d:98:37:b1:9f:e5:a4:59:af:3e:48:be:d0:5f:08:
dd:f8:74:bc:bb:ea:b9:24:a4:16:38:b1:59:ca:6d:
61:e4:8d:76:91:71:a1:19:eb:4d:52:f3:07:28:5f:
04:bd:bb:61:60:c1:c9:b8:eb:9d:bf:ee:b0:9a:de:
21:23:ed:f6:a1:16:e7:59:a5:3c:19:52:0b:0d:bb:
48:cf:b1:4b:c5:a0:da:25:40:35:57:68:61:0d:30:
7d:09:d2:d4:9a:ff:37:7f:ab:7c:41:fa:de:09:e3:
65:0a:57:2b:93:e8:e8:fd:b2:a0:b3:77:33:e7:24:
19:11:c4:63:c4:bb:b3:de:db:bc:bd:81:7b:61:dc:
68:28:1e:c1:8e:00:b4:e6:55:af:34:6b:7d:6b:06:
9c:99:ab:84:c5:94:cf:e0:e4:51:2f:02:cf:30:d0:
af:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:66:A1:C4:0C:85:EC:48:CF:34:8E:B0:98:92:0A:BA:29:0D:03:47
X509v3 Authority Key Identifier:
keyid:8B:27:48:3D:C1:6C:31:8E:5A:FF:F8:32:29:30:C8:17:FD:19:2C:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iydIPcFsMY5a__gyKTDIF_0ZLJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/559e8c-3825-493d-a8c7-fb893e3908d2/1/iydIPcFsMY5a__gyKTDIF_0ZLJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:d1:ba:bd:0d:9b:84:18:b4:a0:37:2d:a6:1f:92:42:80:ae:
df:d1:a7:86:99:24:26:4b:a2:c0:15:52:35:88:86:fa:21:b0:
bc:a2:d6:bf:27:d0:5e:c6:7d:72:30:c4:28:03:41:82:c3:b2:
ed:1a:1e:52:87:0b:8b:59:d2:94:3b:45:29:24:32:48:a8:8b:
e1:57:c5:ce:e5:94:bf:12:07:ff:8b:42:5e:de:f2:c5:1c:05:
e3:87:15:49:d3:c4:40:4b:f5:31:5e:d2:62:b0:d7:df:bd:40:
bb:2a:e6:8f:a9:67:6d:58:7f:b2:c3:27:4f:e4:e1:b6:49:37:
d4:f4:89:e4:50:1e:70:c9:79:d1:e7:f4:d7:63:65:05:b7:6b:
ab:f6:43:cb:12:d4:16:b3:77:b3:ca:24:ba:12:9b:2c:7d:09:
51:17:7b:d5:58:28:d9:cb:26:d7:fa:7c:26:f8:20:42:e3:ab:
dd:11:00:25:46:78:0a:a5:ad:07:0a:e1:bf:6d:79:ee:a5:d3:
b7:00:30:66:d3:06:1b:d8:5a:5a:b7:bb:b1:23:5c:3a:42:7b:
2e:be:9f:a6:2c:ef:f0:69:94:76:c8:cf:f1:01:97:00:f2:b4:
ee:96:71:05:34:da:a8:fd:9b:0c:71:c7:f1:38:a5:1e:58:2f:
25:08:9f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:14:30 2025 by rpki-client