Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: 1NI1horDpsziZ3S33qzUXu/P3bpb1WQRvTueN5Qy/E0=
Subject key identifier: 2E:C8:AF:89:D4:32:B5:8C:10:9A:0A:01:B0:EF:36:0F:64:0A:42:4B
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 019890DB80CD656CCE07AC45AAA6415917CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 1627
Signing time: Sat 09 Aug 2025 22:02:41 +0000
Manifest this update: Sat 09 Aug 2025 22:02:41 +0000
Manifest next update: Sun 10 Aug 2025 22:02:41 +0000
Files and hashes: 1: gl5jVkYAoBFN7cdrLnkDFxT9xzs.roa (hash: DKhlihYjJGtiikGfA1O1zHxswQCNAc4gtqIYH1Qddqc=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: 6274xSRksbcZbhMXcKEIlRXGZsPAKBv/AX4D7nvnMEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:90:db:80:cd:65:6c:ce:07:ac:45:aa:a6:41:59:17:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: Aug 9 22:02:41 2025 GMT
Not After : Aug 10 22:02:41 2025 GMT
Subject: CN=2ec8af89d432b58c109a0a01b0ef360f640a424b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:06:c1:e4:53:98:08:78:78:b4:55:ee:0a:d2:
8d:ba:88:38:9c:79:1c:c8:7f:a6:b6:86:bd:b8:e6:
09:f6:6d:f8:67:98:10:9b:12:91:34:a9:c0:90:9f:
59:92:20:df:53:05:ac:49:50:6a:67:7f:41:1f:5b:
55:96:84:36:fa:d4:51:33:90:7e:d6:a4:3a:c3:6d:
9b:1e:23:0f:4f:29:bb:7e:21:d1:76:76:c1:94:ab:
43:96:9f:eb:c0:0c:52:0c:11:86:73:f1:85:af:48:
a9:4e:71:5b:f8:cd:46:c9:97:d2:ff:f1:b1:84:63:
ed:36:cb:52:0d:15:b9:0e:30:d1:5d:5f:0c:bd:46:
81:36:dd:fa:8e:84:a7:db:ac:ed:4e:59:f5:37:46:
9f:02:2b:a3:d7:87:d5:05:fe:52:e9:0a:c8:85:3a:
ae:c9:c8:5b:6e:76:f5:20:b6:9e:37:db:ba:2e:74:
5b:88:0a:16:f6:34:ca:30:30:1f:2b:4d:03:48:fd:
77:fb:a9:1b:d1:9f:d8:3d:a1:96:df:96:4e:0f:b5:
b8:f6:90:57:86:21:90:98:9f:79:8d:dd:be:3d:85:
65:f9:c5:2c:6a:d6:38:8a:9b:c0:f8:1c:f6:7e:f8:
da:62:ec:77:34:2a:83:e7:2c:2e:90:00:8e:6c:4c:
d5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C8:AF:89:D4:32:B5:8C:10:9A:0A:01:B0:EF:36:0F:64:0A:42:4B
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:06:46:df:0d:12:e6:69:ca:0a:22:9f:76:fe:18:dd:19:56:
a9:9d:84:95:94:40:f3:8b:94:79:db:7f:5a:a1:bc:3e:8b:d2:
75:a2:53:6a:19:b0:fd:ea:4f:2f:57:1d:fb:89:60:04:34:0f:
d0:15:3a:55:1d:1d:36:b6:34:cd:89:f4:9a:1c:cf:b2:9d:f0:
17:10:e8:9e:e7:6a:b9:bc:dd:d2:b6:66:21:b1:fa:40:2a:72:
be:63:32:d5:08:14:f9:23:80:f7:46:f2:2c:92:7a:46:33:1e:
ac:f0:9b:11:f5:60:30:22:0f:a5:7f:0c:f7:4d:ef:2b:cc:2e:
09:50:38:c5:6d:13:6f:da:06:63:a2:26:03:56:50:2f:ea:d9:
cb:93:15:29:49:2c:29:f3:6e:45:70:51:89:19:98:94:52:64:
d1:a4:06:59:6f:76:b2:1e:c3:79:11:82:29:13:5e:21:93:9d:
7a:c5:ba:1d:b3:d4:75:17:94:e4:9a:9a:61:c7:ed:a9:32:8c:
3a:3f:25:51:3a:c5:f6:3f:f1:ad:74:5f:f8:32:c0:41:42:3f:
fa:b9:63:00:cc:f1:c6:e8:bf:b2:68:62:e2:65:66:4d:56:44:
1b:7f:f3:ff:67:5a:e0:a0:2f:ef:c0:e5:c1:12:76:fe:19:e7:
a1:1c:20:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:16:50 2025 by rpki-client