Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
File: IHeZAnMp8iaCdkVzryEV2pWp9r8.mft (raw, json)
Hash identifier: 2g8f7fsV0imZLJcLOdld0y6+I6pkLQ6jmLA9+6f/ORg=
Subject key identifier: 51:FD:6F:09:36:59:90:C5:E4:8B:71:45:83:52:29:2B:D3:07:96:DD
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 01988B0FDFFA042918BFB391266448DB7510
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
Manifest number: 0F22
Signing time: Fri 08 Aug 2025 19:02:10 +0000
Manifest this update: Fri 08 Aug 2025 19:02:10 +0000
Manifest next update: Sat 09 Aug 2025 19:02:10 +0000
Files and hashes: 1: 8EaewYTyFly5jEaj4gZEqMNcVMk.roa (hash: gqxj+841N8d9uy4L59oEcZudU4ge+IzVBr1jzF4wgjc=)
2: IHeZAnMp8iaCdkVzryEV2pWp9r8.crl (hash: qpIO2jDscwwpweorqVoU0NAYEL4DTl4zBRmk73uh8/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:df:fa:04:29:18:bf:b3:91:26:64:48:db:75:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Aug 8 19:02:10 2025 GMT
Not After : Aug 9 19:02:10 2025 GMT
Subject: CN=51fd6f09365990c5e48b71458352292bd30796dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a8:87:fa:a4:2a:13:95:70:16:af:31:60:26:
7a:60:da:4d:ad:8d:e0:f3:0f:72:b6:57:24:64:aa:
52:ee:35:39:f5:dc:78:ae:9e:87:d6:ae:e0:64:27:
d6:c3:09:e9:12:92:5e:37:8d:78:14:8e:0c:81:98:
f9:3b:2b:79:90:b1:2f:46:49:46:a1:57:79:e5:54:
7d:d4:0d:d9:81:6f:51:f4:3d:9b:7f:40:27:1b:91:
71:01:18:b3:bb:d7:9b:23:00:e2:a1:6a:7f:cd:c7:
b8:cd:c6:9e:55:6a:3e:c3:f7:24:68:cb:5c:9f:d1:
b2:0f:f6:f2:d0:c9:16:f9:49:18:d6:7c:47:ab:0d:
01:a5:aa:42:12:08:c0:31:42:95:57:14:5e:af:76:
b1:c5:e4:f0:a9:19:5a:fc:a5:ae:37:0a:ae:b3:d2:
d5:8c:6f:40:5d:43:cb:a4:4a:f6:dc:73:c3:a5:e2:
a1:6b:e5:2e:9d:c3:36:57:96:69:96:96:ef:7b:26:
89:97:9c:76:a7:3c:4f:41:a3:b5:e6:2c:86:f9:86:
e7:51:9c:e6:b7:9c:72:69:e0:90:61:45:72:45:32:
50:3d:a2:7c:3d:8c:42:c7:1c:51:a1:89:ee:89:e3:
a8:58:ef:ec:c9:c5:6c:69:14:15:cb:ce:84:97:2b:
3f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:FD:6F:09:36:59:90:C5:E4:8B:71:45:83:52:29:2B:D3:07:96:DD
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:fa:aa:ea:1d:87:20:34:cd:f7:e2:1e:85:92:b2:4c:2f:6d:
e2:a3:64:e2:d3:ca:39:a5:b6:99:20:18:01:0b:03:c7:00:d1:
89:46:b2:d6:6e:74:66:36:07:6b:1e:b8:15:7a:2a:f1:da:b2:
5a:74:33:67:e7:96:58:9b:c7:56:57:54:d5:ea:4a:a9:3e:7b:
f4:b7:76:01:dd:57:7c:0d:be:e2:7f:89:90:99:ee:87:57:be:
91:d9:f2:52:e0:54:49:8b:14:aa:f7:ea:07:83:d2:63:72:a8:
a2:b8:95:a9:d9:7e:af:c9:8e:08:1a:00:f0:6c:96:53:20:86:
ad:bb:58:47:47:ff:bc:7e:b0:c8:47:b3:e9:96:0e:45:db:44:
b8:0c:9a:c9:42:f8:8c:53:03:9c:3b:6b:f5:04:a0:27:20:9b:
5d:43:c8:e7:93:e3:79:0d:bf:be:46:b3:97:46:f2:e6:05:be:
9d:f1:6f:b1:ef:8f:fd:89:ce:fd:16:eb:e8:8d:fa:e0:39:96:
d0:89:39:06:8f:08:b7:fc:6b:c1:b0:b1:c6:83:68:83:bf:df:
4b:d5:6e:40:22:f1:9e:93:9d:00:c8:81:01:e9:ce:19:46:fd:
51:11:df:98:2d:25:ae:41:c4:28:1e:e5:f4:c5:96:0d:47:82:
80:6d:4e:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:49 2025 by rpki-client