Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
File: iqrwV67ry_cGh34qqnSjljgL4hU.mft (raw, json)
Hash identifier: KcQmQBkSYuUWqhFPbDekE8u8AIXNQPmFiyYjeneixeQ=
Subject key identifier: F5:F7:45:51:D3:7D:2B:78:52:2D:AE:F3:51:03:5E:0F:C2:01:87:B7
Authority key identifier: 8A:AA:F0:57:AE:EB:CB:F7:06:87:7E:2A:AA:74:A3:96:38:0B:E2:15
Certificate issuer: /CN=8aaaf057aeebcbf706877e2aaa74a396380be215
Certificate serial: 01989749A9FF8D7DE124BFE6451E34CD3425
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
Manifest number: 03BB
Signing time: Mon 11 Aug 2025 04:00:43 +0000
Manifest this update: Mon 11 Aug 2025 04:00:43 +0000
Manifest next update: Tue 12 Aug 2025 04:00:43 +0000
Files and hashes: 1: iqrwV67ry_cGh34qqnSjljgL4hU.crl (hash: lURG1gg1Xlvy2A+TIz+Nj7gZTIw96DVwmjRL+d//0wI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:49:a9:ff:8d:7d:e1:24:bf:e6:45:1e:34:cd:34:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aaaf057aeebcbf706877e2aaa74a396380be215
Validity
Not Before: Aug 11 04:00:43 2025 GMT
Not After : Aug 12 04:00:43 2025 GMT
Subject: CN=f5f74551d37d2b78522daef351035e0fc20187b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b2:7c:b6:39:d1:4b:7c:59:f9:e8:6f:13:3c:
7b:6c:e3:4f:5d:df:c9:2c:ed:34:a0:a1:e3:21:b5:
12:55:2f:a4:8d:b0:5a:65:12:32:11:6e:fa:8a:2c:
ce:08:28:74:f4:0f:91:bf:c3:41:a5:27:38:ed:e8:
7d:d8:8c:bd:34:37:d2:2c:b7:82:fb:47:3f:b3:6d:
7f:28:cf:c6:a8:99:72:c6:7c:ed:e0:ff:85:c5:e9:
35:7a:76:74:5c:8a:67:3d:e2:28:f6:e0:b4:a5:04:
1c:38:98:be:81:32:0c:ac:f7:68:99:f3:2f:86:43:
db:8e:34:77:21:7d:1c:c2:eb:16:d5:22:a4:73:5c:
39:e4:3f:b3:58:45:1a:cf:d6:3c:a7:c9:b8:e8:ff:
a8:98:7a:b0:0a:0f:df:c7:e8:8d:20:c3:95:c3:be:
a6:71:20:dd:77:fa:20:50:a7:89:78:24:d8:62:01:
46:57:2c:6f:16:06:94:b7:1f:f8:a5:7f:0e:37:4e:
25:f8:4c:03:e2:49:d9:31:1f:95:16:2f:b2:86:b1:
df:46:fa:dd:07:1f:52:a8:56:9e:a5:be:4e:46:57:
06:63:25:59:1c:60:cd:60:4e:92:74:b5:4e:cf:9c:
f8:08:e6:96:92:9e:e6:f0:6a:cd:f9:d2:6c:ea:15:
cf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F7:45:51:D3:7D:2B:78:52:2D:AE:F3:51:03:5E:0F:C2:01:87:B7
X509v3 Authority Key Identifier:
keyid:8A:AA:F0:57:AE:EB:CB:F7:06:87:7E:2A:AA:74:A3:96:38:0B:E2:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:2d:5b:6a:8a:26:28:a3:1b:b5:a3:0b:11:f0:07:76:39:f7:
15:d0:f9:a1:d4:78:61:00:80:de:5d:f9:20:5b:62:ec:c6:b3:
f1:85:dd:d1:15:02:ce:34:81:90:30:a1:d4:4b:c5:a0:8c:2d:
17:5e:ba:5e:93:ac:3b:4a:b1:49:a9:bf:87:a7:2d:58:72:2d:
e0:60:ff:ff:d1:39:1d:b7:fe:e1:a6:a5:69:21:a8:60:56:c0:
be:32:28:65:29:06:2a:63:02:63:09:78:63:45:df:1f:b2:b5:
93:72:fe:c7:f1:c9:8d:67:eb:e0:97:fd:1f:94:00:a9:98:b0:
7a:3d:36:58:64:61:67:88:cd:9d:ed:a8:d1:e7:b0:fb:76:20:
e9:b4:a7:19:7f:81:d4:99:81:60:57:4b:75:04:d3:bc:26:ec:
ea:a4:d8:3b:27:c7:d8:4a:6b:ea:90:df:5a:21:84:a3:68:23:
9b:be:dc:b7:b4:07:75:42:bb:00:4b:91:da:e2:4e:23:d6:b9:
47:6d:68:fc:9a:2e:23:48:11:39:4e:0a:ef:17:f2:e7:d3:fe:
f4:bb:da:c9:cb:f0:8f:45:d5:54:5c:85:58:ef:63:f5:52:9b:
90:fd:79:0a:ca:a2:d0:de:a1:d7:fa:66:21:af:ae:66:b6:f9:
c4:64:d5:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:31:19 2025 by rpki-client