Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
File: iQCNpBkicovFvtu9cIhwHFKbme0.mft (raw, json)
Hash identifier: /owQcLhshaZyfQrLIVPmYN5k2NAkJIuHpRZxBZkBxLY=
Subject key identifier: 48:46:5F:4A:E4:FA:78:BD:CC:0A:49:46:90:CA:36:82:41:31:84:8C
Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed
Certificate serial: 01987B9B53C4578B96F4D508FC806A3D4075
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
Manifest number: 01BE
Signing time: Tue 05 Aug 2025 19:00:33 +0000
Manifest this update: Tue 05 Aug 2025 19:00:33 +0000
Manifest next update: Wed 06 Aug 2025 19:00:33 +0000
Files and hashes: 1: 9WCM-NfBtEzVC0bLgcXxGw_dKs0.roa (hash: +AotBLTXOYZ2qqQz68W39gfX7TdnqXgGz673AR3fS9c=)
2: iQCNpBkicovFvtu9cIhwHFKbme0.crl (hash: VXWTvVQXAy5gUL1LIdo0p8SbeoY6XchBQaaNtAYiB20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:9b:53:c4:57:8b:96:f4:d5:08:fc:80:6a:3d:40:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed
Validity
Not Before: Aug 5 19:00:33 2025 GMT
Not After : Aug 6 19:00:33 2025 GMT
Subject: CN=48465f4ae4fa78bdcc0a494690ca36824131848c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:40:be:70:a0:be:77:4a:34:25:ff:ed:5d:2d:
50:18:57:81:ab:6c:50:1c:a5:01:2c:3e:b8:e9:72:
5c:a1:44:66:c6:c1:b5:8d:fd:30:cd:f7:a0:da:5b:
24:5a:b8:bb:34:bc:38:8e:8b:fd:3f:27:1e:c8:96:
03:65:40:12:c8:c4:49:ce:f9:d0:41:1d:a6:fe:ce:
87:04:20:7b:8d:ed:b4:b6:6b:e0:c1:fd:4c:32:8a:
b1:a8:2b:e6:ad:de:60:9e:52:60:ea:d8:49:2a:a0:
5d:03:f5:47:2c:03:31:e9:4f:9b:05:38:28:aa:77:
64:e1:b1:39:86:ef:36:a7:8f:3b:a1:de:d1:45:39:
56:76:25:6b:99:9a:10:ac:f8:d2:8d:0e:3c:bf:24:
df:52:0f:2c:e3:a8:fb:c8:c8:36:de:00:89:5a:88:
29:d7:b7:f2:7b:74:44:2a:ea:f1:93:f9:77:4a:79:
0a:d5:d1:c3:16:0b:4f:ab:29:78:e2:0f:25:e1:b0:
07:ac:78:7e:5e:85:af:48:64:04:1a:0c:7e:35:4f:
60:8b:da:c3:af:b1:4c:eb:49:95:8e:74:61:59:1d:
a9:66:d7:5d:d4:f4:4c:a2:4b:57:07:8c:70:dc:3e:
2f:ac:50:f6:c0:44:32:61:82:b2:1b:1c:0e:5d:8b:
31:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:46:5F:4A:E4:FA:78:BD:CC:0A:49:46:90:CA:36:82:41:31:84:8C
X509v3 Authority Key Identifier:
keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:f6:95:d4:24:f6:5e:8d:57:32:64:da:21:ce:89:6d:78:cd:
0f:6b:ca:57:51:98:6a:25:78:2e:ec:43:10:1e:10:98:0e:e0:
4b:06:d8:50:47:b0:f2:56:c4:6a:c4:91:6f:d7:e8:96:82:dc:
e8:99:d5:67:99:0b:3e:d2:22:48:7b:b0:4f:3d:16:6f:00:e2:
6a:89:1b:2e:eb:42:c7:1d:98:68:62:29:52:65:12:b4:2a:a7:
4e:f5:55:d2:c7:13:9f:cd:8e:59:90:93:30:e7:e9:cc:91:c3:
46:46:4f:d5:23:58:ba:f1:f7:5a:12:9c:41:5d:5d:24:a6:c0:
40:b1:fd:9e:2d:9d:7a:99:d0:5e:ad:45:d8:f4:3b:3b:94:b2:
92:17:1d:0a:dc:ae:f5:cb:00:3d:9f:f8:53:5d:99:fc:e2:79:
4e:48:04:b7:86:30:ea:d9:f5:d5:e0:bc:01:92:fc:0a:57:7a:
a8:19:b5:57:dd:42:6f:b0:d5:b6:8a:03:72:02:d5:06:71:df:
26:14:6b:88:f3:33:d9:bc:ba:8d:d8:33:1e:c1:6c:50:0a:61:
5f:99:04:61:bc:53:2a:9f:87:97:11:75:41:8a:44:20:e0:e1:
92:02:9c:f1:0a:08:62:0d:e9:6e:18:57:71:25:c1:8a:f5:09:
0e:49:c4:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:49:01 2025 by rpki-client