Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
File: x02iHagDioIFQrOvr76qqmZreyc.mft (raw, json)
Hash identifier: 8wy8nCr5Y41tj++Gp9ZrAd99r21po+7ZyHZeEwlOybM=
Subject key identifier: 97:37:1E:E5:11:C4:6C:3D:06:28:13:6B:C1:F7:3B:CF:A6:88:7F:59
Authority key identifier: C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
Certificate issuer: /CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Certificate serial: 0198861FD7D29A9D096861B016CF4F3AF758
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
Manifest number: 15B4
Signing time: Thu 07 Aug 2025 20:01:30 +0000
Manifest this update: Thu 07 Aug 2025 20:01:30 +0000
Manifest next update: Fri 08 Aug 2025 20:01:30 +0000
Files and hashes: 1: 2t0GWwoe7mmFS83bQQPX5JNcD34.roa (hash: hxRzouLeq4ys7uUoj+7mRAVC8MeKAFWBUYqAcz4n5d0=)
2: x02iHagDioIFQrOvr76qqmZreyc.crl (hash: RJu7R7S5tRGOC0pAycU1IxFOzs8ROM3zuWRTQIP2c3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:86:1f:d7:d2:9a:9d:09:68:61:b0:16:cf:4f:3a:f7:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74da21da8038a820542b3afafbeaaaa666b7b27
Validity
Not Before: Aug 7 20:01:30 2025 GMT
Not After : Aug 8 20:01:30 2025 GMT
Subject: CN=97371ee511c46c3d0628136bc1f73bcfa6887f59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c5:d4:7e:ee:44:44:26:0c:77:7e:19:69:05:
e8:a5:b2:7a:9d:61:2f:03:93:13:cb:ba:89:64:68:
37:05:8e:9c:d3:97:3f:ad:b9:48:70:07:e8:bc:ec:
7a:b3:53:9d:d2:39:a5:d3:e7:53:43:65:9b:cb:a7:
bc:16:33:df:e9:42:4a:64:9a:f0:c6:1a:62:26:01:
29:10:db:74:ce:8f:58:ff:76:83:c1:da:f5:3f:0a:
34:18:43:6b:08:3b:e7:39:a9:ae:ed:ba:84:6d:82:
89:30:12:b7:e8:87:02:d7:56:fe:cd:18:e6:df:0c:
0e:cf:24:ac:90:96:3d:4d:1c:60:32:7a:2c:a9:46:
b6:2e:e4:52:6b:df:96:cb:a2:c2:64:f3:0b:d4:9a:
6e:10:9b:c9:a0:0f:a4:09:42:d3:7d:72:1a:83:54:
29:e0:a1:3a:55:1e:52:06:d9:ae:0c:0b:ec:c8:e0:
4d:6f:dc:76:23:ef:88:39:e3:15:1c:96:00:c3:f8:
96:09:06:d0:9a:22:02:fa:31:19:10:3a:36:16:b1:
4c:2e:2e:88:f3:be:35:5d:00:16:67:0f:56:08:4e:
d9:da:b6:01:e6:28:95:e0:af:cc:e6:38:db:16:16:
71:e6:ed:e6:b1:15:0d:53:2a:bc:7b:ef:66:05:ba:
3d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:37:1E:E5:11:C4:6C:3D:06:28:13:6B:C1:F7:3B:CF:A6:88:7F:59
X509v3 Authority Key Identifier:
keyid:C7:4D:A2:1D:A8:03:8A:82:05:42:B3:AF:AF:BE:AA:AA:66:6B:7B:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x02iHagDioIFQrOvr76qqmZreyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/4f8444-2c3d-4592-9458-801d89d7366d/1/x02iHagDioIFQrOvr76qqmZreyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:56:d6:80:8a:7f:43:a9:48:79:c7:46:2d:58:2f:40:06:16:
ba:95:58:85:ea:9b:ef:86:d6:c0:3e:7e:e1:c0:1f:39:d7:74:
76:c8:a9:c8:0c:93:54:33:c9:1f:94:d2:39:95:fa:79:93:f7:
e8:e2:2b:3c:cb:0b:cb:cc:a2:03:ee:f9:ec:85:c8:07:40:64:
ec:3d:8a:42:fb:b6:33:0b:35:87:6a:7e:69:40:0d:78:4b:d5:
50:f2:07:73:0b:6e:7c:d4:34:7e:7d:73:48:42:f7:65:0a:a7:
8e:10:30:30:74:2d:93:41:dd:28:96:76:57:2c:8d:eb:cd:d2:
da:37:ab:f9:97:b4:11:89:7a:25:6f:64:a0:11:e4:55:77:6e:
66:93:5e:b5:5b:59:45:d2:f9:c2:fd:bd:88:b7:80:e2:17:7c:
f3:f5:7c:1e:4d:c5:29:e0:54:30:82:77:3d:c4:23:33:67:8b:
90:e9:f5:f0:9a:d0:33:9c:ec:35:f4:bf:07:1c:6e:11:9f:40:
1f:dd:b2:2b:33:f6:0a:30:c7:76:83:f3:e4:06:3d:87:e6:32:
66:ee:89:44:1e:1d:7c:03:a3:8f:60:58:04:43:61:e6:de:76:
b0:59:69:31:7a:33:37:88:4d:32:32:07:5e:8b:e9:79:0f:10:
3a:4b:48:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:11:32 2025 by rpki-client