Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
File: 20IFnOKR1Jpmkgcxx2faVj7yESQ.mft (raw, json)
Hash identifier: GeyuC/JoOfv0SA7sbS1/26NxPHcEqwv8wz1/rDebaac=
Subject key identifier: 30:C8:CB:B9:D8:67:28:29:A3:81:72:B9:65:3E:A0:22:E9:C4:B2:47
Authority key identifier: DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
Certificate issuer: /CN=db42059ce291d49a66920731c767da563ef21124
Certificate serial: 01988D6ACEB554C85C2EF84E4AED3EC7EA31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
Manifest number: 0920
Signing time: Sat 09 Aug 2025 06:00:43 +0000
Manifest this update: Sat 09 Aug 2025 06:00:43 +0000
Manifest next update: Sun 10 Aug 2025 06:00:43 +0000
Files and hashes: 1: 20IFnOKR1Jpmkgcxx2faVj7yESQ.crl (hash: QT8xiFg9qoKg6akiA8AEIyPU5HS/6n20jpphB6+WgDA=)
2: 4Eso2GRh3TFlocCc5lcI1-kD4Pk.roa (hash: ZZWcQEmA2vmSeltVrHKBZfPJ+X7E/tLB/wKbTZ0f8BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:6a:ce:b5:54:c8:5c:2e:f8:4e:4a:ed:3e:c7:ea:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db42059ce291d49a66920731c767da563ef21124
Validity
Not Before: Aug 9 06:00:43 2025 GMT
Not After : Aug 10 06:00:43 2025 GMT
Subject: CN=30c8cbb9d8672829a38172b9653ea022e9c4b247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cc:33:fc:27:3b:98:b3:19:55:8d:2f:4f:c0:
1d:68:52:b1:30:7d:f1:50:f1:76:1f:f5:c7:31:62:
4e:d3:a0:36:9f:bc:50:97:10:63:56:f1:51:7f:23:
0f:8b:d9:74:c6:0c:62:fc:88:a7:d0:a5:ea:19:9d:
b6:66:37:bc:51:77:7d:2e:a8:0f:9b:71:45:c2:d8:
0d:4d:39:c9:f9:78:5f:76:74:89:15:91:7c:e0:79:
f0:83:3a:07:9b:80:4c:95:5e:b8:b7:be:0f:b7:72:
e1:ea:9c:8e:5e:f9:61:22:3e:87:4f:50:33:a4:c2:
5c:fe:9e:c7:09:a3:75:b0:ce:43:81:8d:01:4c:4c:
33:1a:ed:9a:e9:79:57:71:f6:97:1d:cc:fc:1d:1f:
e8:d6:e1:40:c6:08:5a:14:f5:bd:2e:f2:27:27:25:
d8:32:22:af:ca:e8:80:08:5b:20:98:17:58:e5:e1:
a6:49:68:c1:43:68:05:47:27:26:c2:72:e5:f1:42:
9d:a5:f0:75:60:e3:7f:1c:ac:91:19:f6:84:e2:e1:
9c:42:61:d9:36:33:e9:d0:25:08:d3:cb:21:6f:41:
58:6e:79:87:a4:b5:4a:4b:2f:a9:3b:86:5f:13:20:
4d:6e:b5:59:f1:fe:08:71:15:38:14:e0:2d:4a:12:
44:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C8:CB:B9:D8:67:28:29:A3:81:72:B9:65:3E:A0:22:E9:C4:B2:47
X509v3 Authority Key Identifier:
keyid:DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:95:91:6d:39:1d:ee:35:80:73:80:45:7f:03:e0:01:59:49:
a1:b8:b7:bc:e0:de:a1:9b:51:c9:2e:b0:14:7e:ea:ed:a5:01:
8e:c0:4c:07:6b:5a:c0:a7:32:a8:9e:2a:ff:c1:dd:04:1f:0c:
f9:dc:d3:53:6f:39:37:70:e5:62:11:74:24:b3:75:41:79:de:
00:9c:34:53:87:5e:bf:f5:e7:4b:44:99:e6:db:f8:f4:43:50:
cf:27:9f:2e:a6:40:91:0b:89:ce:7e:41:cd:c5:76:1d:76:67:
6d:7c:16:19:ac:5a:61:0d:68:17:70:aa:87:42:9b:3f:90:51:
e5:63:61:46:11:4a:ac:cf:eb:ae:e8:03:8f:5c:d8:79:56:3c:
94:2b:e9:ad:ac:8b:15:82:1f:ee:22:1f:86:5c:1a:18:eb:e2:
80:ed:91:90:46:ba:6a:6f:5e:86:b2:d7:75:8e:38:92:01:08:
11:4b:67:be:9e:a7:0a:e9:63:8e:99:4c:f7:a1:a7:79:42:34:
ee:a9:fd:a1:94:97:89:86:02:26:87:ec:e3:40:bc:c9:38:ce:
f9:86:8f:5b:73:35:e3:00:e6:11:22:a1:71:8e:c2:31:3d:99:
98:0e:f2:03:3b:86:5e:45:d7:bd:f9:93:73:4a:36:76:0c:39:
36:52:4d:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:49:47 2025 by rpki-client