Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json)
Hash identifier: M/vXEdhoKflsJ9HDxABbYorAs/298Pit/+eolng3ZZ4=
Subject key identifier: CD:2F:58:09:E6:8E:9C:DF:29:EA:56:76:42:91:41:15:ED:29:AA:53
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial: 01989F03131F01D7632B638D76CEFB7D411E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
Manifest number: 0D76
Signing time: Tue 12 Aug 2025 16:00:35 +0000
Manifest this update: Tue 12 Aug 2025 16:00:35 +0000
Manifest next update: Wed 13 Aug 2025 16:00:35 +0000
Files and hashes: 1: CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa (hash: xkyChTjHPfmap3pEfIzmPahUIANDsQxEAOedvER2SvU=)
2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: VyB9V+flV2IGKWzpI6VqSPbXqQ/IUgiISWAqheYYKOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:03:13:1f:01:d7:63:2b:63:8d:76:ce:fb:7d:41:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b8801543812040477d4744229466c8537d45171
Validity
Not Before: Aug 12 16:00:35 2025 GMT
Not After : Aug 13 16:00:35 2025 GMT
Subject: CN=cd2f5809e68e9cdf29ea567642914115ed29aa53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f2:1e:fb:11:48:24:79:ec:03:08:c8:9f:74:
a3:7e:79:69:e4:fa:44:32:51:e6:cc:d5:94:08:0b:
c4:b0:39:91:17:35:9d:ba:89:e0:05:b9:0d:c6:13:
4e:c9:73:09:f3:8c:f6:6d:e6:f6:4a:4b:da:7d:14:
7f:0d:d3:03:22:bf:df:ea:54:c1:ae:72:78:40:48:
32:25:4c:9e:a3:50:31:2e:fd:7e:1f:b6:71:ae:ef:
5c:ca:56:5e:af:c1:b3:d0:b4:af:27:08:33:77:5b:
d9:bb:8f:08:74:40:f4:85:d0:06:eb:70:0e:ea:69:
dd:70:f3:38:46:9e:a8:b3:99:bc:3a:7c:bc:63:53:
a8:3e:0d:fc:95:48:e0:fe:9d:9e:58:3b:29:f8:68:
6e:02:73:de:4c:d3:c6:6b:9a:56:77:3b:19:d2:74:
8d:eb:1b:e7:7a:94:3b:c4:16:11:db:5b:40:5f:c7:
7c:e5:c5:33:cb:89:88:ba:71:1e:de:e3:cc:ab:a8:
be:7e:4a:57:10:da:dc:30:6c:fc:07:27:58:77:12:
cd:0b:fc:c1:eb:fe:97:99:71:e5:67:89:df:1a:4a:
67:6c:09:2f:1d:bd:f7:a8:48:78:f1:b8:c8:92:dd:
4a:43:3c:ab:b0:a8:1c:6b:59:df:5c:c4:5f:58:68:
4f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2F:58:09:E6:8E:9C:DF:29:EA:56:76:42:91:41:15:ED:29:AA:53
X509v3 Authority Key Identifier:
keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:17:d3:ff:3c:90:b6:79:4b:85:3f:f7:32:92:d0:04:cd:f2:
47:0a:78:61:46:1c:bf:a1:d0:e7:99:f9:33:ff:97:28:27:86:
53:3d:67:03:02:34:83:c7:f3:a6:45:d2:68:8c:f0:a8:79:45:
b4:27:db:c5:2a:d2:21:81:21:32:c6:50:a4:f8:01:21:43:e2:
4c:47:83:8a:e7:53:1a:d4:55:7b:d1:c7:a5:c1:e7:84:76:e1:
fe:d0:3f:13:7b:bc:e1:c3:26:88:d2:39:f2:84:ce:3b:1b:93:
6c:ff:d8:7d:c7:c1:c2:ab:a0:84:e2:66:24:f6:e1:5c:f4:1e:
8f:1c:ae:ff:ff:3b:bf:53:3f:92:25:40:e9:4f:dd:df:a6:9f:
ef:29:4c:ff:38:6a:76:dc:4f:96:58:80:97:37:79:c8:8c:db:
7f:40:5f:e1:cd:20:ad:da:e3:b0:88:98:70:94:5e:cf:8c:e1:
e0:ab:d8:36:50:5b:3a:ce:e3:5e:00:09:42:18:cc:1d:84:8e:
52:53:e9:3b:00:6c:0f:fe:5c:1b:61:5d:2d:0e:8f:83:42:9e:
29:a5:b5:90:78:f3:86:32:9e:02:9c:c4:89:a7:05:c2:a0:d6:
b5:12:34:53:dd:be:cf:aa:91:87:d6:85:62:ff:cf:94:e0:10:
ef:29:bd:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:42:02 2025 by rpki-client