Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.mft
File: iYDaJ6VQ15vmUa15rnGcz8vFo28.mft (raw, json)
Hash identifier: 89Qew6P1GElUSaBGNhTMzgk8a/3VuQByFErCQytQ8ic=
Subject key identifier: FD:4F:58:5B:49:FB:6F:82:7B:BF:2C:BF:75:79:14:BA:DC:24:2D:76
Authority key identifier: 89:80:DA:27:A5:50:D7:9B:E6:51:AD:79:AE:71:9C:CF:CB:C5:A3:6F
Certificate issuer: /CN=8980da27a550d79be651ad79ae719ccfcbc5a36f
Certificate serial: 01988D6B5E809E3674BD09B305690FFA158C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYDaJ6VQ15vmUa15rnGcz8vFo28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.mft
Manifest number: 038E
Signing time: Sat 09 Aug 2025 06:01:20 +0000
Manifest this update: Sat 09 Aug 2025 06:01:20 +0000
Manifest next update: Sun 10 Aug 2025 06:01:20 +0000
Files and hashes: 1: iYDaJ6VQ15vmUa15rnGcz8vFo28.crl (hash: EZG3kMsB12ahCjxeQZ45lsbmr8AqhZ+oXWutJukhVrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.mft
rsync://rpki.ripe.net/repository/DEFAULT/iYDaJ6VQ15vmUa15rnGcz8vFo28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:6b:5e:80:9e:36:74:bd:09:b3:05:69:0f:fa:15:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8980da27a550d79be651ad79ae719ccfcbc5a36f
Validity
Not Before: Aug 9 06:01:20 2025 GMT
Not After : Aug 10 06:01:20 2025 GMT
Subject: CN=fd4f585b49fb6f827bbf2cbf757914badc242d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2c:ae:f3:bf:5f:1f:fd:67:28:b2:87:da:3b:
4a:85:7f:47:9a:21:8b:1b:9a:74:dd:84:68:5f:a0:
a6:26:4c:60:67:f2:3f:7e:57:00:6e:56:33:f8:27:
33:5f:62:d1:52:4d:67:61:27:8b:4b:40:8d:1b:08:
ce:65:6f:5d:76:66:48:de:74:42:bc:a7:57:f1:aa:
8e:84:42:aa:aa:fd:ca:c5:3f:7d:19:9a:b2:eb:7d:
73:53:88:42:94:e7:6a:31:56:37:b4:1c:fd:1c:45:
97:1e:1a:ce:97:a6:2a:6a:f3:42:4e:37:fb:b4:94:
55:61:b5:f9:41:2e:a8:5d:d8:9f:dc:9f:3d:a4:b1:
e7:70:f5:01:0f:ac:7c:b2:18:46:05:2d:9a:69:95:
82:6b:20:02:a5:c3:fc:6f:ea:d0:4a:25:59:83:03:
d9:f0:a5:cf:31:76:a8:98:96:42:62:e6:cf:ef:3a:
ca:05:d5:a9:50:19:21:18:f3:7e:5f:4c:0b:13:db:
c6:9b:72:9d:a0:7b:4b:e6:f3:41:3c:15:3a:2d:58:
0f:ad:04:19:49:d9:51:4f:68:c9:eb:f6:ac:d2:3b:
50:ed:d1:e2:fd:51:4d:4b:cc:36:9e:fc:32:26:3d:
e9:65:4c:26:de:ce:78:c8:86:cd:fe:30:f9:a5:c4:
cf:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4F:58:5B:49:FB:6F:82:7B:BF:2C:BF:75:79:14:BA:DC:24:2D:76
X509v3 Authority Key Identifier:
keyid:89:80:DA:27:A5:50:D7:9B:E6:51:AD:79:AE:71:9C:CF:CB:C5:A3:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYDaJ6VQ15vmUa15rnGcz8vFo28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:15:05:4e:14:c8:df:2d:c0:e0:cf:57:22:62:30:03:79:28:
1e:d4:ae:94:59:a6:d5:8d:37:03:48:b7:0b:7c:2b:6d:91:4a:
c8:ad:2b:78:52:cd:fc:a4:42:a4:08:b1:6b:a0:f3:b4:fe:25:
2b:60:7d:20:04:87:dc:6b:a6:25:3c:bb:96:88:36:b7:24:7c:
ac:b4:f8:b4:fd:97:81:5e:a7:89:eb:86:cc:33:8f:78:45:48:
35:4c:22:95:00:6d:28:47:a6:a6:38:7b:a5:b9:ed:59:9a:c6:
39:5b:d0:40:81:36:d2:9a:e6:7c:ed:71:80:37:e7:c3:98:f1:
bd:5d:02:0a:8c:ed:64:93:bf:c8:cd:17:71:47:f4:11:19:0c:
94:23:b1:dc:ff:f6:09:30:af:4c:99:9a:84:93:4f:bd:10:a1:
c7:83:df:66:d5:40:7d:27:a0:96:77:4c:97:49:eb:d6:f5:d4:
aa:04:bc:f6:69:c1:19:23:ef:a6:80:c2:2a:c1:db:48:0d:c0:
86:d5:28:d4:28:09:a0:ef:a6:b7:70:2c:84:07:02:4a:16:f6:
1b:22:f3:a3:fa:87:fd:6f:32:76:63:d4:f4:d9:5f:bf:c3:99:
62:c0:16:51:31:62:05:e8:26:8e:3c:22:20:63:c6:c6:a1:d9:
e8:e2:ae:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:30:46 2025 by rpki-client