Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
File: IONyheqmIxC8nncrST2dYrqKeTg.mft (raw, json)
Hash identifier: /wPg/8CSftYwOWBb+khKh7jY0wjbFYooFe0Zm75T+cI=
Subject key identifier: 79:D1:06:97:69:2D:23:1F:B1:99:7E:53:57:38:07:7B:DE:3E:60:83
Authority key identifier: 20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
Certificate issuer: /CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Certificate serial: 019896A4B89FAA37B9F01FCEE611626F06FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
Manifest number: 0665
Signing time: Mon 11 Aug 2025 01:00:34 +0000
Manifest this update: Mon 11 Aug 2025 01:00:34 +0000
Manifest next update: Tue 12 Aug 2025 01:00:34 +0000
Files and hashes: 1: IONyheqmIxC8nncrST2dYrqKeTg.crl (hash: Gny2jQ9P5Vvwz8kjJoEi7Oc26lxDzl/TsP8i2cBGcws=)
2: v5LwLHwuCUZrT_0G6r3v0bfLSQs.roa (hash: +ztaiH2S/aHDtgvKfj/YkXPsW58SyJ9uS27Ej7psyFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a4:b8:9f:aa:37:b9:f0:1f:ce:e6:11:62:6f:06:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e37285eaa62310bc9e772b493d9d62ba8a7938
Validity
Not Before: Aug 11 01:00:34 2025 GMT
Not After : Aug 12 01:00:34 2025 GMT
Subject: CN=79d10697692d231fb1997e535738077bde3e6083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bf:08:76:8e:2d:8e:b8:08:c4:fe:75:68:7a:
de:2b:7d:d0:ec:ec:50:67:19:a6:ac:d4:fe:d8:11:
48:90:9f:fb:fd:c7:fe:83:b9:aa:44:6c:e2:18:6c:
34:0f:4f:f4:cd:87:ed:b4:f9:cf:0c:1b:ab:9a:0b:
f4:2f:5a:27:14:72:37:ee:e9:56:99:90:1f:03:a1:
82:b0:9f:68:33:77:fa:f6:3e:d0:be:fb:c4:b1:c8:
6c:69:20:85:48:68:69:33:71:8e:71:3f:df:1e:82:
74:14:5f:85:90:22:46:9f:3c:bf:30:2f:b5:78:bb:
be:0e:33:22:68:35:7d:56:8f:1a:c9:fe:52:37:c9:
3d:11:cb:89:20:e4:39:2f:f8:56:5b:2a:5e:14:f2:
a7:88:a5:c7:9b:4e:61:7e:5c:49:3e:57:a8:15:b8:
95:29:32:04:bd:0d:e2:07:f8:8d:ab:04:fe:65:f1:
26:68:93:19:7d:58:d0:b5:fc:ce:c0:32:4d:a5:c7:
ca:0c:1b:1f:e6:89:a5:ca:b5:8a:54:29:d0:f5:b8:
8d:46:54:94:e1:26:30:77:ea:c0:5d:02:a4:af:40:
21:51:c2:5c:17:c9:cc:5a:8e:e9:52:d4:46:ab:c1:
d2:50:23:fd:0a:11:bc:fe:ef:b3:5a:2b:34:4f:69:
95:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D1:06:97:69:2D:23:1F:B1:99:7E:53:57:38:07:7B:DE:3E:60:83
X509v3 Authority Key Identifier:
keyid:20:E3:72:85:EA:A6:23:10:BC:9E:77:2B:49:3D:9D:62:BA:8A:79:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IONyheqmIxC8nncrST2dYrqKeTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/177f1d-ac39-4a9d-941d-fa8d8ca9495b/1/IONyheqmIxC8nncrST2dYrqKeTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:fe:64:ff:90:a5:7c:b0:15:d8:59:c7:a9:53:ba:06:d9:ad:
67:af:9e:05:99:91:4f:5b:23:ff:d6:1a:6b:dd:2b:d9:1c:98:
4c:cd:7b:00:1d:04:38:49:54:d0:7b:44:bb:9d:15:16:3e:7a:
c2:ff:d0:33:2a:96:a0:18:96:2f:c3:8c:d6:5b:ba:01:f2:d5:
8c:9a:bb:57:17:a2:a2:26:89:9c:a9:ac:e6:f9:6b:85:a4:53:
58:8f:4b:95:36:f5:d4:e6:e3:aa:0d:8b:af:a6:49:57:d5:8a:
d8:ff:a1:12:bf:bd:17:00:b9:59:6b:ac:d0:0e:3c:74:19:d9:
e8:c4:df:9d:15:6a:9f:26:6a:97:5c:f1:c3:f8:90:e5:f1:65:
ac:5a:fe:2d:10:5d:31:18:3d:2f:bc:34:ff:e7:46:23:26:21:
4c:f2:1d:e5:03:97:57:f5:59:cd:e8:73:17:8d:6c:f6:9d:92:
82:95:2c:a7:b1:b8:18:d9:80:b9:c7:d6:ad:f5:b4:47:c5:fc:
34:a8:17:97:78:83:47:1d:5b:a3:f1:c5:9d:d0:c9:9e:08:49:
8d:3a:56:96:bf:c2:49:36:6c:3c:d2:3a:05:d1:de:78:66:d8:
72:6c:d1:5a:f2:9b:1b:47:a6:4e:93:60:fa:68:58:2b:05:a2:
9d:17:20:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:52:35 2025 by rpki-client