Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: rkqccr4ZEXIEzki3ayimvMKy0F3JnLEMFnaNzC1+fnY=
Subject key identifier: C0:4E:DE:D7:88:D8:57:2A:25:17:68:07:19:CB:62:FE:59:8D:C8:A8
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 019880F9116BF2B3515A54EEDD352D8B76F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 09AF
Signing time: Wed 06 Aug 2025 20:01:03 +0000
Manifest this update: Wed 06 Aug 2025 20:01:03 +0000
Manifest next update: Thu 07 Aug 2025 20:01:03 +0000
Files and hashes: 1: eG2Sz-NBLwpAqaii4LbUZ-cWycY.roa (hash: uPzFHNSnB/27/j7jzNn6SSjG0qijsqzpue+Zsmabwu4=)
2: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: in40PpHPGzDkYchbubH1Z7ddkLA0zVe2VPFdb3KBmHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:f9:11:6b:f2:b3:51:5a:54:ee:dd:35:2d:8b:76:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: Aug 6 20:01:03 2025 GMT
Not After : Aug 7 20:01:03 2025 GMT
Subject: CN=c04eded788d8572a2517680719cb62fe598dc8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a8:76:4d:bc:38:cc:93:a3:cc:40:e7:da:ae:
09:0c:90:ba:99:4a:91:c8:d4:ed:9e:25:f5:b5:89:
66:63:f7:8f:b7:4d:52:0a:ac:1d:4d:8c:2d:e8:06:
b8:f9:ee:8c:3f:25:f0:a7:06:8d:eb:7e:07:b2:ae:
92:f3:61:d5:c1:f0:67:b9:92:79:60:cf:fc:db:f6:
a6:5d:61:68:f2:61:f4:64:d0:87:7c:85:b5:db:c0:
68:af:dd:68:63:80:3e:16:21:d2:68:2f:03:c9:db:
bc:9f:51:b3:d4:97:28:8f:52:ba:59:51:71:a7:7d:
cc:3f:ca:13:a4:68:97:d5:79:32:70:32:82:f4:6f:
0b:fe:29:16:13:3c:07:b1:57:ca:9f:a0:fa:72:f9:
09:36:1d:d5:bf:1a:b9:a0:00:e9:1e:7f:50:b8:93:
28:3c:08:6f:4a:91:fe:c7:91:7e:e9:24:fe:c8:eb:
42:7d:89:f4:d2:6c:0f:8a:5b:15:f6:1c:20:09:86:
4a:1b:c0:d9:cc:98:c8:6c:9a:f5:f2:33:95:5a:10:
75:d9:fe:12:d3:15:1b:fc:d7:a0:0b:51:95:01:63:
f5:7a:12:6e:e9:08:35:d4:cf:00:3a:37:f3:df:21:
5a:5a:5b:ef:0d:5f:ba:e2:9a:97:72:fa:92:a4:87:
01:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:4E:DE:D7:88:D8:57:2A:25:17:68:07:19:CB:62:FE:59:8D:C8:A8
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:a3:02:19:92:53:cf:81:e8:c9:cd:8c:18:bb:85:24:22:f5:
08:38:ab:82:94:e8:58:b1:bd:94:c9:14:f5:c8:44:f9:40:96:
e8:e3:80:1f:53:e1:7a:1d:53:12:45:a0:2f:5c:17:55:e9:29:
75:1d:e5:83:21:04:95:cd:4d:da:be:65:88:d8:ae:66:e3:d0:
56:48:ea:c3:78:e7:cc:50:10:ef:70:6f:1a:c2:58:32:6f:e3:
6f:e6:1b:bb:bf:71:a2:18:6f:b9:a6:62:d3:f9:e0:34:ae:a7:
c2:10:0c:ee:c5:a8:23:ff:d5:06:36:07:21:25:22:48:22:94:
b0:b7:8f:22:85:44:2f:af:3d:5d:4b:41:32:38:57:ce:33:ce:
af:4b:7e:d1:1e:76:e9:82:4b:a3:17:5b:16:9e:b3:a9:b7:c1:
9c:4a:c0:fb:a4:6e:12:24:53:b8:85:6f:56:18:8c:07:c8:0c:
ed:b0:f8:c8:0c:21:27:1a:06:93:ab:6e:a0:16:b5:90:ee:a4:
4b:72:77:bd:a4:cd:88:ac:1c:a3:da:54:80:c0:f8:fe:2a:cb:
de:c0:5c:1d:32:02:ba:5d:67:71:e6:95:e6:46:a7:78:18:8e:
7e:4a:df:59:93:fa:a8:75:be:74:25:ac:92:37:53:e4:b1:09:
a8:a5:75:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:43:02 2025 by rpki-client