Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
File: ICZNUaES0LwizqcxTLBs9aGuM-k.mft (raw, json)
Hash identifier: L+riUuXOj5ZsvjRFBOd7a4yUP9Iuz0Jyl8GOSowCDDM=
Subject key identifier: 11:AE:32:71:6A:D1:0A:82:43:F5:71:3B:D7:4D:AB:16:80:BA:AE:CD
Authority key identifier: 20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
Certificate issuer: /CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Certificate serial: 0198745098FEA72CC95754602E637C7198AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
Manifest number: 15AA
Signing time: Mon 04 Aug 2025 09:01:35 +0000
Manifest this update: Mon 04 Aug 2025 09:01:35 +0000
Manifest next update: Tue 05 Aug 2025 09:01:35 +0000
Files and hashes: 1: FXy87TSnS3zZKpD3cubdEzL9JTI.roa (hash: ev8YOzfcP94Okj6loLdeokLYKFfF9CSd4o8ZPprNj7U=)
2: ICZNUaES0LwizqcxTLBs9aGuM-k.crl (hash: DXt5DhNnHh+KtSCBcLzUnYMEuSVRcpfMAkR4cL+Sx1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:98:fe:a7:2c:c9:57:54:60:2e:63:7c:71:98:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20264d51a112d0bc22cea7314cb06cf5a1ae33e9
Validity
Not Before: Aug 4 09:01:35 2025 GMT
Not After : Aug 5 09:01:35 2025 GMT
Subject: CN=11ae32716ad10a8243f5713bd74dab1680baaecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:df:61:fb:0c:8b:18:c2:57:cc:ae:04:79:0b:
84:13:63:7a:9e:5a:b7:46:30:3c:bc:a3:ce:7e:42:
67:80:e0:f1:5d:99:ff:a1:f0:b7:5e:df:4d:7b:b4:
1e:51:8c:f0:b3:c4:a9:9a:2b:a9:f8:9c:cf:0d:29:
0b:20:70:41:ae:b9:03:fd:cf:f7:52:82:3c:d9:8c:
3f:00:8c:93:91:9d:aa:89:f0:38:fc:e9:3f:54:9e:
2d:79:c1:5d:95:9b:3a:a6:68:39:5d:85:56:41:d6:
d6:ee:9e:19:7c:67:59:f9:63:44:4b:6a:81:d8:71:
09:f9:6c:8c:56:2d:04:19:ba:d0:17:0d:31:bf:ec:
db:a7:8a:90:97:37:2c:c2:eb:4a:c8:81:e8:ea:ed:
e1:5c:c4:38:10:4c:d8:0e:43:b6:98:12:8a:82:ad:
56:5a:5c:b1:f1:c2:a6:b7:a6:3e:9b:db:b3:1e:1b:
bf:f2:b6:66:f1:b9:86:3d:ca:90:f1:17:ab:1a:7e:
39:57:35:3e:24:7c:8c:ec:64:b2:83:b0:5b:6d:c2:
5d:49:76:31:88:c9:3e:7a:2e:cc:2c:a3:de:ce:73:
65:77:a3:f8:b3:09:77:db:f4:e3:c9:c2:96:83:91:
18:53:f7:31:0c:91:dd:30:c8:fb:b9:4e:c7:b5:fe:
38:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AE:32:71:6A:D1:0A:82:43:F5:71:3B:D7:4D:AB:16:80:BA:AE:CD
X509v3 Authority Key Identifier:
keyid:20:26:4D:51:A1:12:D0:BC:22:CE:A7:31:4C:B0:6C:F5:A1:AE:33:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ICZNUaES0LwizqcxTLBs9aGuM-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/8878d9-4f1c-426b-8a40-658120ae68e1/1/ICZNUaES0LwizqcxTLBs9aGuM-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:55:37:fc:d9:81:95:bb:a8:ca:df:fa:0e:1c:ca:30:93:00:
74:de:b0:b9:c5:e9:af:61:83:f8:54:bb:37:3b:e1:30:a6:7f:
b5:3d:5c:50:4a:f0:82:f2:ab:18:cc:59:5b:88:7d:55:56:99:
31:62:12:eb:af:50:e7:30:8d:69:01:e4:70:db:67:41:a2:54:
49:65:d8:a8:db:01:8b:f2:8c:ad:94:60:5a:ee:e1:66:e9:64:
8c:72:4b:ed:c3:22:5b:de:10:8a:b3:46:69:b0:d0:95:be:6d:
77:c3:28:f9:6b:da:39:e2:b0:0b:75:1d:bc:e4:d6:a9:77:28:
54:21:a4:01:9e:0e:27:0c:c2:eb:84:76:63:4f:e3:ce:a8:eb:
7f:a0:98:0d:ef:7b:be:da:c5:07:58:d8:03:74:fe:dd:d7:fb:
06:e4:62:5f:34:31:ac:12:d2:1e:60:ce:f1:07:5a:f3:46:e0:
cf:e9:41:9c:c8:29:c0:aa:5f:64:01:16:4f:a9:fd:7f:19:25:
58:7b:fc:43:43:7a:fe:b2:79:38:93:10:bc:2c:2d:a3:88:82:
6f:79:c5:a2:29:43:99:56:dd:c1:66:17:6e:d3:b4:3e:9f:ec:
92:ef:2a:82:6e:37:fe:b6:ec:a0:92:f4:9a:aa:72:18:d1:12:
fd:3c:0e:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 19:08:12 2025 by rpki-client