Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
File: RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft (raw, json)
Hash identifier: L9EojLFeswmUHDRqR++ACFTE8+HGmW0QSmivTYcSiWU=
Subject key identifier: 05:31:10:21:E3:FA:6D:09:8E:ED:02:EC:85:D0:BA:9C:0E:4B:68:A6
Authority key identifier: 44:8C:A3:95:37:59:7C:FA:E6:0A:E0:42:1D:B8:E0:98:B4:E2:61:30
Certificate issuer: /CN=448ca39537597cfae60ae0421db8e098b4e26130
Certificate serial: 01988A6A3B8649360643AEA6AC725E1C6E61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
Manifest number: 1624
Signing time: Fri 08 Aug 2025 16:01:14 +0000
Manifest this update: Fri 08 Aug 2025 16:01:14 +0000
Manifest next update: Sat 09 Aug 2025 16:01:14 +0000
Files and hashes: 1: EXivR_Wvv2aOO3jHO658CAON0No.roa (hash: fh34cv2WRgihe99oCLRpx5puteDZpUePtPBBSbNg/Qg=)
2: RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl (hash: gRu/7tYt3cdBYvb+jPyv1XhXv8DU4fjBOXwi2H4j0qI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 16:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:6a:3b:86:49:36:06:43:ae:a6:ac:72:5e:1c:6e:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=448ca39537597cfae60ae0421db8e098b4e26130
Validity
Not Before: Aug 8 16:01:14 2025 GMT
Not After : Aug 9 16:01:14 2025 GMT
Subject: CN=05311021e3fa6d098eed02ec85d0ba9c0e4b68a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:10:ad:99:12:f2:e1:4b:11:3f:14:da:10:cb:
6b:1c:6d:0e:57:57:c4:48:da:a9:c2:84:63:c6:3b:
e4:03:26:e7:b8:8e:35:a7:da:22:1d:8a:9c:22:c9:
8b:35:2c:ab:8c:be:c8:bd:c3:97:70:d3:a8:fd:34:
ba:23:13:36:f2:4e:37:21:d1:34:b2:35:44:f2:85:
9a:94:22:71:1c:bd:83:c1:5b:cc:52:0c:bf:af:20:
0b:7b:55:a5:51:ea:bd:30:d7:3e:a9:40:c2:76:d2:
e0:5a:66:1a:3c:87:6a:58:bd:17:fd:d0:a2:de:82:
27:c8:a2:aa:1b:9c:2b:30:00:10:2c:cf:fd:33:5b:
75:3e:05:1a:46:a3:b4:04:6a:e5:6a:8d:0c:5c:3a:
0d:8c:bc:ee:dc:6a:2a:a7:fa:e2:21:12:2b:97:8f:
6b:07:41:1b:65:c9:05:b9:9f:e1:cb:eb:48:9c:43:
67:ab:e1:52:57:a0:a6:3d:fb:2d:4d:a6:eb:f7:18:
74:57:dc:ef:f2:2a:43:91:62:17:17:a5:38:b9:ef:
5e:32:0f:8a:52:08:37:1e:ec:68:df:26:fb:37:af:
0a:32:05:f6:c0:a7:b0:15:71:ca:4e:37:e1:8e:3f:
9c:ce:31:70:84:ed:e7:5f:93:b9:4e:40:d7:76:33:
a2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:31:10:21:E3:FA:6D:09:8E:ED:02:EC:85:D0:BA:9C:0E:4B:68:A6
X509v3 Authority Key Identifier:
keyid:44:8C:A3:95:37:59:7C:FA:E6:0A:E0:42:1D:B8:E0:98:B4:E2:61:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIyjlTdZfPrmCuBCHbjgmLTiYTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/db0519-4e5a-4b75-88fd-bbc239e897eb/1/RIyjlTdZfPrmCuBCHbjgmLTiYTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:29:01:5c:fe:0c:20:e7:19:a9:a7:00:04:99:5b:45:f0:da:
a7:f5:13:e1:2e:f7:37:96:f7:b2:b3:39:a1:84:fe:2f:8f:a1:
3f:7f:14:31:4c:36:bb:71:28:a3:6c:f3:c8:67:05:79:4f:22:
71:a8:d1:82:94:de:c7:fb:19:52:84:74:da:ff:f3:59:be:eb:
99:b3:5c:99:dc:11:44:d0:db:00:fc:b2:10:6d:49:9e:67:40:
95:84:9d:23:9d:0a:42:0d:ef:81:48:bc:3e:71:38:0a:96:83:
12:df:e3:76:ff:a5:9f:de:d7:8d:c5:64:7c:d6:aa:f4:bb:39:
94:d4:80:19:bf:e2:b7:54:92:b5:89:05:d6:20:32:a1:00:75:
76:6d:65:6b:59:f4:ab:43:6a:a4:4f:7e:b1:04:30:af:c2:6a:
e2:dd:70:7c:41:b3:bf:b7:ab:d1:6a:0c:de:46:bf:41:66:73:
55:ef:55:02:03:92:2e:76:ad:15:37:9f:d7:9d:3e:3e:ef:1d:
4c:d4:f6:8f:fb:91:13:82:9b:a0:53:72:82:8e:f2:ef:e2:22:
bf:f2:20:c4:5e:82:99:12:a5:c7:34:38:62:84:bd:b1:e1:c9:
05:91:0f:88:2a:99:cc:ec:74:86:e0:36:8d:b0:df:52:18:76:
51:53:94:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 00:59:20 2025 by rpki-client