Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: 4VqmHIYeqaoqDO1eY7MmGrQTmZ3D9jzTM8S71fawKsY=
Subject key identifier: 49:16:67:EE:3F:30:2E:F2:5D:D5:01:57:A3:6D:99:F2:A8:81:3A:9B
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 01987C4063DC5E1DED4651D3EAAB0908460C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 0726
Signing time: Tue 05 Aug 2025 22:00:51 +0000
Manifest this update: Tue 05 Aug 2025 22:00:51 +0000
Manifest next update: Wed 06 Aug 2025 22:00:51 +0000
Files and hashes: 1: 7M8D3IxMWjzAgVSAuyFX2gLMxAs.roa (hash: MD3KP2LMgWTsm6lhsmms5WwgB8xDS3rVO74n7Xs0hs0=)
2: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: KurGhdnJAw4yf8B+tC2x82YF8EGIjftlbV9LfjJSJyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:40:63:dc:5e:1d:ed:46:51:d3:ea:ab:09:08:46:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Aug 5 22:00:51 2025 GMT
Not After : Aug 6 22:00:51 2025 GMT
Subject: CN=491667ee3f302ef25dd50157a36d99f2a8813a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:51:93:2f:86:75:48:03:4b:80:25:b1:df:b3:
d9:bc:38:93:01:96:06:38:15:16:3e:3b:6c:90:9f:
d6:b2:43:c5:bf:c1:ae:1f:6d:77:ba:5e:ac:88:66:
cb:b2:b8:55:41:de:0b:dc:e6:de:25:30:c6:e1:db:
d9:2c:61:1c:77:7a:b3:e8:94:fe:e8:a2:12:4f:39:
49:cc:d0:cc:50:54:ac:64:fc:93:83:28:61:67:42:
31:8b:c0:d0:49:df:0c:ea:cf:63:46:6f:60:4d:4f:
f8:22:80:72:30:a0:70:7d:34:14:d9:b9:33:be:01:
c2:71:aa:1d:e2:64:8b:5f:39:5c:e5:ce:66:4d:9a:
5f:6f:7c:83:16:6f:39:07:b6:4e:d6:8b:35:d3:87:
2a:22:ae:bb:27:f4:2d:22:ae:1b:9e:9d:26:78:9b:
52:70:07:ef:76:6c:43:b8:7a:dc:fa:42:ca:c0:9f:
f7:78:ef:c6:fa:4d:26:d8:13:28:e6:bd:2a:66:b3:
f4:bc:13:52:b8:55:e7:80:37:ba:35:f5:58:63:17:
78:ca:1a:39:bf:ab:ea:f9:2a:37:55:19:e8:5b:1c:
7b:64:e4:b7:85:33:5e:97:52:35:11:8d:32:ee:2a:
28:1e:1e:db:30:00:fe:57:19:75:28:f2:1c:14:db:
00:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:16:67:EE:3F:30:2E:F2:5D:D5:01:57:A3:6D:99:F2:A8:81:3A:9B
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:37:98:e1:3a:b0:ae:e3:f0:77:0e:ae:c4:f8:71:f1:83:e6:
b1:f2:a9:4c:de:12:bc:c2:f7:9f:c5:3f:a6:16:fc:bd:35:ed:
97:01:7f:dd:0c:20:9b:20:f5:3d:03:e5:e8:de:d4:b2:0c:3a:
89:e1:49:5b:3a:9c:ae:4a:28:a3:8e:5f:e8:f5:77:6e:6d:e4:
03:26:fa:44:52:43:e7:e3:bf:a4:a7:46:29:29:2c:d4:db:9c:
99:c9:30:77:a6:9e:11:86:52:0b:aa:ee:7c:2f:10:b5:a6:8e:
64:52:d9:4d:ce:c2:98:db:72:d4:84:ab:e0:77:76:65:6d:9c:
c6:26:1c:06:11:52:4a:6e:ad:ab:5c:4f:93:dc:77:91:70:9a:
ab:26:92:c4:05:3e:0b:08:b2:0f:a7:89:0f:af:72:97:72:a9:
06:8b:7a:19:a6:4e:73:83:a4:dc:a1:fc:9b:26:c4:9a:92:f7:
cc:c1:73:fd:3a:9f:a8:b8:f6:0d:84:c1:b8:8e:ca:b0:d9:65:
fa:92:25:4c:f9:7a:03:57:e7:5c:64:ba:9e:2d:b1:da:1d:79:
cd:06:ff:17:98:88:2f:15:b8:07:4b:fb:e4:a3:7a:d4:1c:b8:
8e:00:32:86:3f:86:36:61:4d:24:dd:04:86:62:99:af:a1:ef:
b9:62:d6:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:52:51 2025 by rpki-client