Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
File: iJiSZOUPOa6IiuMnYQm7qALkWAE.mft (raw, json)
Hash identifier: iPpg3dBH75sPvrKLpxjXaaL6sGIsWQKjRqQI2EnP6QQ=
Subject key identifier: 38:D6:9B:FE:1A:25:88:F3:D8:AA:F9:C2:31:88:D9:E5:55:06:69:3D
Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
Certificate issuer: /CN=88989264e50f39ae888ae3276109bba802e45801
Certificate serial: 019896009687A6EC7F76CC1BA438A6BA2149
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
Manifest number: 02C0
Signing time: Sun 10 Aug 2025 22:01:17 +0000
Manifest this update: Sun 10 Aug 2025 22:01:17 +0000
Manifest next update: Mon 11 Aug 2025 22:01:17 +0000
Files and hashes: 1: e7H9B5-pB3ikZ5-oh15fm0ggCqI.roa (hash: We6P0vvIkU060wWseVebnunaD4trxKPA+u+6dudIhmU=)
2: iJiSZOUPOa6IiuMnYQm7qALkWAE.crl (hash: DtEuO9NYpKTkal2UQYF66NfNzDYXq+zAgCTIJuvcyi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 22:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:00:96:87:a6:ec:7f:76:cc:1b:a4:38:a6:ba:21:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88989264e50f39ae888ae3276109bba802e45801
Validity
Not Before: Aug 10 22:01:17 2025 GMT
Not After : Aug 11 22:01:17 2025 GMT
Subject: CN=38d69bfe1a2588f3d8aaf9c23188d9e55506693d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7c:d3:37:1f:82:2f:b6:ce:b7:c2:bd:a9:ba:
94:29:b1:a0:09:1b:81:b3:31:db:a9:b7:c3:d3:d3:
6f:7c:bf:60:13:28:5f:51:37:67:77:01:c4:d5:09:
81:9c:9e:f9:f5:5a:f0:e2:2f:1b:44:58:1a:c6:0e:
29:8b:3b:6a:c2:84:3c:c5:5b:90:10:31:39:a1:f4:
91:de:92:5f:4b:bf:93:ba:3f:2d:81:1d:8b:91:33:
28:14:c7:27:a7:2d:53:1c:25:64:2a:cd:68:e1:2f:
2a:f9:b0:0e:5b:af:67:79:af:41:82:a4:dd:69:84:
45:cd:39:af:c0:48:22:04:e0:9d:97:3c:40:ea:1b:
00:88:b2:e6:96:b7:bd:7f:62:e5:2c:49:86:ba:47:
c2:05:2d:aa:f7:e3:a1:b5:fa:8b:e7:1b:38:e4:21:
7c:77:08:ec:e9:94:a3:e0:45:95:96:06:09:0d:0f:
75:bd:51:6b:f6:6f:61:b7:f3:49:16:6e:39:47:96:
1f:65:8e:bc:61:e5:00:50:4a:27:2f:21:34:52:20:
68:33:21:27:a9:52:32:b1:3f:a0:75:53:ce:65:b1:
ca:69:a5:cd:36:79:ee:44:e8:02:0f:b5:5e:86:e3:
7e:1a:72:34:df:3d:3a:6a:33:ec:5e:23:f9:85:71:
80:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:D6:9B:FE:1A:25:88:F3:D8:AA:F9:C2:31:88:D9:E5:55:06:69:3D
X509v3 Authority Key Identifier:
keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:a5:22:31:06:c1:f8:41:83:de:9a:c5:55:57:58:8e:9a:b0:
6f:63:58:97:e4:62:01:54:77:c0:69:5a:99:bf:9f:86:58:0c:
b9:2c:6b:83:95:89:d7:5d:d2:48:a1:47:f8:e8:89:52:60:b0:
22:40:b4:3f:6a:9c:44:90:cf:3c:17:f0:9b:c9:25:90:e8:30:
f1:2d:42:20:de:9a:e5:a1:ff:24:fc:98:0b:02:0b:8c:f4:6d:
f2:13:1a:5f:17:7f:bb:7b:e5:ce:84:6c:a4:fb:80:06:e4:ad:
6c:b7:fa:ba:17:a1:c6:b7:83:50:19:21:93:dd:66:0f:3b:f3:
73:61:a6:cf:47:8f:22:39:63:b0:26:5a:42:a7:a0:a4:72:eb:
6c:68:cc:ef:29:be:08:38:46:b7:76:f1:e7:65:94:e5:dd:d8:
e0:a9:c6:0d:37:d2:da:ae:c1:b5:e4:b1:e0:d5:36:bf:66:21:
de:75:b6:aa:d2:d8:b9:40:9e:e8:ea:a1:51:71:fb:dd:74:2c:
ef:6b:f2:51:a9:b3:de:41:18:5a:ee:3d:0e:d5:11:7c:88:61:
1c:9f:1a:d7:5b:96:cf:1e:7e:81:f0:96:a8:9e:f4:a4:14:38:
2f:38:50:f9:7f:c4:1c:e2:3a:69:42:36:3c:31:ee:fe:5b:4a:
e9:f3:eb:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:20:47 2025 by rpki-client