Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
File: iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft (raw, json)
Hash identifier: GosguHNAeKv6vI8oxa5T3VHAuffYmoGOM7RLcRit4HQ=
Subject key identifier: D6:3E:7C:BF:B4:6E:30:B6:0A:AC:8B:4F:1A:79:7B:63:45:61:F3:A8
Authority key identifier: 88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
Certificate issuer: /CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Certificate serial: 01989712A4E14D664BA108325CC4000D073B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
Manifest number: DC
Signing time: Mon 11 Aug 2025 03:00:38 +0000
Manifest this update: Mon 11 Aug 2025 03:00:38 +0000
Manifest next update: Tue 12 Aug 2025 03:00:38 +0000
Files and hashes: 1: XcIL6Sukfm7k1AWtWl445xp4QV0.roa (hash: 4UDRmx72tIl2+y56n6Ye2uGR21iaVE2WkWXR6GxV+6Y=)
2: iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl (hash: 4vm+PzABl7TFHH30QmSBNQIVJra2W85QdXCroLYNqyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:12:a4:e1:4d:66:4b:a1:08:32:5c:c4:00:0d:07:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885c09522f635fcafa29bcebac72c894e4ffeed2
Validity
Not Before: Aug 11 03:00:38 2025 GMT
Not After : Aug 12 03:00:38 2025 GMT
Subject: CN=d63e7cbfb46e30b60aac8b4f1a797b634561f3a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:52:1a:63:36:92:e0:be:c9:7e:87:d5:f3:34:
55:8c:9c:25:9a:69:40:c2:66:cc:a5:7c:71:19:c6:
8f:bb:6b:96:5c:d1:68:eb:a6:2a:0c:66:89:f3:32:
8a:b6:1e:d4:ad:d4:c0:76:c1:c9:35:03:89:77:ea:
24:65:06:01:ba:eb:60:44:f0:fa:30:04:cb:d2:1f:
c8:a0:d5:b3:f9:93:9e:a7:9d:14:b3:9a:10:43:01:
df:e7:00:6d:03:50:33:a4:65:c7:49:44:b5:db:e0:
0d:68:e3:19:8f:9f:74:36:8d:3f:00:41:fd:c0:e6:
42:9c:06:6a:e8:43:d1:9f:0e:34:7c:e4:25:4c:bc:
33:a9:11:e8:c8:e1:8d:29:bc:4d:c2:af:fc:0d:7d:
1d:e3:79:6c:9a:52:c0:cc:15:a1:9c:c5:58:26:30:
e3:4e:85:ca:3a:1f:a4:47:2e:ed:52:e3:3a:0f:ac:
e1:bd:3a:ad:ca:cf:05:f5:a4:1b:c5:08:05:ec:05:
63:6b:4b:10:3d:95:53:f7:ec:8e:bb:ab:f4:10:79:
ef:dc:02:f9:85:db:8c:92:db:90:d0:84:0d:cd:24:
9e:84:a6:0e:64:68:82:65:62:d8:7f:56:d2:cd:21:
07:fe:60:91:d8:4c:49:cd:47:c1:f1:88:b1:7d:d5:
42:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:3E:7C:BF:B4:6E:30:B6:0A:AC:8B:4F:1A:79:7B:63:45:61:F3:A8
X509v3 Authority Key Identifier:
keyid:88:5C:09:52:2F:63:5F:CA:FA:29:BC:EB:AC:72:C8:94:E4:FF:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFwJUi9jX8r6KbzrrHLIlOT_7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a02c08-f31b-48c5-ad47-f83b8d04087c/1/iFwJUi9jX8r6KbzrrHLIlOT_7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:69:f7:ce:f8:63:32:e5:5c:6b:66:a5:a7:d3:aa:78:9c:1a:
15:31:79:2b:03:0f:3e:f8:4a:98:d9:a3:76:b1:f6:06:41:34:
a7:67:07:47:27:19:6f:11:f9:75:33:6a:b3:e6:85:86:3f:be:
d9:cf:1d:a3:af:5a:92:42:a4:9a:8c:eb:3c:18:d2:f4:fe:99:
25:ce:f3:25:73:18:16:0f:56:7b:f9:f9:83:92:3f:7a:bd:ae:
60:36:15:79:91:85:28:c4:6b:e6:df:e8:0f:16:82:05:40:b4:
f3:c9:8f:44:d3:46:df:fc:2a:98:67:6a:e6:7e:9e:b8:e7:04:
49:c7:3e:60:fe:c2:c6:15:f5:87:43:c2:02:4a:d1:b6:af:21:
34:e8:2b:ee:52:aa:b1:37:b0:13:1d:c4:12:10:36:86:26:a1:
57:e9:c3:25:24:49:a5:ce:09:09:52:c1:c0:16:58:98:5e:33:
35:60:ea:93:65:5f:e5:15:6f:d8:b2:2b:1c:66:f8:9a:44:04:
1b:83:35:f9:7c:cd:f0:81:62:bd:8f:e3:c0:26:85:ef:1a:47:
0e:7f:39:a7:76:ab:5c:5a:a9:e9:0e:53:d9:fa:3a:c7:90:d5:
2c:60:3c:ee:3a:9e:c9:d4:eb:4b:ec:de:d9:23:ca:e7:71:f9:
08:20:81:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:23:46 2025 by rpki-client