Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
File: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft (raw, json)
Hash identifier: wBv6JKkueX/9Ty3/B8WHju2xo1c8HsPJY8e5Jens9bU=
Subject key identifier: 0D:33:E3:3D:F4:0E:4B:AA:7B:7D:33:3C:1F:45:AF:CF:D9:5B:DA:7B
Authority key identifier: 21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
Certificate issuer: /CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Certificate serial: 01988DD966F7D42397FDE26B68C9B58302F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
Manifest number: 1627
Signing time: Sat 09 Aug 2025 08:01:31 +0000
Manifest this update: Sat 09 Aug 2025 08:01:31 +0000
Manifest next update: Sun 10 Aug 2025 08:01:31 +0000
Files and hashes: 1: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl (hash: GHMH1VM255me6pgStUhltPiGkprkTXhMafHePlIsQPU=)
2: ZUnY6DcgMFOkn5YPuY63h16XVew.roa (hash: j75VTgwm6ax4o8jG9UYWYEtlaoF5sYfNI7iKEcRNxJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:d9:66:f7:d4:23:97:fd:e2:6b:68:c9:b5:83:02:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Validity
Not Before: Aug 9 08:01:31 2025 GMT
Not After : Aug 10 08:01:31 2025 GMT
Subject: CN=0d33e33df40e4baa7b7d333c1f45afcfd95bda7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:16:d5:4a:3e:ac:ad:6a:f7:aa:2c:ef:7f:38:
72:8e:7b:09:ae:c7:ad:f4:5d:9f:0d:12:b2:9c:fb:
d2:35:81:bf:6d:f5:7d:3d:c5:e0:04:71:f1:b4:5b:
f4:22:80:36:64:72:8c:16:b9:c0:33:e0:f6:97:b9:
1b:67:a7:2b:67:95:fe:ec:98:f5:7d:b1:e5:8d:ae:
2d:f9:c2:3a:c8:94:3e:be:c0:93:11:b1:73:4a:1f:
d0:54:0b:bd:b1:ab:52:77:6c:21:92:76:43:69:89:
24:0e:95:18:08:49:12:60:af:be:1c:8a:94:f0:37:
77:cc:6e:d3:33:c1:7e:f9:89:dd:6a:d8:75:fa:b0:
81:0b:7a:8a:d4:16:f8:e0:d9:37:b1:f0:ff:90:c8:
03:38:db:29:8d:04:0d:fe:6b:b5:78:3c:35:c3:8b:
6e:fd:52:a1:72:b8:9b:9a:5b:31:34:01:84:85:d1:
b7:34:ac:e4:67:1c:ff:b6:4a:48:69:2a:69:24:41:
9d:bd:48:4b:a8:33:0a:f2:63:af:d4:b1:20:88:3a:
92:e5:bc:e0:88:48:4b:35:ad:b6:f6:3d:f1:c2:43:
77:8a:18:7f:5f:c1:d2:f0:2e:6a:f9:59:e9:24:d7:
3c:43:2f:e7:52:0f:05:9e:41:9b:d3:a3:15:65:6f:
63:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:33:E3:3D:F4:0E:4B:AA:7B:7D:33:3C:1F:45:AF:CF:D9:5B:DA:7B
X509v3 Authority Key Identifier:
keyid:21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:ef:78:c9:f5:35:1b:16:ab:37:a4:74:0b:94:ce:b2:89:38:
15:04:d8:8c:ef:2f:1e:1c:b4:3d:11:53:a0:ab:24:e7:a8:dd:
26:2a:b8:cc:9e:94:9b:94:c8:5c:c2:fc:16:31:cc:82:f6:44:
d3:f2:8d:0e:09:19:2d:c3:80:08:db:37:20:62:a7:a3:92:74:
18:83:53:9b:f7:34:f4:82:a6:56:60:9e:2a:25:97:42:24:65:
29:bf:8a:33:dd:7a:75:1a:59:69:5a:08:92:2b:4a:d4:d7:5f:
8d:64:df:d8:71:31:f4:44:13:de:2e:2c:d8:bf:bc:3b:c2:37:
0f:14:64:ac:a5:33:79:34:96:a2:96:b9:27:b9:9f:d6:1a:67:
7d:e0:47:f2:35:0d:90:90:af:43:ec:02:a9:84:25:8d:75:73:
5a:97:0a:f6:89:06:06:96:9d:42:83:de:f1:47:39:a3:35:e3:
7b:d2:8c:8d:c8:3c:b3:13:dd:cb:b9:3f:ce:cf:dc:e6:4f:32:
f8:7c:e0:c2:fe:78:f0:c9:d3:1b:f2:27:63:bb:51:bb:07:fb:
0f:bd:25:59:c1:b2:de:c6:42:92:6d:38:ba:04:28:ac:07:6e:
3f:14:d9:57:8e:56:f8:1c:cc:e6:5e:2b:1e:1b:f4:96:b7:cc:
6e:a4:45:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:35:38 2025 by rpki-client