Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
File: 1IW26difsBA2mXHtiIVyBZhdSRg.mft (raw, json)
Hash identifier: akZi2Ndj8kadxWRiIl7GgFO0VTbFx3OyS4tzf5V6lkM=
Subject key identifier: 69:69:A0:3B:44:BE:B4:1B:10:D7:1D:7E:A4:C6:98:E1:B8:23:22:F5
Authority key identifier: D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18
Certificate issuer: /CN=d485b6e9d89fb010369971ed88857205985d4918
Certificate serial: 0198819DFECD9E9DCACBA663719CC5BA620A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
Manifest number: 161E
Signing time: Wed 06 Aug 2025 23:01:11 +0000
Manifest this update: Wed 06 Aug 2025 23:01:11 +0000
Manifest next update: Thu 07 Aug 2025 23:01:11 +0000
Files and hashes: 1: 1IW26difsBA2mXHtiIVyBZhdSRg.crl (hash: VH25Tt3lHUw47fwqrCcJdo224NicGaJLF+v0i/e5IZ4=)
2: kFp1ntirY-_nRj5W9JqqX1ydSnU.roa (hash: NWOTQpr3hkXHB9fkn9UXRHKGkCwc9Gafyc4Z5IuHimc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9d:fe:cd:9e:9d:ca:cb:a6:63:71:9c:c5:ba:62:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d485b6e9d89fb010369971ed88857205985d4918
Validity
Not Before: Aug 6 23:01:11 2025 GMT
Not After : Aug 7 23:01:11 2025 GMT
Subject: CN=6969a03b44beb41b10d71d7ea4c698e1b82322f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:58:4f:77:88:1c:8f:6f:b4:86:dc:2a:3c:e1:
c2:48:1a:41:99:75:0a:8a:91:b8:e5:89:6d:5c:50:
d6:78:4c:60:f7:6a:7b:4a:3a:e7:a7:3a:f0:f2:f5:
24:d0:c4:75:72:ea:0d:a6:0c:b2:5d:93:8d:d7:dc:
56:5b:4d:74:bc:89:78:52:c4:91:34:f2:1b:83:84:
8b:9b:cf:cd:f5:50:b2:c7:30:ba:3a:ed:4e:58:4c:
27:52:44:ca:14:93:4b:99:04:dc:e8:e2:5c:73:d2:
b3:01:3c:9d:fc:b9:83:3f:c9:72:ad:f9:b4:cf:0d:
29:74:ab:e8:30:ea:6d:93:5b:48:4c:02:fc:3c:57:
6b:25:ab:31:66:b7:cf:76:f3:2c:62:db:d0:ea:2f:
af:6d:de:0b:95:50:77:81:da:b0:6f:f4:f9:1c:26:
8d:d9:65:c9:01:9e:af:24:af:61:85:58:7f:3a:d6:
5f:6f:4e:fd:94:c9:7e:e2:72:5c:ea:99:7f:d7:89:
05:11:f0:b8:73:77:b2:1c:9a:11:8f:af:2e:cf:df:
ad:03:15:99:bb:37:75:43:7a:c2:8f:39:54:db:5e:
b8:68:4a:50:2d:34:7f:ef:c1:8b:14:e1:6d:33:10:
2e:f6:74:04:21:27:d1:1c:72:93:64:da:a5:38:17:
d6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:69:A0:3B:44:BE:B4:1B:10:D7:1D:7E:A4:C6:98:E1:B8:23:22:F5
X509v3 Authority Key Identifier:
keyid:D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:bf:a9:cf:fa:92:f9:e4:df:3b:5a:ec:a3:19:2d:06:58:81:
63:df:0a:e4:07:fd:19:72:b9:8c:dd:16:0a:28:ee:36:b4:7e:
ad:d1:02:c3:e7:e4:a6:d5:14:95:d2:4c:9b:a2:4c:79:f1:f3:
58:96:a7:ba:c8:8b:cc:1b:9c:f8:03:94:9e:96:24:ca:40:7e:
fd:c4:e0:63:f7:de:2a:3f:1c:33:48:a7:0f:c6:1e:22:f5:41:
2b:d2:99:2a:1b:1b:71:7e:c0:11:9b:9a:f8:e6:64:93:b0:4d:
ec:5a:6f:0c:3f:68:d3:28:2c:76:ef:ec:17:ab:96:56:f5:da:
95:0e:8f:be:ac:3f:61:46:17:e6:e4:a7:de:c9:ca:d1:8f:23:
b0:ed:8a:98:62:e2:c5:3e:dd:54:92:f1:e6:51:09:98:7c:b3:
bd:90:88:c6:cd:6e:39:ce:82:12:6a:c0:97:76:8b:02:39:5d:
a9:3b:1f:a0:56:a5:8e:26:66:cc:42:34:75:96:ff:cf:0e:d6:
b8:64:74:89:85:c0:b6:3b:51:6d:ba:8d:1b:f5:33:16:88:d7:
ea:fd:41:72:ee:6b:34:e5:71:81:c0:21:0f:4a:0a:1b:3f:28:
a1:02:e6:d5:c5:a0:00:6d:47:01:12:5c:7a:be:e7:12:d9:5e:
c5:82:ef:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:19:18 2025 by rpki-client