
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
File: IJPjg7LMUtXsow_rEml1k8nHiKA.mft (raw, json)
Hash identifier: qdWRr0noqVQ2cd/YiSECrQGQsypxBiXO9THxsYpGdgY=
Subject key identifier: 42:5E:4A:7E:E2:D0:DC:E1:67:8D:45:86:C3:B4:33:12:52:DE:85:44
Authority key identifier: 20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
Certificate issuer: /CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Certificate serial: 0198744FD412D6CD6F4E84719FB13904CB28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
Manifest number: 1616
Signing time: Mon 04 Aug 2025 09:00:45 +0000
Manifest this update: Mon 04 Aug 2025 09:00:45 +0000
Manifest next update: Tue 05 Aug 2025 09:00:45 +0000
Files and hashes: 1: IFpZrxJhl8wQt7Uq0qRwzYFnZJk.roa (hash: eoMtlnp1ZLGeorMDixEuqh0nobwLwy70mhjbtsKxD5o=)
2: IJPjg7LMUtXsow_rEml1k8nHiKA.crl (hash: HS0nZpWG6CcYAI+FuuXWAEGZN+xDK6mUM5anSc6I9gc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:4f:d4:12:d6:cd:6f:4e:84:71:9f:b1:39:04:cb:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Validity
Not Before: Aug 4 09:00:45 2025 GMT
Not After : Aug 5 09:00:45 2025 GMT
Subject: CN=425e4a7ee2d0dce1678d4586c3b4331252de8544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:41:39:9e:ae:58:0b:4a:10:fd:d0:76:b4:ce:
ef:16:f0:eb:ad:e1:dc:1e:3a:5a:e7:24:0e:19:ca:
7e:fe:96:01:2a:34:7e:3d:c4:58:53:29:03:98:77:
ae:4f:22:84:5b:bd:41:fe:30:da:8f:43:82:14:d2:
99:f3:0a:b7:0b:b2:7e:ed:31:8c:37:b1:1d:5e:dd:
a8:08:aa:ab:97:b6:a1:93:aa:2b:4b:2e:fd:1a:9f:
b6:5f:ca:96:62:23:ef:4a:47:6d:ee:b2:17:f3:fd:
b0:0f:2e:15:c3:e9:a4:2a:6f:98:66:f1:0c:b1:c9:
26:ac:87:20:d5:e2:db:68:de:c3:ca:f9:e8:38:d8:
b6:75:3c:b0:e3:6f:92:21:df:22:32:71:1f:4a:5a:
de:aa:5c:04:00:bb:f4:e0:a5:ce:96:d5:b6:b2:c6:
3c:fc:fe:d3:ad:65:25:ee:4a:39:51:af:e9:85:19:
4e:00:c4:94:be:36:e0:e6:61:ec:f0:11:92:ec:29:
b7:50:bf:ba:6b:04:14:c3:e7:49:8a:d6:4f:51:30:
55:d3:a2:0f:b4:a2:86:ff:bb:18:d3:37:f0:cf:80:
4e:fd:69:25:33:53:51:da:95:c9:64:a7:73:eb:b0:
fe:0c:02:96:98:e2:11:dc:69:e4:7e:59:a5:c6:3f:
db:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:5E:4A:7E:E2:D0:DC:E1:67:8D:45:86:C3:B4:33:12:52:DE:85:44
X509v3 Authority Key Identifier:
keyid:20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:3c:1a:b2:a8:0c:0e:46:48:06:88:62:fc:fd:c6:55:66:0a:
4b:e8:3e:38:30:87:47:7d:a8:d4:9c:00:c1:f3:84:f6:cd:b4:
3d:90:28:af:d5:e3:18:1f:a2:e4:52:fe:de:b2:d3:ed:1b:b1:
f8:ec:a0:1c:03:63:7a:24:32:22:36:3b:31:ee:b0:12:c8:77:
94:8c:45:eb:b3:bd:fe:40:2c:85:43:66:be:0d:f2:0b:b4:40:
c2:5f:19:89:77:8f:1e:0a:d2:53:6f:13:7a:72:96:c0:b3:b3:
15:90:72:a7:3e:22:4a:42:09:32:b2:60:4d:5b:2c:c5:80:ce:
e5:47:be:34:7d:c3:ba:7d:91:3e:d3:cf:b0:cf:cf:0b:29:5d:
60:d4:66:72:c1:00:18:86:1d:38:ff:27:b9:e9:ec:bf:22:dc:
09:ad:fe:39:50:00:5a:e3:e2:74:5a:24:bd:24:ea:42:1a:67:
d4:11:30:f1:b6:79:ff:44:fa:30:31:66:1a:92:c3:0f:c7:3b:
05:c2:0e:47:73:38:82:bf:b3:d3:e0:76:05:2f:3c:6c:2d:d6:
64:dd:bd:fc:bf:da:db:23:cd:cd:fc:cf:56:e5:43:88:af:31:
98:a2:d1:0b:cf:8a:c0:19:53:d5:64:11:59:77:5a:5d:65:b6:
b8:8c:87:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:04:10 2025 by rpki-client