Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: 4ezvxFkYlyewJr4q5tRAA2R9gViNbv0t9d13jizjal8=
Subject key identifier: 12:C6:61:BC:16:05:14:27:06:9F:62:B5:14:B4:03:B1:8D:37:D8:A2
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 0198451ABF5088A0FB88DCF8B5F586FD8035
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 0104
Signing time: Sat 26 Jul 2025 05:00:37 +0000
Manifest this update: Sat 26 Jul 2025 05:00:37 +0000
Manifest next update: Sun 27 Jul 2025 05:00:37 +0000
Files and hashes: 1: h5XDYzeHNRC78pQldSdBc3wtmlU.roa (hash: y/jCUDtK6aEdyycsVox6EyAhTQt3+YacMPTfw4ggZeM=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: wlbHacCU34/GJKxPpx6wghp6KKCrtSzsQG4Bh1hSq0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:1a:bf:50:88:a0:fb:88:dc:f8:b5:f5:86:fd:80:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Jul 26 05:00:37 2025 GMT
Not After : Jul 27 05:00:37 2025 GMT
Subject: CN=12c661bc16051427069f62b514b403b18d37d8a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:41:3d:b0:bd:d4:c6:55:47:15:21:87:14:af:
73:e2:04:6e:ee:15:9d:9b:51:84:d5:46:0e:aa:2a:
08:07:ae:85:de:52:4d:4d:75:a6:46:d4:44:db:fa:
dd:a8:a3:ea:b2:17:3a:56:1d:ca:81:af:ae:33:63:
6a:5a:e8:7b:f4:50:b7:fc:3e:15:3a:6b:f0:f8:1f:
cf:4e:eb:6f:2a:99:37:4b:ce:d9:6f:d7:c9:16:9b:
65:75:58:32:3f:9f:dc:04:11:7c:42:57:bd:ff:f6:
83:16:64:53:0a:58:a1:4f:4a:bf:e6:62:9c:78:3a:
06:31:72:d8:e4:ac:9a:5a:2a:da:3e:a7:64:75:0e:
37:1e:06:62:be:c8:05:c7:60:d4:61:01:dc:da:e6:
a7:ad:34:15:f8:37:52:ac:85:38:2c:b8:96:9d:3d:
7c:73:80:30:55:f3:27:3c:59:48:30:43:2f:cd:bd:
2d:f6:fb:b6:08:09:1e:40:94:81:bb:10:4c:12:a3:
3f:6e:8f:2c:db:d7:56:ce:dd:2b:62:5b:fa:73:a0:
b4:d5:b9:5f:3c:39:b4:43:b1:5b:64:b8:16:65:6c:
3a:ae:f6:0b:fc:5b:cb:1a:ba:53:1d:a6:45:14:07:
fd:ce:69:de:4f:f1:38:d4:b3:47:52:ac:35:cf:0d:
08:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C6:61:BC:16:05:14:27:06:9F:62:B5:14:B4:03:B1:8D:37:D8:A2
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:16:bf:d8:49:65:58:52:6a:8f:56:ee:bc:95:21:ed:73:0a:
07:36:6e:2d:bd:b0:97:76:d8:06:95:03:7a:1e:54:9f:f7:3c:
a8:d8:40:0e:5d:5d:e6:b6:f5:be:9b:ec:e3:91:0f:06:90:ae:
48:97:41:ba:e8:a2:71:97:7e:3f:2f:be:09:1b:4a:a8:f7:cd:
09:1a:1a:b9:15:a2:eb:2b:04:34:47:00:28:be:3d:b3:27:5a:
bd:65:19:d4:f8:60:5e:6b:e7:e7:2f:8c:96:88:27:26:a4:50:
32:74:87:15:b8:57:ac:2e:70:47:d4:cb:cf:2f:46:36:f9:10:
9f:fa:95:f5:b9:85:0c:c5:02:f1:05:78:76:34:2f:50:15:bc:
09:11:8f:6d:0e:87:1c:a8:06:97:c1:e6:49:80:f3:8d:a7:e2:
57:30:f3:b1:a5:21:18:f4:9d:ae:2a:38:d4:94:66:94:79:ac:
ee:1a:8f:f7:81:d8:a1:5f:a3:54:4d:ff:33:a7:78:e8:d5:d7:
e3:76:58:3f:3f:bf:c8:fc:6f:40:14:17:85:db:da:44:82:bc:
0a:87:2c:6b:8d:99:b7:6e:64:88:a3:0b:82:3c:8b:19:e9:19:
72:ff:64:41:ad:67:3f:4c:63:b6:4c:1e:5e:1b:31:0b:48:db:
73:b9:25:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 07:47:08 2025 by rpki-client