Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
File: i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json)
Hash identifier: HMKDdc/aIQnCPsa+i+wCT4vLfs4UO8utsqp3Quvi/+k=
Subject key identifier: 05:F8:DE:50:34:0A:C8:C5:ED:C9:B2:E6:85:09:18:3F:84:7F:55:63
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial: 01984A09CE7D92433E5EE358EA25E9269194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
Manifest number: 0D4A
Signing time: Sun 27 Jul 2025 04:00:13 +0000
Manifest this update: Sun 27 Jul 2025 04:00:13 +0000
Manifest next update: Mon 28 Jul 2025 04:00:13 +0000
Files and hashes: 1: CDrnNbtJLaCL50xwnqrzUWhQ_9k.roa (hash: xkyChTjHPfmap3pEfIzmPahUIANDsQxEAOedvER2SvU=)
2: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: GIExq8G4zuR5u7riVx4Hel7p7gPJUYXIXrTpjXw6O94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 04:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:09:ce:7d:92:43:3e:5e:e3:58:ea:25:e9:26:91:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b8801543812040477d4744229466c8537d45171
Validity
Not Before: Jul 27 04:00:13 2025 GMT
Not After : Jul 28 04:00:13 2025 GMT
Subject: CN=05f8de50340ac8c5edc9b2e68509183f847f5563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:de:00:e1:80:78:7d:63:36:c0:f9:c8:ab:bc:
40:b7:8b:e3:25:76:d9:ed:57:aa:3c:43:23:d7:6f:
92:73:3b:05:3f:60:9d:9b:bc:c3:e8:45:ff:46:72:
f2:aa:ec:e2:e9:3f:75:3b:d3:32:1f:8d:4d:76:49:
77:02:94:48:98:73:6f:94:83:74:dc:6a:84:06:80:
51:ff:68:58:94:51:bc:2a:20:5f:40:57:07:db:06:
d8:40:4f:09:8d:81:95:26:5f:cf:f0:b6:3a:8a:2f:
f4:9b:c4:98:28:58:bf:11:cd:b6:be:37:54:4d:53:
86:d5:da:cf:0f:64:36:0f:23:72:f3:95:76:91:28:
a3:ac:52:81:60:05:ea:7b:e1:58:20:6d:80:22:c4:
32:73:f0:6a:30:45:ee:63:d9:8c:db:e3:9a:6e:ba:
15:18:8f:f3:c6:0c:82:3d:7c:f6:c4:ee:a6:29:e7:
77:e1:f2:3d:a2:49:1e:29:0d:5d:e5:18:b9:91:82:
95:a8:71:63:ff:79:d9:3d:d4:a3:52:f1:42:65:d5:
e6:f6:d9:8e:e0:19:0f:21:b7:1b:5c:03:ef:59:bc:
c3:94:a6:b9:27:14:6f:7d:db:4d:49:ba:9e:3b:1c:
43:95:c0:c2:f5:ca:e4:52:3b:17:4d:06:b4:a8:d9:
14:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F8:DE:50:34:0A:C8:C5:ED:C9:B2:E6:85:09:18:3F:84:7F:55:63
X509v3 Authority Key Identifier:
keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:25:f5:1d:b5:2f:ff:9b:7b:a5:24:80:af:72:f0:e1:12:30:
c8:b6:6f:8a:92:e2:9f:ee:36:34:fa:22:2a:10:2f:9e:d0:9b:
e7:ed:0e:da:be:a5:b1:b8:42:6e:4b:76:98:fb:d1:f5:66:4c:
69:48:48:58:e6:a4:ea:c5:fb:f2:b8:3e:48:2d:f9:eb:fb:2e:
23:79:3f:c2:0d:4a:7d:d6:b3:73:e4:99:db:d2:fe:df:c0:d4:
92:d7:1f:e5:33:bc:3e:50:a9:e6:e6:37:c9:02:12:01:3a:87:
b7:fc:12:af:4e:07:09:5d:ee:2d:fa:12:a0:92:65:0a:02:80:
3d:ba:29:3b:f5:87:8f:ca:71:21:03:1c:5a:68:d5:87:04:73:
8c:a4:30:8a:d6:76:33:7f:55:b6:31:ec:a4:e0:2f:d9:99:c0:
c4:a5:f5:73:cd:4a:54:d9:b5:fc:05:ed:a0:5e:cd:8c:d4:8c:
96:a3:f9:93:24:d2:e1:1f:2f:92:4a:51:49:fb:55:2a:d0:2d:
b0:ba:9d:c6:4f:c3:dc:f6:81:19:b9:8d:c6:fa:3e:e0:ec:1e:
e3:ea:8f:7d:f9:cb:f5:58:52:20:a2:56:cb:28:36:db:6a:29:
39:c0:45:c7:d7:67:9f:7d:65:5f:6d:78:69:ca:1b:5c:bc:4d:
b3:43:fb:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:36:13 2025 by rpki-client