Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: laRePBuLFr+/nWLRzlHcReB4wO2Dtvo0DIt3/LPs56k=
Subject key identifier: 9E:62:B5:0F:3E:99:C8:9E:EE:AB:26:34:55:DF:B8:7C:13:29:AE:D1
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 019855A07DBDA153A44E43285FC5682F5FBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 0712
Signing time: Tue 29 Jul 2025 10:00:37 +0000
Manifest this update: Tue 29 Jul 2025 10:00:37 +0000
Manifest next update: Wed 30 Jul 2025 10:00:37 +0000
Files and hashes: 1: 7M8D3IxMWjzAgVSAuyFX2gLMxAs.roa (hash: MD3KP2LMgWTsm6lhsmms5WwgB8xDS3rVO74n7Xs0hs0=)
2: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: r17vyoj9i1oded6EQ0dX3mByvki6XCfmviHk2za7LcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 08:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:55:a0:7d:bd:a1:53:a4:4e:43:28:5f:c5:68:2f:5f:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Jul 29 10:00:37 2025 GMT
Not After : Jul 30 10:00:37 2025 GMT
Subject: CN=9e62b50f3e99c89eeeab263455dfb87c1329aed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:68:84:29:1e:ad:81:ff:5f:9c:7e:be:61:18:
47:fe:28:f9:df:8b:43:36:fb:c6:4e:ac:dc:96:5b:
c4:b0:79:d7:9e:0f:2a:6b:6f:39:df:ce:30:16:8f:
43:72:76:52:13:c3:81:04:ae:59:1c:a0:02:9c:44:
a5:8a:1b:5e:d7:f8:58:bc:cd:cd:4d:5d:75:bd:60:
39:fb:f9:93:64:3f:0b:5a:5e:98:9a:8c:a6:1a:60:
b2:59:85:e9:df:3d:04:c0:e0:93:43:5c:d5:6d:12:
5b:fd:1c:30:dd:fc:ae:37:20:19:eb:c2:32:a8:db:
58:b3:bf:33:4d:14:0c:3d:73:e0:ee:40:19:15:1d:
7b:33:cf:d8:a6:d9:a6:07:a2:d9:f3:1a:74:2e:54:
5e:80:04:a0:da:14:ae:eb:b1:38:46:3c:c6:91:24:
dc:ca:e6:e2:ae:aa:e2:40:9f:fc:8e:0a:a7:b6:d7:
e1:96:3a:38:4e:54:1b:5d:6f:87:4e:90:40:51:64:
82:74:fa:29:e1:eb:89:fc:24:8a:a2:9a:85:b9:63:
b5:26:65:c1:5e:97:28:70:19:18:ac:bc:da:ae:5d:
84:da:83:19:80:33:a4:39:61:1c:61:7d:56:31:21:
81:58:e5:25:12:1f:72:08:ad:5b:2c:f3:88:71:3a:
f8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:62:B5:0F:3E:99:C8:9E:EE:AB:26:34:55:DF:B8:7C:13:29:AE:D1
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:6e:78:75:24:4c:ab:34:de:bd:e0:a5:23:e0:96:a7:ab:07:
5a:6b:22:fc:0b:79:9a:0e:ff:c6:54:a7:13:b7:da:e3:54:6c:
38:73:1d:3d:16:f5:5b:3c:b3:95:af:01:79:86:65:c0:84:93:
a7:61:e9:13:ea:7a:2b:7a:c7:31:37:83:9f:09:46:44:45:cb:
e1:49:d1:85:77:cb:2b:76:57:c2:70:70:b9:a7:ba:67:6d:1e:
60:3f:07:0e:72:3c:d8:92:37:e0:a3:4d:12:f2:5e:23:f4:e3:
bc:cd:25:c8:12:5a:60:1a:31:5a:26:c0:e4:7c:31:63:f0:48:
a3:a9:60:f0:8b:65:8f:94:8a:76:f5:5a:b6:84:9c:eb:3f:84:
08:4d:a4:cf:77:57:29:d5:b9:fb:be:46:bb:c3:d3:0e:03:1d:
6a:29:85:90:62:88:78:c1:1e:70:b9:aa:8c:2e:c4:6c:c9:b9:
23:6c:8b:0c:19:84:10:22:d0:ef:a2:5c:a9:22:73:c5:86:d0:
c7:6a:e4:5c:fd:8a:9b:1f:a7:e8:ef:c9:53:81:b4:84:7d:36:
3c:79:3b:01:f0:37:77:4c:98:12:fa:79:39:52:a1:9a:e3:9d:
07:50:61:41:bb:29:08:b0:ae:7a:d1:db:fc:e2:15:b1:1b:68:
62:db:4b:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 14:40:48 2025 by rpki-client