Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
File: iDjoVrInLfF0ulpAqPx9XTAxyso.mft (raw, json)
Hash identifier: HjmXF5fu21Qs80PxUC/BjIbGzRG+Xk6jpx35L83ikpU=
Subject key identifier: 9B:29:66:C0:2B:3B:64:F0:10:DA:7E:E7:49:BC:7D:EA:15:DB:08:AD
Authority key identifier: 88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
Certificate issuer: /CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Certificate serial: 019921E74B83859D4D3B3A00464E5A144506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
Manifest number: 0FDA
Signing time: Sun 07 Sep 2025 02:00:30 +0000
Manifest this update: Sun 07 Sep 2025 02:00:30 +0000
Manifest next update: Mon 08 Sep 2025 02:00:30 +0000
Files and hashes: 1: OZKug-HD4Xa2ZWdFBgCPcOgskwk.roa (hash: 3+egBPFrVIi/azwFyFARnF9adwzzIgSQuiDCKqIhA8c=)
2: iDjoVrInLfF0ulpAqPx9XTAxyso.crl (hash: 2GZoJX8ISMbRk2pi0aInf8RI9e3W4mPXM4rSyr1RNjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:4b:83:85:9d:4d:3b:3a:00:46:4e:5a:14:45:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8838e856b2272df174ba5a40a8fc7d5d3031caca
Validity
Not Before: Sep 7 02:00:30 2025 GMT
Not After : Sep 8 02:00:30 2025 GMT
Subject: CN=9b2966c02b3b64f010da7ee749bc7dea15db08ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:16:60:9b:90:98:9a:d8:aa:ab:27:05:4a:04:
c9:4f:21:ca:14:d1:d7:ed:41:18:d4:9e:0b:27:6a:
e6:52:2d:80:06:94:40:5a:9b:1e:db:ea:02:4f:f6:
97:8c:69:7b:cd:54:af:9a:88:71:94:6c:fd:ae:3e:
78:d2:9e:c7:53:4b:e5:ff:1d:c5:95:de:02:31:24:
c1:c4:d3:02:63:52:72:b2:70:9d:11:94:e4:6a:b4:
76:81:fe:b4:21:d5:2b:f3:2d:ad:be:01:c7:7d:78:
d6:92:20:f2:00:9c:6c:7f:4a:2d:8b:24:05:39:93:
f3:00:89:2a:59:bb:59:3e:0a:45:1a:2e:2f:8c:6c:
48:24:ad:17:2c:27:dc:2d:cb:44:2c:f6:8f:15:dd:
9f:db:c3:08:bc:92:c2:2a:a4:67:90:3d:46:b8:34:
d5:3d:61:78:01:ec:02:1a:c4:1b:fc:17:98:a1:de:
38:f1:b9:ed:2d:fa:01:63:64:9a:cb:5b:28:e1:87:
7e:75:2e:5e:f3:28:64:35:85:9c:b9:8f:6c:2e:d6:
c7:7d:b9:3f:f9:f9:e4:d3:80:d8:4a:ba:6a:4b:3c:
7c:d3:42:9f:40:10:4c:38:b1:59:24:c2:68:75:df:
d1:91:4f:58:6a:31:71:d2:54:6b:eb:27:c0:59:d1:
83:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:29:66:C0:2B:3B:64:F0:10:DA:7E:E7:49:BC:7D:EA:15:DB:08:AD
X509v3 Authority Key Identifier:
keyid:88:38:E8:56:B2:27:2D:F1:74:BA:5A:40:A8:FC:7D:5D:30:31:CA:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDjoVrInLfF0ulpAqPx9XTAxyso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7da3a9-34df-48f8-8a1b-079e111edbf9/1/iDjoVrInLfF0ulpAqPx9XTAxyso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:4e:01:81:9d:53:5c:d0:30:41:7e:5c:b6:6a:3a:04:d5:c0:
37:3b:a6:59:75:65:e2:55:91:e5:fa:01:39:94:6b:56:24:98:
13:92:4e:78:5d:c9:97:c6:9f:ce:a1:e5:25:8b:14:01:9f:7d:
ea:24:66:db:e4:e3:a7:36:81:4e:4d:b7:70:83:a8:52:36:44:
2e:ca:2b:45:8b:e3:3f:7a:3f:30:49:d0:19:c7:3b:df:fa:cc:
3f:f6:fd:42:63:f8:ca:4c:c9:94:6b:8e:fe:80:ed:e2:47:e5:
92:3e:6b:e2:9a:b3:c2:10:63:7c:6c:08:9f:f6:df:0a:1c:9d:
a4:81:14:c2:68:21:62:96:7b:d7:f8:bd:0f:a0:e7:97:93:e9:
a7:dc:b8:ad:4c:1a:c0:30:b3:57:8f:5d:56:26:73:97:8a:f4:
3c:74:fb:b3:0f:41:7d:de:84:de:ba:17:09:e2:e9:2a:f1:73:
88:50:5c:b6:95:ed:a6:03:9a:43:ab:aa:ec:77:17:99:08:67:
ab:50:3b:64:0f:25:25:f2:f1:d6:92:3d:45:2a:00:44:bf:26:
53:2f:30:41:35:53:0f:89:72:0f:2e:8e:ac:6b:21:88:1e:85:
6f:61:7f:1e:81:bd:55:7c:00:ef:a5:e8:12:e1:85:04:1a:02:
12:0b:cd:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:15:12 2025 by rpki-client