Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
File: idaknSMAf7sSRxkvu3vZgus3M18.mft (raw, json)
Hash identifier: 5BZZECggxk4Qo8hvNqI5Rj3Ves4hHGAreqT/EpP25/g=
Subject key identifier: 3B:42:7A:CB:ED:FE:C5:40:DB:C7:26:D8:F4:44:B2:37:A9:2F:FB:E9
Authority key identifier: 89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
Certificate issuer: /CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Certificate serial: 01992CD8C5D649FDFE6C2049D453FDBAD903
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
Manifest number: 017C
Signing time: Tue 09 Sep 2025 05:00:27 +0000
Manifest this update: Tue 09 Sep 2025 05:00:27 +0000
Manifest next update: Wed 10 Sep 2025 05:00:27 +0000
Files and hashes: 1: h5XDYzeHNRC78pQldSdBc3wtmlU.roa (hash: y/jCUDtK6aEdyycsVox6EyAhTQt3+YacMPTfw4ggZeM=)
2: idaknSMAf7sSRxkvu3vZgus3M18.crl (hash: DT7DR4CICRwUuayMrN5jU9RhkMZ4bjutE7W4kSRHQeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:d8:c5:d6:49:fd:fe:6c:20:49:d4:53:fd:ba:d9:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d6a49d23007fbb1247192fbb7bd982eb37335f
Validity
Not Before: Sep 9 05:00:27 2025 GMT
Not After : Sep 10 05:00:27 2025 GMT
Subject: CN=3b427acbedfec540dbc726d8f444b237a92ffbe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:57:45:29:31:55:73:17:64:9f:92:b4:76:19:
1d:58:4b:38:f4:07:6e:a5:fd:82:7d:24:3a:bc:c6:
73:2a:43:4f:09:c7:a8:6c:70:50:4c:60:98:ef:ff:
a8:da:b1:5e:ce:3d:e9:a4:26:c7:45:76:5b:a4:dd:
59:c0:f1:ca:01:f7:08:2c:32:20:64:fa:02:f7:74:
a4:ef:c6:5c:ee:f6:34:cb:3f:f6:0b:19:a9:4e:ca:
1a:54:f1:d7:7b:28:5a:70:2b:37:3b:0d:fd:c7:b7:
46:0a:ee:0b:34:bf:cf:30:e5:ae:7c:74:90:8b:c0:
32:8d:1d:0b:42:3c:31:9d:42:3b:f9:d7:2a:cc:80:
a1:e1:cb:6e:cc:fc:1b:fc:86:aa:27:b1:8c:43:ed:
fc:f2:4e:a6:7c:e2:a9:73:a2:1a:5e:99:8b:d9:60:
19:af:85:8f:dd:20:a9:d8:ac:ac:c2:b1:ff:be:04:
fc:3e:b2:ee:8e:8e:81:8c:a2:93:99:0d:d9:91:55:
b5:0d:e1:cd:56:5a:89:ba:f7:f8:53:f1:9c:b0:b4:
fc:ef:20:49:c8:87:20:1f:11:e5:f4:fa:27:94:74:
18:fa:4b:c6:aa:d5:39:f0:63:83:77:c6:6f:a6:8f:
08:d4:01:8e:11:6f:e9:6c:83:19:02:25:e2:bf:c8:
2e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:42:7A:CB:ED:FE:C5:40:DB:C7:26:D8:F4:44:B2:37:A9:2F:FB:E9
X509v3 Authority Key Identifier:
keyid:89:D6:A4:9D:23:00:7F:BB:12:47:19:2F:BB:7B:D9:82:EB:37:33:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idaknSMAf7sSRxkvu3vZgus3M18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/14099a-e2da-4f6a-b5c4-6fd751de717a/1/idaknSMAf7sSRxkvu3vZgus3M18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:2d:95:06:b0:14:1e:38:9c:e8:76:6d:b4:c3:61:d2:e3:84:
af:ea:90:57:3d:56:54:d5:3a:7b:96:a7:b4:f6:5b:f0:10:a4:
b5:28:d0:a8:7c:0e:19:24:f6:d6:d8:f6:8d:29:5e:c1:4d:59:
ed:c0:1e:34:e1:2f:95:ca:3d:a3:1e:f7:c7:c1:25:b0:10:65:
6c:79:de:51:ab:a4:c5:9d:f1:3e:81:75:a5:42:e1:72:b5:86:
a5:0c:63:65:64:9a:78:7c:04:9b:28:e7:fc:b2:a8:2f:48:dc:
0e:22:88:20:85:04:f8:69:09:73:43:3d:48:fb:04:8f:2f:b3:
f1:1c:61:2c:c1:a0:60:78:48:92:b9:ad:e6:1e:46:59:03:71:
fe:12:18:0f:61:ac:4c:5d:5c:41:8b:1d:f4:88:3d:b5:83:31:
c3:05:83:c1:d1:1d:52:c4:c4:0b:ee:af:c9:39:1d:3a:15:54:
dd:c7:f3:db:46:bb:3d:95:c0:92:95:cc:65:b9:fa:6e:bb:86:
87:88:eb:43:b9:ed:8c:d9:6d:be:e0:b4:e6:fa:88:05:fc:03:
9c:2e:10:de:4a:da:87:9a:45:48:9c:82:ba:5c:be:b7:5c:57:
6e:df:fb:69:41:e9:a2:35:99:20:03:8b:c7:57:45:cf:f9:24:
54:01:82:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 13:30:43 2025 by rpki-client