Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
File: iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft (raw, json)
Hash identifier: AF0JWWeJnrsldUHHLUGYQZ6v+JF3R9yvXp6T8/05ep8=
Subject key identifier: 3E:81:69:48:0D:AE:0A:00:45:BD:BA:97:96:C6:8D:7B:5F:2A:42:7A
Authority key identifier: 88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
Certificate issuer: /CN=88a780738b853acffbabdb23914c50e36421f773
Certificate serial: 019933EDA7960884B476D585AEEB83E76F7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
Manifest number: 167C
Signing time: Wed 10 Sep 2025 14:00:36 +0000
Manifest this update: Wed 10 Sep 2025 14:00:36 +0000
Manifest next update: Thu 11 Sep 2025 14:00:36 +0000
Files and hashes: 1: 0JBSKBByojNYZjOoZlphUB11hQs.roa (hash: 9bDpXvSUlNPWWMoYaJSQ0SO0EuZKnPkwfl5l8GKFytk=)
2: aKf7cpyzNQSyfw8b7-Pr38WCYnc.roa (hash: oRGD5ClevpyjAOYjV/aBq4YhQP42jPwVRjMhzooXQlg=)
3: iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl (hash: U7M2q35ZBbywqyOMLelnFRuDQzMclz3/jmE7f6Hawvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:ed:a7:96:08:84:b4:76:d5:85:ae:eb:83:e7:6f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a780738b853acffbabdb23914c50e36421f773
Validity
Not Before: Sep 10 14:00:36 2025 GMT
Not After : Sep 11 14:00:36 2025 GMT
Subject: CN=3e8169480dae0a0045bdba9796c68d7b5f2a427a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a7:96:79:41:09:e6:80:ec:10:82:7c:d6:3d:
32:be:bd:34:39:54:33:64:7f:c0:9c:b2:75:17:34:
84:fe:f9:ba:9f:e3:ec:68:57:15:6c:a2:50:8c:f8:
f5:c6:4f:e4:30:1b:e3:de:59:61:f6:26:19:3c:22:
8b:64:72:00:dd:a1:8b:72:1a:4c:bf:dd:39:ec:a0:
18:9c:cc:c6:cf:60:8d:dc:09:fa:de:f8:e8:66:0e:
e0:25:3f:64:05:f6:63:20:6d:58:71:fe:1b:1e:59:
56:a9:f1:c4:b0:b8:c8:7a:60:63:9b:25:fe:de:c0:
bb:3e:b4:fb:1c:e5:97:a5:2d:67:b0:5b:66:85:7e:
38:e0:bd:d2:94:ea:69:65:59:5f:61:46:a0:77:4c:
dc:c6:34:b0:44:72:73:7d:42:ce:6e:c3:ca:97:7a:
86:94:15:eb:d8:19:98:44:66:6f:e9:bc:2d:2b:7d:
d9:48:e8:16:d2:91:fa:aa:7f:a5:dc:a6:05:25:c0:
77:84:98:5c:32:75:07:1f:69:3e:12:1c:81:2d:df:
72:d2:bd:f6:91:11:a8:a6:a7:72:9e:04:25:5c:ed:
27:89:fb:78:ac:b5:04:18:e2:d3:3a:f6:18:d9:38:
7d:2b:e0:a3:93:4c:fe:3d:4c:ef:12:cd:5d:d3:00:
fd:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:81:69:48:0D:AE:0A:00:45:BD:BA:97:96:C6:8D:7B:5F:2A:42:7A
X509v3 Authority Key Identifier:
keyid:88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:e2:77:47:95:40:27:57:f7:8d:fb:4b:7b:6c:03:e5:da:d9:
ad:8c:cb:7d:82:79:34:98:46:d4:fa:6d:bf:0a:3d:0e:f6:05:
44:ad:5d:d4:65:fb:76:98:1d:5d:4d:45:65:b7:ba:6a:82:fe:
77:91:22:3e:10:db:66:ef:c4:6a:95:b3:eb:7f:ed:16:3d:a2:
8d:54:c3:b4:0b:73:19:bc:24:49:1b:02:ef:a0:a9:0f:07:6a:
18:25:05:ac:a1:90:15:bb:0f:57:86:0e:21:59:32:66:9f:f1:
dc:b4:3f:ef:37:f3:c0:0e:0c:dc:b9:31:57:f5:eb:2c:ad:02:
4f:65:7f:51:7c:25:67:2d:6c:32:3e:98:ef:72:54:c3:34:1c:
27:be:87:eb:3a:7b:47:03:50:dd:6c:36:e1:b3:e5:e2:c9:bf:
c5:03:95:12:97:28:23:0f:e2:5d:1a:4a:de:32:5a:8a:eb:d2:
f6:c7:d6:f9:ce:aa:97:66:16:13:4f:6c:de:e7:49:3c:f1:01:
63:2f:ae:00:ba:b1:b9:95:f6:c4:a6:03:c4:8b:d7:83:68:f0:
2d:df:7f:2e:26:35:54:63:88:df:ce:99:37:28:9b:ff:90:7b:
d9:46:7c:f5:8a:aa:1d:ec:d0:a9:03:87:04:64:a4:d2:2c:b8:
1c:fb:1d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 18:30:30 2025 by rpki-client