Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier: PscQWC8221xa9skvGEs8UowMy71Z+GqjSUr9qW9du20=
Subject key identifier: F1:D3:99:F4:38:05:14:9B:B9:EF:10:E2:4D:E0:A5:54:89:A1:52:6B
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 0199183F547873AF588A2DBBC25BAFAEEF33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number: 10F9
Signing time: Fri 05 Sep 2025 05:00:27 +0000
Manifest this update: Fri 05 Sep 2025 05:00:27 +0000
Manifest next update: Sat 06 Sep 2025 05:00:27 +0000
Files and hashes: 1: 1g597y06foQbOFcS_h93SwkhNOQ.roa (hash: TZdC67NT8fkd1drCN7n7TEHOt/q1UG1cqUfoMBev2T4=)
2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: ih0Q90EgJvn6cMCqibIS2sCYJdkTDtbfrW3M66gJacc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:3f:54:78:73:af:58:8a:2d:bb:c2:5b:af:ae:ef:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Sep 5 05:00:27 2025 GMT
Not After : Sep 6 05:00:27 2025 GMT
Subject: CN=f1d399f43805149bb9ef10e24de0a55489a1526b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:78:54:8b:e8:9c:33:0c:a7:85:07:9e:ec:e2:
3b:33:3c:7f:27:fd:ce:cb:23:a1:05:09:6c:72:39:
cb:89:8c:77:af:13:bb:09:9e:a9:80:96:e8:d5:ba:
36:d7:f8:ca:82:0c:ca:4c:c3:c5:52:e2:86:a0:24:
9a:e1:7a:5b:82:1a:13:d9:95:d0:e0:47:82:f8:34:
ec:93:d2:9a:0f:82:9b:5b:a4:1e:10:9b:78:02:86:
fd:0c:ea:20:de:b7:73:84:6a:f5:33:36:df:16:a8:
e8:cb:52:a0:4f:c2:6a:cb:0d:64:a8:17:2c:24:01:
fb:e1:d9:8c:16:da:1f:9b:26:4f:30:bf:30:3d:b6:
e1:8c:c6:67:b4:b5:9b:e3:71:26:0d:0b:0e:d0:2a:
e2:4f:be:4f:24:9b:5d:dc:d3:d0:ed:a2:49:67:44:
83:5d:b8:9e:0b:5d:84:3f:1b:cf:dd:b4:01:be:59:
37:7f:2e:a8:92:a9:57:d4:fa:72:13:dc:3b:c1:8b:
15:ca:c5:65:2d:2e:66:81:3d:41:28:c5:e2:7d:6b:
bf:5b:57:0f:3f:c4:5b:27:36:6e:bb:ad:9c:53:9d:
77:d0:e8:7f:c6:b9:64:b7:9c:13:35:0a:23:6b:8f:
0d:57:13:51:5d:0c:e2:56:7c:9c:74:58:8a:56:18:
01:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D3:99:F4:38:05:14:9B:B9:EF:10:E2:4D:E0:A5:54:89:A1:52:6B
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:95:63:98:fa:e3:61:4b:56:60:98:e2:ed:4c:d7:f3:31:7d:
12:14:c6:8d:34:0f:b1:33:7f:40:34:22:74:97:cb:1e:86:7d:
7b:7a:01:8e:c1:d8:0f:6a:38:7b:05:24:f9:af:83:a9:ff:bd:
48:31:5f:8d:af:b2:05:02:23:6a:ff:74:74:a2:ce:01:37:0b:
42:23:75:ae:f7:86:81:c7:b2:be:c8:e2:67:fc:92:b8:a7:40:
fc:88:45:9d:33:1a:94:58:80:9b:17:85:4a:b1:fe:79:0b:5b:
d5:aa:61:8d:86:8f:4c:74:c6:c3:50:d5:b3:08:04:0b:3b:70:
4f:46:be:9f:76:f3:8d:27:9c:34:d2:1e:92:2e:4b:6b:a9:c0:
b1:a2:e3:70:ff:3f:c2:f8:89:77:09:02:d2:9b:9a:90:26:d1:
2a:a4:7b:ab:0e:8c:2d:b0:c3:4c:2e:36:86:2c:ea:b7:00:5c:
cb:16:b5:2f:43:40:51:2f:9b:52:82:26:6f:86:a8:97:23:5f:
ed:97:34:02:c0:b8:4f:6e:92:69:52:03:9e:0c:97:db:01:ba:
54:34:37:e4:75:66:ce:da:1f:3f:ef:42:d1:d4:d7:c7:e3:18:
cf:5a:90:d6:69:a7:68:f0:b9:e8:0f:b8:ae:fc:d1:61:50:fb:
c8:3b:e9:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:04:32 2025 by rpki-client