Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: nOAp28XZuZDI9HMOBeA8o2lcCqVNCE+GPeU4E2qrjCg=
Subject key identifier: 04:25:8C:63:49:31:8D:6B:CF:C1:40:BB:A7:8E:6F:B2:31:21:49:45
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 0198C6EE01EDF359DB793695A19E63360609
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 09A1
Signing time: Wed 20 Aug 2025 10:02:23 +0000
Manifest this update: Wed 20 Aug 2025 10:02:23 +0000
Manifest next update: Thu 21 Aug 2025 10:02:23 +0000
Files and hashes: 1: 2N-Ad_PjuCdbWMhOkKca0e_4aH4.roa (hash: mX5PwA+5z3mRrepVsPYas6Uu6jFtb6sejxlwArRN7qw=)
2: 9qSGcGsaAT-Orj-BviLbbFBnobc.roa (hash: KGQdMGZUYXqZM3Cup0R+gwjVZv7t7VL1nDYpfpe2mMo=)
3: C6v3z8kGbpGtAYhEGvbIA9POeJ4.roa (hash: dVnxKmSOxpULCnBph8ARAXzts2lzvI7njmrNqMweylU=)
4: Q3cz4EEEExax1nv4wtLZZPPEgSk.roa (hash: ML1oxtfPutOEqYHFMGiG3+QvRpl8345MdKNoHGmCBSQ=)
5: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: 5UDeZ1qk7knsar0+6PUb6OMRHbSvmDYTRyM1Vtu5yeM=)
6: raR6qfZ5L-9hzvpYVK9us-1wIug.roa (hash: ARfa5iwtjYV/gUtHJTALBEg3MfK/IBejlaZvsXofCl8=)
7: tBuToTypjDQ6u5RK5DBD-fEJHi4.roa (hash: iFrIeR1iIdBgXE0Q5UKDG34iIF6/jJkNwFYF+l/o72M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c6:ee:01:ed:f3:59:db:79:36:95:a1:9e:63:36:06:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Aug 20 10:02:23 2025 GMT
Not After : Aug 21 10:02:23 2025 GMT
Subject: CN=04258c6349318d6bcfc140bba78e6fb231214945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:45:36:c2:59:f2:0b:1a:7b:5c:fd:29:55:f6:
1a:66:24:26:02:65:09:7c:97:3a:f2:71:b2:20:cb:
af:7f:b9:d5:04:c3:c7:3e:f1:c6:e4:ff:8a:ba:79:
63:5c:c9:ea:25:09:22:ca:69:79:06:62:7e:85:40:
6b:dc:95:b9:f3:ee:b1:d2:70:ce:fc:b0:90:8a:46:
d5:7d:85:0d:bf:20:f7:b1:73:6e:e4:36:94:83:17:
15:67:4c:7a:73:8d:16:b0:74:02:19:f4:41:0d:db:
eb:3e:fb:c9:f3:b3:79:9f:ac:8e:71:75:aa:2e:82:
48:25:dd:01:9a:9d:87:5f:7b:72:cc:a3:c1:69:e5:
5b:80:f9:6e:f4:b2:ee:53:37:12:28:5c:45:b6:82:
bb:bd:ad:fe:57:51:24:86:01:5d:30:90:35:4b:72:
6d:55:21:c1:d8:f1:85:03:25:fc:e9:81:80:42:30:
2c:dc:03:65:70:81:1d:b3:80:80:20:fd:a9:06:ba:
83:35:d6:92:0a:67:c9:6c:4b:02:9e:b8:e1:9b:79:
1e:e7:d2:67:ae:20:48:a5:26:c7:2c:9b:eb:cc:ef:
80:ba:bb:84:51:b4:f6:3a:23:88:b0:6d:94:4e:2a:
01:45:d1:40:68:76:d1:96:69:31:a4:ee:87:e2:9b:
d7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:25:8C:63:49:31:8D:6B:CF:C1:40:BB:A7:8E:6F:B2:31:21:49:45
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:a0:60:a5:27:83:95:c6:19:9b:75:0c:bf:9e:6b:ff:c1:03:
63:86:2b:3d:ca:33:91:c1:da:58:43:49:ea:aa:60:a8:00:66:
c3:63:ee:05:90:dd:6d:17:00:a5:2f:c8:ac:d7:ff:05:a3:46:
fe:1a:0f:dc:ad:26:8d:02:82:55:d5:3f:77:56:51:d6:f0:27:
4b:db:ba:e7:77:c9:ea:f7:bf:d3:3d:70:fd:cb:c1:2f:91:89:
30:42:27:12:e4:70:33:40:44:db:86:c8:42:3a:db:68:16:da:
14:60:ee:ed:81:e7:3f:00:45:e7:8c:6e:a3:4b:42:26:08:12:
03:69:22:b8:82:0d:c7:97:4b:3b:a4:4b:c3:ce:ae:6c:30:87:
07:c9:2e:30:2b:76:1c:40:ab:79:62:3b:c5:51:38:80:91:06:
ae:5f:5b:91:db:7b:47:1c:64:f0:a3:4b:12:ac:82:08:9f:46:
d1:c9:fa:18:79:f7:50:e9:4a:37:80:f2:7c:f8:bf:a9:ba:87:
e8:b5:c9:a3:22:86:5f:ce:1d:3c:d4:74:8d:84:7b:7d:88:c0:
15:ae:06:9c:2d:b7:73:a2:54:19:c2:84:21:2d:9f:fe:a8:2b:
9e:2a:9d:b9:23:f2:58:b5:b6:fa:45:8f:31:9b:8d:71:cb:4c:
34:8b:34:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 15:27:11 2025 by rpki-client