Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: rzbQGvdv3iX3zCQuIQ1avS0IzAqkBBJxVv0fpAe5HlA=
Subject key identifier: B7:41:E1:FC:87:EC:02:25:6F:9C:DF:91:85:2E:E3:22:45:25:BE:41
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 0198481B92F48A6718345310F8F617F9F1DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 09E8
Signing time: Sat 26 Jul 2025 19:00:23 +0000
Manifest this update: Sat 26 Jul 2025 19:00:23 +0000
Manifest next update: Sun 27 Jul 2025 19:00:23 +0000
Files and hashes: 1: RZMmAomJrqs0yCU-Sl6pSFt5lLQ.roa (hash: mHTuz89sEZswLAvVyf4aCavMINMyLcZOi1mRW8tq0vE=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: 04Utc4YVBFWGKWSo6AKARv65zRxxh5sdxyaT5pOMxjY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:1b:92:f4:8a:67:18:34:53:10:f8:f6:17:f9:f1:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Jul 26 19:00:23 2025 GMT
Not After : Jul 27 19:00:23 2025 GMT
Subject: CN=b741e1fc87ec02256f9cdf91852ee3224525be41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d0:8a:a1:a3:8a:9e:cc:b5:06:72:b7:79:a8:
c1:ad:b0:41:de:4d:3a:ea:b6:fc:88:59:2c:f0:4a:
31:28:45:b1:c8:df:f0:79:fd:c5:bd:91:ea:50:a6:
00:29:78:17:cf:bf:c3:ca:a1:a9:e3:85:c1:cc:ac:
33:68:d6:45:07:1d:52:06:d0:23:97:60:3b:f1:46:
22:92:01:f2:59:f2:dd:44:40:e4:da:f5:ad:20:af:
4b:40:4c:74:bd:b1:0a:71:9d:90:01:a5:ad:0e:16:
04:cf:cf:cf:ae:a6:95:c4:c0:54:c3:83:1a:43:19:
49:18:13:ea:d2:67:4a:3e:8b:63:48:49:a8:fe:5a:
c0:2b:ad:1e:76:94:9b:2e:38:55:a7:a8:f0:e3:74:
d0:1d:3c:1c:57:26:9b:9d:f9:72:ad:58:78:65:56:
56:70:18:f2:cb:5a:98:bc:e8:2e:23:88:54:f7:e1:
74:ac:b8:db:13:08:0a:5b:02:07:f7:1d:df:fc:63:
33:07:2c:4e:33:be:1b:69:04:f6:85:55:f0:72:d6:
b7:c8:11:4c:ad:01:b9:00:53:1b:01:c5:6d:3e:0b:
17:60:1c:1b:e6:8b:2c:39:be:e3:69:3d:f0:63:91:
6c:fd:6a:a2:f0:fc:a3:c1:f3:bf:72:93:13:d8:a4:
9c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:41:E1:FC:87:EC:02:25:6F:9C:DF:91:85:2E:E3:22:45:25:BE:41
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:d7:75:cd:4c:44:52:d9:ef:4b:32:b3:db:15:b6:aa:cb:9f:
f7:09:03:a4:01:79:e4:25:18:35:3d:63:1b:06:80:45:06:4f:
ee:71:8b:00:15:22:29:38:78:95:84:7b:0f:18:52:76:14:58:
f7:57:3e:b7:04:77:f2:93:36:fd:aa:b6:a1:44:ca:bf:55:12:
b3:70:55:8b:6d:79:38:81:58:5b:5c:2d:69:ab:b5:d3:d8:9c:
cc:21:a6:cb:a1:bc:58:14:cf:e6:17:c5:4c:a2:f0:70:4d:f1:
12:f3:a2:09:6d:e2:0c:3d:2a:f1:cd:35:29:ba:f0:fc:56:f3:
39:bb:7e:05:2e:6c:cd:9d:7c:91:58:c7:4f:25:1b:c9:aa:f2:
81:e1:9a:10:b7:34:bd:b5:ae:a8:5e:f3:c9:22:a8:19:68:ea:
fa:0a:8d:16:00:e0:4a:3c:47:ac:1b:17:c1:7d:a8:07:1e:8f:
38:25:5e:31:b0:bf:35:cf:b6:22:1f:16:83:2d:04:2e:74:05:
f6:c7:22:c0:ff:0d:62:ad:b0:a9:b4:29:b4:1b:29:c0:54:93:
90:c3:6b:dd:2f:89:cd:02:bb:46:d5:0a:06:1f:c8:49:b7:49:
0e:5f:58:9b:e6:4e:04:cc:68:10:b0:e0:ad:4b:25:43:1c:e2:
e2:56:48:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:25:11 2025 by rpki-client