Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
File: 1ITgzuV1xhkFP47isQBMxEL9LO0.mft (raw, json)
Hash identifier: 9zuJ8GXQxBEcygzEkgDwVu4z61ayZNsJabwqWiqOvQg=
Subject key identifier: 43:68:01:96:65:AB:EF:E3:39:EC:71:26:6C:D8:C0:91:64:18:B9:A7
Authority key identifier: D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED
Certificate issuer: /CN=d484e0cee575c619053f8ee2b1004cc442fd2ced
Certificate serial: 019935000342EC2B23C22B01C1B78B5B8B65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
Manifest number: 14A4
Signing time: Wed 10 Sep 2025 19:00:17 +0000
Manifest this update: Wed 10 Sep 2025 19:00:17 +0000
Manifest next update: Thu 11 Sep 2025 19:00:17 +0000
Files and hashes: 1: 1ITgzuV1xhkFP47isQBMxEL9LO0.crl (hash: 9qi8nxyXH9/ZJcwlQ8AFkoEJ4tyeS6/Usq+m9rv9Az0=)
2: LlAa--5nsX3tUHGAFZ_HSMFrn7I.roa (hash: 3b1C9Ph3SGavY+PSGpBTlLw28V2WqXhlaeYP73oghL4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:00:03:42:ec:2b:23:c2:2b:01:c1:b7:8b:5b:8b:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d484e0cee575c619053f8ee2b1004cc442fd2ced
Validity
Not Before: Sep 10 19:00:17 2025 GMT
Not After : Sep 11 19:00:17 2025 GMT
Subject: CN=4368019665abefe339ec71266cd8c0916418b9a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:40:87:7f:36:aa:93:4f:0f:25:2b:e7:5f:62:
6d:f3:db:ba:bc:05:33:59:b7:c5:58:48:f3:43:ee:
3a:bc:f2:66:61:a8:82:16:24:73:27:b7:1b:57:37:
51:13:64:89:fc:dc:73:06:ea:af:3f:6e:bb:98:a6:
37:38:35:aa:be:10:55:dc:04:a7:fd:ed:ee:fd:4c:
ca:30:57:68:ca:10:3c:32:86:a3:9d:a3:f8:5c:79:
44:a4:68:2b:ef:5d:e9:9e:59:a9:c4:12:59:6b:e1:
bd:03:51:c7:58:c8:6f:26:60:50:30:5f:9b:55:8e:
68:af:16:f4:30:65:a3:c4:36:72:be:3d:0e:44:eb:
e5:32:b1:15:4c:c4:35:31:1f:4c:cd:7b:30:d0:3a:
67:ed:27:f0:95:ef:50:1c:f4:0b:ca:26:1f:69:7f:
17:fe:b2:23:4f:78:23:11:33:79:05:ed:a7:13:3d:
30:d8:0c:d5:38:1b:0f:26:79:c8:dd:20:70:2c:d5:
20:c3:31:be:68:3e:c9:72:90:24:a1:ec:fa:d2:17:
53:79:a9:05:83:da:f8:9c:b0:ee:61:e8:11:b2:ae:
3b:42:bf:a6:ef:71:94:fb:27:c7:cb:0b:d1:e8:da:
00:56:c8:d5:8c:f2:03:42:3c:40:a2:48:3d:f7:52:
77:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:68:01:96:65:AB:EF:E3:39:EC:71:26:6C:D8:C0:91:64:18:B9:A7
X509v3 Authority Key Identifier:
keyid:D4:84:E0:CE:E5:75:C6:19:05:3F:8E:E2:B1:00:4C:C4:42:FD:2C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ITgzuV1xhkFP47isQBMxEL9LO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7847fb-f55a-4995-8531-ec0262ab33f1/1/1ITgzuV1xhkFP47isQBMxEL9LO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:c6:b5:c6:df:78:15:78:79:45:56:c8:c6:02:fe:db:08:d9:
a8:c3:f1:23:97:84:1b:12:01:fa:79:b7:93:d3:a6:f9:68:95:
ca:98:f4:19:37:11:b8:9f:3e:9a:ca:71:44:ba:df:4a:70:cc:
dd:92:21:89:20:38:4a:7e:01:00:85:65:89:2b:a7:5e:d5:b6:
e8:1d:74:87:6e:87:19:42:7d:38:2e:4b:8a:59:f8:34:ed:fd:
fd:b9:26:d6:67:51:76:0c:30:30:1b:3d:1b:9a:1d:37:7d:7c:
4a:06:1e:17:22:c3:47:29:49:b9:c8:39:17:fd:bb:f6:df:ad:
4e:c6:9e:49:71:86:40:89:16:52:b4:fb:3d:cf:e9:a9:1c:ed:
55:e2:a3:fe:6d:b2:59:47:07:f5:09:c6:6e:1c:73:7f:58:c8:
d0:6c:9c:a5:bb:c2:2c:ed:a3:78:8f:c1:b4:ee:93:c5:9e:a2:
71:ce:45:b9:6d:1b:c0:69:37:dd:b6:21:d4:05:20:91:60:8b:
e7:77:e8:1c:3b:6d:63:79:f1:ea:d0:89:14:31:f8:7c:d8:d6:
53:f0:36:e1:51:8b:11:33:be:a8:bd:48:b7:f4:3b:a9:01:39:
eb:94:80:a5:bb:f8:f1:dc:fb:0a:3c:e0:fb:47:79:6c:2e:96:
44:1c:72:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 03:18:49 2025 by rpki-client