Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: pQb2V7y6bTmnk3J+RSstgEmAZQch32Lqz76GuD7+qBY=
Subject key identifier: EC:26:B5:F9:8C:6D:55:AD:4E:AF:50:F5:03:E7:CD:0D:8C:8B:E3:5C
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 01993C4C34DACCAAD9910DAF253826C88588
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 1158
Signing time: Fri 12 Sep 2025 05:00:51 +0000
Manifest this update: Fri 12 Sep 2025 05:00:51 +0000
Manifest next update: Sat 13 Sep 2025 05:00:51 +0000
Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: KY7E/QUqVjuHXyx2iUv3iE8AsYQb6lrJGO2mpnw35Kg=)
2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 21:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:3c:4c:34:da:cc:aa:d9:91:0d:af:25:38:26:c8:85:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Sep 12 05:00:51 2025 GMT
Not After : Sep 13 05:00:51 2025 GMT
Subject: CN=ec26b5f98c6d55ad4eaf50f503e7cd0d8c8be35c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:14:2b:71:df:9e:93:18:57:78:b2:b1:a0:d7:
5b:10:25:84:60:c2:aa:d1:8a:51:3a:a6:42:04:f5:
af:bf:9b:c8:95:62:3c:95:c9:a1:aa:b8:ac:1b:26:
c5:00:75:64:0b:23:e3:ff:98:0c:5d:dd:b0:d6:21:
58:48:27:5d:e7:5c:3e:c1:01:ae:40:b3:35:40:a7:
82:e8:ed:96:e2:73:7c:78:9d:53:8c:03:a5:17:7a:
09:48:93:45:95:d2:1a:ee:6e:66:d0:66:c2:3e:4d:
de:3d:9a:e9:b7:6c:80:0b:f0:d0:61:7f:b3:95:b8:
a0:71:aa:df:98:71:79:13:b9:ce:f7:46:6f:ba:5e:
3f:cd:9a:31:57:5a:34:7a:f4:70:bf:58:72:51:93:
ab:22:d2:66:50:91:57:03:50:6f:e0:39:6c:53:81:
e8:d4:be:e6:44:0b:9e:14:72:9b:08:fa:91:74:c0:
88:bb:d7:33:07:8d:91:f0:ad:65:7c:8c:c6:9d:9a:
e1:47:24:48:34:44:dd:af:97:7c:2e:9d:f9:31:7f:
db:da:b8:6f:d5:89:52:62:39:7b:90:64:12:b1:5e:
96:39:a7:71:e4:e6:95:0b:5f:05:72:cc:42:21:41:
ba:60:03:ff:5e:e7:df:13:81:a6:f0:e6:cf:9a:04:
30:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:26:B5:F9:8C:6D:55:AD:4E:AF:50:F5:03:E7:CD:0D:8C:8B:E3:5C
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:64:5c:7f:41:5c:8a:83:40:d0:a2:51:b1:f5:5e:3d:03:d7:
fc:ab:48:54:db:c7:9d:af:13:38:b8:01:44:93:1e:7b:f1:31:
fa:08:ee:e3:c3:b1:ad:6e:b3:72:d4:54:11:9e:c3:32:dd:4e:
ac:6d:0b:29:b8:30:d0:1b:a7:12:d2:c8:b6:4a:8a:c1:3d:88:
23:3b:8d:a1:9d:66:90:62:71:65:27:b4:86:a5:06:bb:03:cd:
65:7b:72:18:8b:af:34:d2:5d:1b:62:e9:49:a1:2a:72:78:21:
8a:c2:05:33:ff:b2:31:f3:f9:e8:5c:f0:96:bc:82:7c:a5:c0:
92:94:6e:41:05:17:24:eb:0b:f5:f7:32:56:ad:0b:74:bf:da:
54:3e:d5:1a:83:1d:dd:1d:fd:69:26:24:d8:a4:86:af:fc:c5:
8f:56:00:01:c2:0f:51:8b:f1:d6:09:71:b1:c1:a6:fb:52:91:
cf:2a:73:4b:07:ca:e9:67:b0:85:83:81:bd:59:c9:08:3d:02:
d2:0f:cf:64:d4:8e:06:c9:96:d7:67:79:e2:6f:86:b9:5b:76:
d1:8c:cf:51:da:62:c7:c0:59:10:f8:c2:df:7b:57:ba:da:fe:
8a:00:a1:41:05:e2:2e:36:bc:34:e9:37:58:59:be:95:58:d0:
21:ad:ae:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 12 07:09:39 2025 by rpki-client