Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft
File: iawKy_23onTvNsFvWGCtoqJHBpc.mft (raw, json)
Hash identifier: 1dRJEGDQzpXYJA/dP0hrqsvpS6oAjWjXDnDe1TtvGU4=
Subject key identifier: F6:BB:06:9F:19:4C:FA:33:2B:66:FF:1A:99:D1:D2:32:60:45:86:93
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 0199307ED3AA1ED5BF9BA2B2C1D0A49B0406
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft
Manifest number: 1667
Signing time: Tue 09 Sep 2025 22:00:41 +0000
Manifest this update: Tue 09 Sep 2025 22:00:41 +0000
Manifest next update: Wed 10 Sep 2025 22:00:41 +0000
Files and hashes: 1: 5igPCN9X0bgxG5uECn6Ix_J7HO4.roa (hash: pevu2Sy44NywHg7YV7OVl6vYE/WCVHhk1qeVOAIs4Q0=)
2: AbKOh9gpXgwFSloJdXfaWSLCFyg.roa (hash: Q+kVnk5rKEmbqNEXqZoiJZUiyaqs6rvEUwmrzWgFMQI=)
3: JyckXigwYGV__68AUCYD52rnXo0.roa (hash: SbkH6tPWhWrW/o78zmYE9oC7rLfxWmyocNFH2s//I5E=)
4: LZXNMAIh5rxJ27RzY3-HOC44ze8.roa (hash: a//LkQjUfY/J/vByRTwCkOeaTuhCCphW4WYvKNJGdac=)
5: NCM3clu2kUX1FywCV-rdbSiyAwg.roa (hash: lqUVwqTm2F0EVVgAq9uFKVlQ5ZkdzUvkJ/HuRhL+GWA=)
6: YF5-v-73V9jzqTCek3KrFz6bZtE.roa (hash: 4qF8xu38DQT/RQNxkMatdlrCh2ELJ5b3ZXmFLGgGvJQ=)
7: dJyo5maMFYG06CB60KewP8-LNEc.roa (hash: LO26kgSXxCz0IxFKcAaH1ZYq5V5rRxtBlLjShWu3YvU=)
8: iawKy_23onTvNsFvWGCtoqJHBpc.crl (hash: e6G9GU/jecAq0DQ/PsOUFL3Bz2IujqOl35HnI9xuH+g=)
9: kALeFOqdoUlsrrEA4gEeCsqdb7U.roa (hash: CGGNVlWIfGNVOdkVdR2nL+rohybhJ6hPwgX68rdZVTI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 17:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:7e:d3:aa:1e:d5:bf:9b:a2:b2:c1:d0:a4:9b:04:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Sep 9 22:00:41 2025 GMT
Not After : Sep 10 22:00:41 2025 GMT
Subject: CN=f6bb069f194cfa332b66ff1a99d1d23260458693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f2:b3:c7:96:37:dd:d1:cc:99:cd:76:1e:8a:
96:5c:81:6d:9d:d6:a8:32:9e:d3:ca:c5:d5:f7:8c:
7e:bb:75:7c:b5:2a:d9:a2:db:2f:59:e2:40:2f:f4:
6a:d2:68:5e:5b:21:ce:ac:9b:c0:c9:33:ce:6a:ba:
5e:25:15:7d:fb:4b:6d:9b:d4:9c:d9:c2:0e:ed:60:
00:94:68:02:ba:74:2c:f9:b0:be:ce:b6:93:8b:8c:
77:6e:c7:7f:55:c9:50:56:aa:36:22:f9:5e:aa:b6:
68:1a:6b:f8:3a:05:1f:e5:91:5e:fc:be:8d:2f:7d:
81:b8:51:72:35:dd:c8:2c:d1:ec:3a:1a:97:1c:56:
5c:13:6f:22:de:82:cc:6b:c9:f6:38:f4:65:4f:6b:
a2:d8:a7:15:ad:f2:31:70:4a:8f:2c:b8:54:69:5b:
ad:19:03:2e:4e:8d:f3:c0:99:75:a4:36:e1:18:ab:
b6:77:9a:97:4e:52:5e:bb:b7:2d:b1:7b:51:52:67:
12:6e:ce:6d:d8:52:e1:2b:11:b9:67:dd:2f:5f:e4:
c5:3d:c0:4c:b7:e3:2e:23:ba:b9:47:32:aa:cf:9f:
f2:8a:b5:53:95:ed:7f:7f:59:68:02:e2:25:c7:35:
07:53:36:8e:9c:c6:bc:a5:7f:aa:d7:a1:dd:24:4f:
f2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:BB:06:9F:19:4C:FA:33:2B:66:FF:1A:99:D1:D2:32:60:45:86:93
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:50:86:69:7a:d1:60:ab:e0:63:bc:19:8f:d5:a7:3c:46:83:
3f:88:05:cd:8c:a5:ec:46:ec:6c:60:6d:68:df:9b:b9:a4:f5:
0e:cf:9b:9d:49:33:0e:25:83:51:94:21:a5:95:fb:cd:40:ce:
04:57:65:be:db:28:c6:37:6e:e3:f5:33:6a:18:11:46:d6:c4:
1a:4f:98:33:c9:e2:8d:f9:9a:e9:1f:2a:93:cc:76:7c:25:0a:
38:95:63:c5:34:5b:a3:e7:10:1f:a9:39:ff:e5:92:21:f5:53:
07:7b:bf:d3:a5:58:8a:c2:63:3b:f0:f2:4a:65:a2:bf:e0:8b:
51:34:67:b1:9a:10:51:9b:c9:cc:56:bb:88:b8:87:1d:5e:a2:
c0:2e:fb:08:38:64:0f:a4:1d:cb:89:41:e0:17:06:c7:9c:c2:
fb:c2:51:25:3e:dc:82:ae:c3:54:f1:bf:53:3e:de:12:3e:d9:
55:55:11:02:f3:a9:35:73:3f:30:0f:27:eb:80:82:4d:64:81:
7a:70:6d:55:b2:6a:46:a8:c1:4a:b0:5d:3a:aa:df:ee:cb:cb:
a0:95:2a:5e:7f:c1:d8:5f:0b:8d:5b:ab:d0:64:9e:17:22:d1:
db:5b:5c:8a:62:b4:f8:0d:0c:7d:f9:aa:3f:f4:45:a6:b5:4e:
4a:b3:88:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:04:30 2025 by rpki-client