Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
File: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft (raw, json)
Hash identifier: 5whvDbpzTt5onxQGmDsXd3tJ1MgJ6ggjqjDLZ4e396Y=
Subject key identifier: 52:76:3B:CA:A0:C4:0C:6D:7F:98:F7:50:48:11:75:E2:EE:C7:AA:78
Authority key identifier: 21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
Certificate issuer: /CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Certificate serial: 01992255743FC09D6EEEA9C777592137A6AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
Manifest number: 0634
Signing time: Sun 07 Sep 2025 04:00:49 +0000
Manifest this update: Sun 07 Sep 2025 04:00:49 +0000
Manifest next update: Mon 08 Sep 2025 04:00:49 +0000
Files and hashes: 1: BkDrM4-atcp10Br--qbvg_yK1zg.roa (hash: OQTXLqdYWvwdj8zXSXiFu8x5dJlCSPxgy4/Qhi1Yohc=)
2: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl (hash: prRvPPbOgvUtr8c9h9t3p3ZiO1lTyC4sxfhlwFSW8ag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:74:3f:c0:9d:6e:ee:a9:c7:77:59:21:37:a6:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Validity
Not Before: Sep 7 04:00:49 2025 GMT
Not After : Sep 8 04:00:49 2025 GMT
Subject: CN=52763bcaa0c40c6d7f98f750481175e2eec7aa78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:93:4a:55:13:20:fe:70:78:fc:90:e3:83:1e:
15:65:49:9c:c6:27:c2:3f:e9:2d:fe:d1:0f:aa:f4:
a1:14:a8:3d:5c:7a:75:7d:86:f3:13:2e:c5:ae:b2:
91:93:6b:b0:bb:66:b0:0c:4a:3c:e4:47:83:47:af:
4d:0a:0e:a0:07:ac:04:24:e4:4a:44:1b:9e:5d:07:
d6:8f:11:2e:07:85:76:ac:d1:01:c2:06:10:9a:03:
6f:83:55:76:46:1d:8f:d1:8d:1b:33:f5:b4:76:70:
2b:b2:4b:a0:c3:a5:07:47:32:24:12:06:5a:24:a9:
b9:9b:ba:33:fc:19:fa:cf:6c:ab:5e:24:40:53:83:
e3:f1:a4:ec:04:e6:e3:c4:27:4d:e9:35:cc:ac:22:
e4:9f:d7:5f:a7:03:9b:c4:ff:b3:d5:01:9a:3a:a9:
7f:f9:6a:4d:31:10:d8:4e:3a:08:c3:fd:2b:06:38:
54:b3:e1:16:50:0d:97:7b:d0:b6:4f:94:64:f0:87:
bb:e2:ae:ef:42:31:fb:9c:13:2c:e6:2d:b2:0b:95:
4b:b9:bf:cd:eb:23:a3:89:90:a1:8b:c0:6f:fd:ab:
77:39:7b:ef:1d:bc:d2:15:00:71:12:2b:cc:f4:a1:
45:34:1d:da:c8:5e:87:29:58:bc:72:4b:b7:f2:fe:
eb:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:76:3B:CA:A0:C4:0C:6D:7F:98:F7:50:48:11:75:E2:EE:C7:AA:78
X509v3 Authority Key Identifier:
keyid:21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:88:5d:f9:8e:ba:ff:1f:bc:49:e8:dc:b5:3f:de:f9:5b:ea:
2a:52:e0:78:9d:25:ed:8a:6b:9b:b1:cc:a0:9f:15:07:d1:f6:
e4:a5:1f:24:16:b7:9e:6f:a7:85:2f:52:a7:58:6b:2b:35:07:
a2:48:14:e3:ae:d1:d3:80:f3:ce:81:ab:1c:39:81:24:ff:5c:
ef:a3:df:5e:3a:fa:53:01:fe:fd:31:e8:66:03:d7:7d:0d:1c:
d6:00:f7:f9:82:f1:44:26:8e:d3:57:32:5f:aa:3a:f7:17:7b:
b5:bc:4f:a5:33:8f:a5:86:f7:e8:ca:e9:21:62:b4:d8:79:02:
6c:32:a9:52:41:8b:db:72:b7:b5:17:e7:f7:36:31:a4:62:13:
35:5a:82:80:af:33:8a:df:44:b6:40:df:5c:f7:2f:03:90:94:
d7:95:cd:6a:8f:24:86:64:ee:cb:cc:10:93:e2:a7:38:a5:22:
33:e7:3d:6b:64:88:3c:33:76:ff:2d:64:3a:4e:aa:b3:f8:a5:
aa:5d:dc:2c:0d:74:e4:5b:d1:75:72:62:d3:3e:79:9e:bd:ae:
cc:45:27:0f:90:bd:28:09:7f:50:16:73:37:8c:dc:3f:d5:fa:
09:5c:70:8a:0f:ac:3e:b1:0d:3d:0d:a1:a1:b7:8e:54:10:aa:
04:4d:38:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:24 2025 by rpki-client