Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: L2kvB/CaprDIzGM8KR2EenzXuk7uXLM+QACfnkCfga0=
Subject key identifier: D1:26:F1:7C:F0:D2:3F:05:69:19:1A:05:34:58:82:AC:6A:F4:B1:42
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 019922C379E1677F4E2489B35B73A48269E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 164C
Signing time: Sun 07 Sep 2025 06:00:59 +0000
Manifest this update: Sun 07 Sep 2025 06:00:59 +0000
Manifest next update: Mon 08 Sep 2025 06:00:59 +0000
Files and hashes: 1: 2ttxDr4pGnjxuFL3h06WTGhjE60.roa (hash: gb8hbvNo/pcY/swamzsbRwiOgi4eH7YRN51AtOhEfsU=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: k93y5ory23HMJVol1cjh5B8j32BiAiav1z/SbGRb0cA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:79:e1:67:7f:4e:24:89:b3:5b:73:a4:82:69:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Sep 7 06:00:59 2025 GMT
Not After : Sep 8 06:00:59 2025 GMT
Subject: CN=d126f17cf0d23f0569191a05345882ac6af4b142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:78:93:ec:8d:86:94:28:d9:b8:62:17:d5:55:
e0:76:58:5a:42:4b:a1:a1:f5:4c:d1:70:00:ac:ee:
63:1d:6a:6f:7d:c8:91:da:75:f9:75:bf:56:dd:d0:
3c:dc:cf:7f:ab:cc:a0:df:ab:d1:3f:68:39:c5:a7:
bc:23:89:fd:da:d3:7d:a7:e1:7a:d6:5a:55:62:e0:
f6:2e:b2:c4:8c:05:9f:03:b2:6e:4a:9b:8b:ae:5c:
1e:91:90:7c:74:e2:25:33:10:0f:45:cb:bb:03:09:
8d:d7:6a:6a:6b:f5:8f:7d:b8:c4:f5:63:45:93:ce:
b7:23:7e:2c:62:83:58:c7:56:64:39:51:ef:ad:7e:
61:d1:8d:e6:81:3d:89:34:db:66:f2:d6:44:e4:07:
1c:33:30:88:34:93:8b:c5:35:84:0a:51:a0:a7:d4:
20:20:3d:2b:f5:f5:dc:d9:0c:8b:03:97:47:b3:14:
e6:40:49:1b:2d:b5:02:58:3f:1d:9c:81:f0:bb:98:
d0:21:6c:3a:a4:9f:4f:73:ae:eb:41:e3:f3:75:34:
23:91:5c:60:32:7f:86:d5:d3:c4:da:4d:fb:af:f4:
df:89:10:5f:83:aa:d1:c8:fb:60:6e:54:17:f4:c9:
e3:c9:7f:34:e8:fa:7d:97:28:b0:89:b3:1c:c4:73:
23:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:26:F1:7C:F0:D2:3F:05:69:19:1A:05:34:58:82:AC:6A:F4:B1:42
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:9c:a6:a4:79:4b:d3:ad:fa:0a:fe:0f:ce:f5:1d:94:ff:38:
89:61:95:32:91:46:b8:9c:42:65:90:78:df:e5:53:8e:55:61:
ba:40:ad:d7:7a:6f:ca:90:c2:d5:fb:68:13:8c:67:f0:14:0a:
c4:98:91:6f:fd:2d:21:41:e0:93:44:1d:dc:53:34:26:6f:41:
91:b1:74:b3:f2:2b:fd:ed:35:79:11:c9:07:ae:85:8b:b5:8a:
24:9f:18:6a:87:0b:e2:18:e9:18:a6:e0:60:96:b5:e5:7e:eb:
90:3e:7d:5a:1e:31:eb:17:8f:13:ca:74:62:fc:75:ea:29:00:
ac:3e:8e:81:8c:82:65:d8:72:66:4c:bb:b3:b5:28:b4:44:35:
8f:31:90:84:a1:eb:45:5e:cc:33:92:57:c1:30:62:bf:c8:f9:
e3:be:31:6b:6c:6c:8e:f0:35:dc:01:36:15:4e:e6:64:9a:e9:
7b:dd:a7:af:fb:f5:ec:28:ee:8f:b1:51:92:63:8d:9a:26:22:
82:0a:4a:14:06:6c:e8:4f:b4:fd:9a:cf:d7:85:0f:41:66:d3:
e0:5b:da:fd:d7:5e:c5:d9:ff:91:f7:01:3c:a5:b1:2a:58:94:
48:32:88:7c:c5:49:ff:db:4b:cb:44:7b:39:72:09:0b:10:a4:
09:70:5b:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:46:38 2025 by rpki-client