Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
File: iMaZNJivBRiWLl9I1chG3BddGIQ.mft (raw, json)
Hash identifier: 1ZrNEyyQYM6YBJLq86nmOMfNB5mP2FY0kqdfO84Ofng=
Subject key identifier: 2E:44:2C:8A:73:B7:33:AF:D1:61:5E:F6:52:EF:43:B0:C4:E7:C1:D4
Authority key identifier: 88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
Certificate issuer: /CN=88c6993498af0518962e5f48d5c846dc175d1884
Certificate serial: 0199240CB7A1288346DA72120E3A79C01187
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 12:00:37 +0000
Manifest this update: Sun 07 Sep 2025 12:00:37 +0000
Manifest next update: Mon 08 Sep 2025 12:00:37 +0000
Files and hashes: 1: iMaZNJivBRiWLl9I1chG3BddGIQ.crl (hash: ajA+RgmeOKaMFAdQjIJUUeQ9KMcOXyoLob9y7JOaacU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0c:b7:a1:28:83:46:da:72:12:0e:3a:79:c0:11:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88c6993498af0518962e5f48d5c846dc175d1884
Validity
Not Before: Sep 7 12:00:37 2025 GMT
Not After : Sep 8 12:00:37 2025 GMT
Subject: CN=2e442c8a73b733afd1615ef652ef43b0c4e7c1d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a9:a7:d2:c7:73:fc:b5:12:b9:2e:fc:01:39:
ae:59:4b:9a:2f:fc:1b:1d:e8:b5:9a:9a:64:02:3e:
8b:fa:e1:4d:c6:df:8a:f6:eb:0e:06:b2:66:6e:fe:
4d:85:48:3a:1f:7f:0a:7b:59:c5:51:32:d9:1a:70:
3e:bc:8d:9c:4b:f9:1f:ab:52:f3:3e:27:7d:16:59:
de:88:00:ad:75:ec:2b:af:59:1b:f8:67:74:95:2b:
c6:af:f1:1b:cd:a9:da:95:70:ae:07:bd:49:27:2b:
94:51:32:83:7b:e4:cc:89:1e:5b:c8:a2:63:4b:6a:
a5:88:c9:26:33:b5:31:7b:8b:aa:90:4d:00:ff:6b:
29:5b:67:18:4f:d9:57:67:87:2a:46:88:f9:4f:1a:
e3:e2:ac:bd:4f:51:5f:56:74:b9:e1:03:91:57:a6:
85:26:89:2a:94:1b:ed:48:a3:33:21:7d:ff:88:4b:
16:df:8f:c3:fb:c9:e7:a4:2c:23:b9:b7:79:30:e7:
2d:1b:c9:1b:05:50:30:b7:3f:d9:38:16:0c:17:7e:
3e:3f:55:ff:04:87:1f:e0:44:bd:11:8c:dc:89:ae:
8a:0a:c5:5b:54:9c:e2:c8:08:2b:3a:bd:c8:8a:c6:
72:30:11:d1:4e:6e:40:27:f1:55:85:22:b3:a2:3a:
df:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:44:2C:8A:73:B7:33:AF:D1:61:5E:F6:52:EF:43:B0:C4:E7:C1:D4
X509v3 Authority Key Identifier:
keyid:88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:ff:03:7f:8d:79:63:33:ab:a8:c1:87:47:ef:7a:4c:d0:eb:
ba:05:a9:a1:b1:a7:34:67:21:26:63:2c:89:9f:41:dc:d7:58:
e6:ac:43:df:4d:7e:08:9a:f5:78:60:e6:8d:ab:f5:1f:7c:eb:
fc:73:1c:4f:6f:bd:89:3e:a7:d3:f3:4d:71:14:27:7a:76:dd:
8a:a7:a5:3d:4e:3f:cb:4c:f7:4b:c0:31:14:2a:1f:08:35:2d:
48:7a:70:ba:4d:0e:b6:89:88:33:69:48:34:e9:95:ac:fb:e6:
5c:79:36:6a:06:21:cb:1c:52:56:56:72:ce:cd:55:31:de:4f:
42:6c:04:f4:3e:cf:55:6d:db:fe:d9:e9:1c:ec:be:7e:36:50:
25:66:2e:15:6a:98:94:84:03:ac:6c:e6:55:01:1c:d4:83:3e:
6d:b6:84:2f:c6:03:34:90:ff:02:40:14:f3:05:68:e6:89:54:
1f:d0:22:4b:bd:c4:56:09:1b:e8:41:66:3d:af:34:25:1b:b6:
ea:4e:b7:12:53:44:6a:33:dd:ca:83:21:31:d6:a9:54:34:bc:
5f:56:2d:3f:b5:6b:82:5f:15:bf:49:a9:74:49:ef:ab:a4:29:
43:7c:f8:e5:62:8f:cb:7b:38:73:43:2d:e2:e2:7e:3e:8f:c9:
f1:bb:a4:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:42:05 2025 by rpki-client