Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: awf14uISBxk6rg4re7sGHhkcSDoRp1sg+/VeLK4/6oA=
Subject key identifier: 11:4A:92:AF:54:55:37:BF:22:8A:87:A3:F1:CD:2E:43:F1:3B:F4:2F
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019930110096CAAAB449D7D2040685C862B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 0E73
Signing time: Tue 09 Sep 2025 20:00:44 +0000
Manifest this update: Tue 09 Sep 2025 20:00:44 +0000
Manifest next update: Wed 10 Sep 2025 20:00:44 +0000
Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=)
2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: pq3gLgrr8Edd55eTAP/wBfVjSqq2CRqDYGnXjD9xfMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 20:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:11:00:96:ca:aa:b4:49:d7:d2:04:06:85:c8:62:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Sep 9 20:00:44 2025 GMT
Not After : Sep 10 20:00:44 2025 GMT
Subject: CN=114a92af545537bf228a87a3f1cd2e43f13bf42f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9b:c6:7c:4b:b9:ea:89:66:2e:95:72:06:02:
c4:08:76:92:31:e8:03:3b:90:50:dc:f3:8c:49:19:
23:1b:7c:a1:83:57:fc:15:86:6b:20:de:c8:e5:55:
db:81:90:22:e9:65:d3:24:e4:30:e5:07:b8:b1:28:
8b:90:10:73:2e:49:05:3a:e7:d0:7b:a6:8a:30:0c:
b4:43:8f:f9:be:20:52:e2:f8:f6:b3:dd:1f:5c:a2:
be:ef:8d:0b:b8:dd:01:77:36:b4:ee:fe:8e:fb:d9:
ac:0a:bf:29:41:7d:05:7a:5c:19:71:c6:37:33:b9:
7d:c0:93:47:b3:4c:a3:cc:78:ce:55:0d:9a:37:42:
47:65:5a:8b:0e:98:36:bb:24:be:7a:9a:db:a8:32:
ef:e3:9b:52:7b:18:e5:17:75:e0:3a:6b:fb:c6:67:
18:04:d6:b3:30:90:ed:d0:17:f7:6a:d5:fd:37:a3:
ef:8c:35:ce:f4:e3:07:27:c5:f9:7d:61:53:e6:57:
21:65:33:fa:2f:69:51:2d:b2:81:f6:11:b3:99:5b:
95:48:97:90:de:38:b4:c1:c6:7e:ad:10:0b:2b:96:
b6:92:e0:dd:4b:aa:13:76:29:bc:7a:4e:ea:d0:f3:
da:04:21:39:01:80:95:64:2a:2a:ef:05:74:42:62:
5e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:4A:92:AF:54:55:37:BF:22:8A:87:A3:F1:CD:2E:43:F1:3B:F4:2F
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:5a:9f:7b:09:fb:37:00:16:a0:c2:90:f7:14:ce:c3:2b:fd:
43:7e:87:d2:0a:e0:e7:52:d7:c4:2f:0a:86:6a:cf:7a:45:3a:
02:d1:18:a2:f0:92:df:8d:33:15:3e:6b:39:da:0f:fe:31:1f:
a2:60:20:e9:ce:f6:e3:62:16:25:59:b1:f6:0d:48:dd:ae:b1:
96:08:0c:76:0e:a8:32:84:6e:06:76:59:84:51:f0:6a:84:8e:
1c:fc:5b:19:bd:0d:ac:cd:d1:01:88:75:12:d8:d5:fd:df:c6:
d3:f5:ac:ae:37:7c:30:df:66:e7:89:32:d5:4d:ef:f9:25:44:
14:b5:e9:99:d3:da:3b:5d:a3:79:8e:08:90:8d:69:55:29:7d:
78:01:b0:9b:19:47:35:9c:df:15:21:f0:ab:ce:bf:e7:5c:6e:
8b:0e:45:a4:f8:9a:ee:a3:4a:b4:1d:11:44:dd:8a:e9:3e:57:
e6:18:dd:e9:85:9b:4e:97:ac:31:47:76:76:0b:98:4e:f2:f1:
3a:13:5c:db:85:bc:a2:1f:5c:45:0e:7e:cd:8a:98:37:51:91:
4a:b8:d9:c3:5d:f6:e7:38:03:21:a0:85:15:ec:a3:86:34:2d:
20:af:06:53:f1:3c:14:f7:5c:3b:c5:f3:36:04:6d:cf:94:76:
d1:cd:97:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:54:55 2025 by rpki-client