Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: wG6Kt5db+1eTTwN2TL9bRS5SDT+r2CV4RFoRVkMg0z8=
Subject key identifier: 41:13:A3:42:F6:1A:76:D5:1D:D0:88:A3:22:72:6F:3B:6D:50:0D:2E
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 0199239ECE585230DB3EC42372A8E0E6EC50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0D2C
Signing time: Sun 07 Sep 2025 10:00:33 +0000
Manifest this update: Sun 07 Sep 2025 10:00:33 +0000
Manifest next update: Mon 08 Sep 2025 10:00:33 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: DJn6unbzH+zOTKJp8+hwYVPPz9umIbEMizoXVxOhZQw=)
2: wnACGaMKOrsg5i1-6PAAx8VKQ0Y.roa (hash: kxRyBHTXArEsk0qrBdKwIl2FB5x6O/p6TWut1bU4JRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:ce:58:52:30:db:3e:c4:23:72:a8:e0:e6:ec:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Sep 7 10:00:33 2025 GMT
Not After : Sep 8 10:00:33 2025 GMT
Subject: CN=4113a342f61a76d51dd088a322726f3b6d500d2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:65:3b:54:2b:e1:c8:61:35:59:26:23:64:8e:
46:18:dc:1e:ba:91:3b:b9:98:54:56:66:8e:e8:3a:
ed:2a:23:3a:54:98:78:05:f2:40:df:5e:01:08:a2:
ab:96:e1:53:b2:9a:e7:1a:cb:c4:86:de:0b:fd:53:
35:e4:26:3d:28:36:4a:65:90:e0:f0:b0:46:86:fe:
a0:e8:63:95:e5:08:f2:ab:44:17:77:d1:0a:36:7d:
38:dd:6c:04:31:e5:40:a4:f1:d1:23:f9:81:e6:02:
b9:62:0c:ea:1f:59:05:77:61:ff:10:55:54:ae:f3:
8c:5e:10:4c:e6:31:ab:d9:a7:76:f2:21:0d:c4:39:
d1:3e:96:9f:e6:0b:82:70:8b:2a:2a:4d:27:d1:5b:
71:a3:f8:2f:ac:98:df:7c:cf:a7:b7:07:66:89:e8:
02:12:fa:f7:35:c7:f3:4a:d4:92:d9:ee:6d:1c:f5:
f0:c0:99:a2:be:26:31:26:8e:05:98:72:a6:17:6e:
77:0f:4b:11:98:b8:d6:42:03:3f:2e:bd:3d:6c:76:
65:be:8e:ca:95:39:e8:3d:13:d9:9a:d6:0f:26:12:
ec:3a:fb:1b:39:ab:8f:46:c3:03:10:43:ad:c0:3f:
83:e0:88:e8:15:82:e9:1f:9b:75:c1:79:59:46:ef:
e2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:13:A3:42:F6:1A:76:D5:1D:D0:88:A3:22:72:6F:3B:6D:50:0D:2E
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:78:48:5b:d1:fa:4d:1a:8a:f7:b5:ed:60:f1:ad:a2:31:ac:
78:57:c6:3d:9c:f2:06:ef:f1:a7:57:aa:92:1b:8e:26:98:c6:
ae:32:53:a4:d4:93:c4:06:b1:21:78:4f:4c:08:0f:c1:c5:45:
67:22:0a:4f:5d:82:9f:8c:ed:11:86:9b:eb:7f:e1:12:73:b5:
e7:54:4b:7a:d7:be:4c:81:77:66:72:34:15:b5:97:98:8d:b8:
44:61:10:59:2d:19:ee:f9:2a:59:5f:ad:a0:1d:89:c2:31:1d:
b0:28:20:31:e6:6c:bf:c1:a0:6b:87:6a:9b:a9:16:bd:e9:81:
55:6d:6a:21:1a:62:2f:da:6a:64:f5:ee:4d:39:fb:98:06:0c:
54:af:b7:70:44:a8:3c:d1:7d:27:97:2e:23:53:42:c5:21:5f:
0b:90:84:07:ec:90:0c:72:b5:b9:e2:71:9e:ed:69:21:cb:f9:
0b:d7:85:9d:ad:93:81:43:fa:1b:b7:1b:62:28:26:2d:af:c8:
82:49:75:20:c9:8e:49:33:f1:cb:99:c4:59:ef:60:e1:b1:19:
1b:bf:b8:24:f0:70:61:59:45:fc:2f:6f:f1:ab:9a:f9:58:19:
0b:82:26:eb:64:d1:67:8a:1d:6c:97:c0:2d:79:a0:6c:e3:65:
d8:94:d5:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:47:31 2025 by rpki-client