Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
File: iTr-zXEXBcR2t4XQyG71TCEkNUw.mft (raw, json)
Hash identifier: tVxPFyzLC64NXqkuDkYObrteRnXneOKtw8J+ldgCS0A=
Subject key identifier: 45:5F:A8:BE:C1:E0:1E:99:49:86:FC:F3:5F:B7:54:52:E2:83:64:1C
Authority key identifier: 89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
Certificate issuer: /CN=893afecd711705c476b785d0c86ef54c2124354c
Certificate serial: 019936B7893F9B11BF323C0221F2AEACD9AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
Manifest number: 167C
Signing time: Thu 11 Sep 2025 03:00:21 +0000
Manifest this update: Thu 11 Sep 2025 03:00:21 +0000
Manifest next update: Fri 12 Sep 2025 03:00:21 +0000
Files and hashes: 1: I3MDgaIPk5rQhFYqlKJ88u7QcKA.roa (hash: 9W6ILnGR89GeCDK+0ZtMLah7T+7H4VrTikrakuva5SY=)
2: hdbWZzPv8mKL7ila4Mhuuk01Www.roa (hash: CfHG1SiNzylmV2mCUzoHK+y9CvaZseJUgqyvhhx1NeI=)
3: iTr-zXEXBcR2t4XQyG71TCEkNUw.crl (hash: dwHwN3NecMXx2Je6BAW0vdZYQF0b/XCrsDDxpWRuhQs=)
4: rO9T6t_WHUnkGmIleBFSGRnlKnY.roa (hash: wcBWF7o7prWlR7s8a04nO9bFFc8bqPRJlh3HL2eDAqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 03:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:b7:89:3f:9b:11:bf:32:3c:02:21:f2:ae:ac:d9:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=893afecd711705c476b785d0c86ef54c2124354c
Validity
Not Before: Sep 11 03:00:21 2025 GMT
Not After : Sep 12 03:00:21 2025 GMT
Subject: CN=455fa8bec1e01e994986fcf35fb75452e283641c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:22:23:ad:f9:e5:d2:80:25:00:65:c8:c4:3f:
31:0c:f1:f8:66:b7:49:cd:be:bb:a2:99:13:16:25:
1b:e4:9a:d9:62:4a:67:27:95:cc:d7:88:78:9c:34:
08:77:d7:4d:6c:f9:d2:ea:45:d0:2c:bb:59:7d:ec:
e5:6c:b8:75:df:ec:40:e2:8a:17:9d:54:55:d3:d3:
47:bb:fc:1d:a1:65:d2:87:48:5b:0d:53:36:e8:4e:
d8:3b:8b:b4:ab:d0:3e:bb:fd:95:60:08:fc:22:f6:
87:f1:94:85:19:fd:ff:31:8f:9d:9d:16:04:6e:cf:
01:0e:f6:f3:3a:f6:00:bb:22:c8:30:c5:b4:79:c9:
e1:5b:30:84:52:82:09:10:16:8f:44:1f:e7:1d:22:
2a:52:05:f9:d5:4e:72:f7:89:2c:e3:a4:93:e6:ce:
6e:35:43:57:ee:df:fb:26:8e:73:8a:6a:61:f0:00:
ed:2e:79:24:92:d7:e3:b4:58:d5:47:6f:cf:36:5a:
d5:89:15:eb:39:89:1f:c4:e6:86:70:74:2d:68:1b:
45:7c:e8:59:6d:c1:c4:d2:30:cf:5f:24:63:99:8b:
50:4c:94:e5:22:43:8e:59:c2:12:57:be:ff:60:48:
eb:c4:3c:ea:2d:6c:2f:ae:55:2f:84:3a:08:e1:f6:
2d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5F:A8:BE:C1:E0:1E:99:49:86:FC:F3:5F:B7:54:52:E2:83:64:1C
X509v3 Authority Key Identifier:
keyid:89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:f4:e9:a1:d3:a8:50:04:25:74:c9:4d:31:c5:e1:90:39:44:
67:d7:1e:6f:f8:d3:11:f9:84:9d:3c:ba:4b:4e:55:3f:45:20:
7b:31:b3:c9:ac:67:c7:63:1c:fa:42:a7:0f:ab:74:4d:81:b9:
4e:c7:46:2c:98:c7:92:8e:26:5d:49:d0:0e:41:de:43:5f:a8:
29:c0:ab:32:0b:ec:d4:f8:48:d9:c4:8b:90:55:bb:32:0f:4b:
d1:40:88:88:f1:a2:fa:29:77:05:28:20:9b:f0:d2:03:af:93:
7b:71:e6:40:5b:f3:30:bd:54:ad:93:a3:37:ca:77:1e:3c:d8:
75:07:85:eb:13:91:60:1e:e0:78:9b:41:da:0e:df:1a:99:11:
b0:a2:1f:b2:af:fb:48:18:1d:31:38:d3:90:2d:6c:da:cf:07:
f2:8c:fd:6f:de:44:6e:7e:d5:cf:86:d1:56:b0:d7:e9:f4:0e:
d1:04:db:9e:48:c6:e0:39:7c:6e:c4:bb:19:fd:ae:0e:47:ac:
38:57:2b:b1:25:5f:a5:67:52:28:f8:29:e0:78:9a:b6:be:45:
3b:d4:2d:0d:44:66:01:59:57:6b:13:ed:0d:ab:5b:87:f9:bc:
f1:cf:43:96:fd:af:fc:19:7f:3e:fe:50:45:c3:3d:dc:ef:c2:
c1:b9:ba:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 11:23:00 2025 by rpki-client