Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
File: IuKOVQMUE4-dg6KLLWZum4dEtRA.mft (raw, json)
Hash identifier: kWouJhdeXYpFxpLpb6zjKwK1ailDm/cAmOuITOy2BSM=
Subject key identifier: 1F:2B:9A:FB:99:5A:8B:A9:DB:65:53:74:3F:3F:F2:FD:68:4E:09:F7
Authority key identifier: 22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
Certificate issuer: /CN=22e28e550314138f9d83a28b2d666e9b8744b510
Certificate serial: 019922FA2B0DE6DEAE5BD50319CB16E1AFCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 07:00:44 +0000
Manifest this update: Sun 07 Sep 2025 07:00:44 +0000
Manifest next update: Mon 08 Sep 2025 07:00:44 +0000
Files and hashes: 1: IuKOVQMUE4-dg6KLLWZum4dEtRA.crl (hash: SND4ma1ga3c6+NlbHL8hi5KDrWrT9AorUqCPk5t4iUU=)
2: cFbXH5gO6qs06Nq1Ek6wrTAvxB0.roa (hash: c0tlMuDM/vPMybXrB0sIatVwyL/aO7RZmUvD1wZIObw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:2b:0d:e6:de:ae:5b:d5:03:19:cb:16:e1:af:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22e28e550314138f9d83a28b2d666e9b8744b510
Validity
Not Before: Sep 7 07:00:44 2025 GMT
Not After : Sep 8 07:00:44 2025 GMT
Subject: CN=1f2b9afb995a8ba9db6553743f3ff2fd684e09f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d1:07:3c:19:36:07:97:00:39:38:17:9b:bc:
ee:e3:3d:41:b4:8c:b8:3a:7f:e3:1b:72:ca:48:3c:
02:eb:3c:c1:d8:3a:c6:08:65:a1:b8:f7:a0:fe:f5:
5a:a0:87:82:19:42:dc:c0:5d:ca:ee:7c:f4:e3:18:
e7:11:11:5d:04:2a:18:ee:42:3d:56:1b:1f:6c:08:
88:cc:7b:ae:3e:ae:3e:ef:65:87:39:f4:c1:27:01:
11:49:cb:6b:b3:c8:6c:0f:13:8c:78:26:b4:04:2b:
23:7e:2c:72:08:fc:5d:8f:27:84:1c:90:8e:fc:8f:
05:1a:46:67:3e:f2:02:48:08:dd:de:fa:59:30:b0:
1a:93:88:bf:69:1c:bd:bb:f8:31:05:92:06:2c:d5:
80:6c:7d:77:0f:be:e4:ae:9b:c4:da:1f:2e:75:54:
44:da:00:41:35:75:ba:9f:ed:76:16:bb:0e:aa:ff:
93:db:37:91:9b:7a:36:be:17:de:27:4c:c0:e5:b6:
8b:2c:e4:4f:e2:bf:1e:64:53:a6:1c:e2:40:ec:ae:
a6:26:29:81:41:05:99:f4:20:73:4e:25:54:e9:a0:
f2:d0:f7:90:bb:0d:f8:b3:62:f4:d1:66:7c:da:91:
ba:36:6b:b2:97:07:95:20:e7:a7:fd:97:3b:e8:5f:
f1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:2B:9A:FB:99:5A:8B:A9:DB:65:53:74:3F:3F:F2:FD:68:4E:09:F7
X509v3 Authority Key Identifier:
keyid:22:E2:8E:55:03:14:13:8F:9D:83:A2:8B:2D:66:6E:9B:87:44:B5:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IuKOVQMUE4-dg6KLLWZum4dEtRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/336a6f-2b89-4b32-89f6-4d209c3288ab/1/IuKOVQMUE4-dg6KLLWZum4dEtRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:dc:60:56:f6:34:f9:2d:a1:18:2b:df:b6:48:51:a8:4b:30:
11:19:e6:76:18:0f:9d:20:5d:e7:74:cb:7a:f4:86:49:8b:04:
b1:d6:27:f8:cb:3c:ac:c2:fb:8b:5d:e9:63:81:3c:5b:dd:c0:
69:4e:3f:fd:04:ad:68:2f:a5:8d:8d:3e:b8:12:10:cb:2a:cc:
db:1c:60:f4:c8:0f:1b:74:90:78:9d:93:42:72:1f:9d:83:a7:
a7:0c:ab:59:b4:e2:aa:c7:86:b9:95:fe:e2:be:87:a9:d2:0b:
54:d4:e0:5f:ff:28:00:48:76:bd:f2:5f:57:a1:92:fe:7c:c1:
c6:75:ee:73:25:18:46:9d:37:c1:ce:34:d2:b5:2a:cc:1f:f5:
64:8a:3c:55:35:72:25:a9:92:33:3a:08:4b:60:41:7f:fa:f8:
01:1f:6b:76:0a:8c:90:19:5d:45:72:6a:54:2d:cf:13:6e:44:
bf:52:2f:de:15:ff:dd:72:8b:36:11:06:ff:61:99:7c:50:55:
fc:6a:ab:f4:89:41:90:a5:38:a4:c7:a4:3a:bc:1b:10:6f:13:
9d:3f:a0:cb:b9:0f:21:5e:23:9c:b5:e9:9c:67:bc:4d:f1:60:
6d:9f:12:5f:1f:15:61:51:c9:c4:ce:65:b5:50:10:25:92:ec:
2c:fc:3c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:49 2025 by rpki-client