Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
File: i7dzgYUSSQpQCthD6irnF-8hsUw.mft (raw, json)
Hash identifier: PjD5DAJHlDu+d6g3OSVhnOsXI7k6eISxwNSrD87KxOo=
Subject key identifier: B2:63:D7:71:D2:62:8E:3E:6D:27:33:C6:A2:44:EC:D1:B6:FD:DC:01
Authority key identifier: 8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
Certificate issuer: /CN=8bb773818512490a500ad843ea2ae717ef21b14c
Certificate serial: 01986C2A11527D6DCBC92CB75BE1DC487744
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
Manifest number: 1612
Signing time: Sat 02 Aug 2025 19:02:32 +0000
Manifest this update: Sat 02 Aug 2025 19:02:32 +0000
Manifest next update: Sun 03 Aug 2025 19:02:32 +0000
Files and hashes: 1: L6BmwALeicC8VgFsadJhZLZOhdw.roa (hash: jlbIuI51ox4C1wny8/EXm0XGuTxyG7RmZ5JEvI5tNCo=)
2: i7dzgYUSSQpQCthD6irnF-8hsUw.crl (hash: xB1O2jz2gX/lfrOhYCl+1xGi6IEry0QB9JPi6lDIOy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 03 Aug 2025 15:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:6c:2a:11:52:7d:6d:cb:c9:2c:b7:5b:e1:dc:48:77:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb773818512490a500ad843ea2ae717ef21b14c
Validity
Not Before: Aug 2 19:02:32 2025 GMT
Not After : Aug 3 19:02:32 2025 GMT
Subject: CN=b263d771d2628e3e6d2733c6a244ecd1b6fddc01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:65:0f:1a:cd:e0:9c:56:04:38:63:57:5d:e7:
a2:28:65:c8:b2:13:37:09:41:d9:c8:5c:f9:18:5d:
29:c5:7e:09:7e:bf:98:b5:0d:f0:d1:de:78:57:3d:
34:27:8c:8b:84:55:b9:f4:16:d1:62:e8:30:93:a4:
35:e7:27:78:f2:a6:48:41:07:6e:01:95:d6:bd:07:
21:2b:c6:6d:fa:77:49:df:dc:92:b9:67:5a:32:e4:
6a:eb:30:cc:28:f8:3a:16:bf:a6:23:30:f8:7d:81:
97:c9:cf:d8:6a:57:17:a7:03:ce:44:1f:12:a9:39:
0d:a9:41:dc:62:bb:e9:ce:5a:33:1e:0c:c1:14:2d:
23:1c:e4:ca:ce:d0:38:4e:04:e3:22:18:8b:12:04:
09:6f:8b:07:eb:19:cb:88:b6:01:59:07:98:3c:4d:
c2:1a:9c:b3:6c:06:cd:63:c7:df:49:04:a8:9b:9f:
5f:1d:2a:f0:7c:2e:45:a3:2b:4d:b3:31:70:ac:91:
e3:06:4e:aa:41:3b:c2:07:17:67:5f:9b:47:8f:b8:
7f:1c:d5:d0:1b:b4:cb:b7:1a:40:9e:41:60:ea:59:
76:35:01:24:81:96:31:19:9c:87:7d:4f:68:fd:16:
e3:7d:dd:87:d0:05:cc:56:89:ef:d8:73:fe:6e:2d:
b9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:63:D7:71:D2:62:8E:3E:6D:27:33:C6:A2:44:EC:D1:B6:FD:DC:01
X509v3 Authority Key Identifier:
keyid:8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:b7:1a:f2:f2:31:03:1f:78:4a:84:18:5d:c1:22:b3:ba:ca:
cd:cb:fc:70:86:7d:1e:d6:f0:80:d8:dc:68:1c:ee:ca:d1:60:
76:a6:30:0d:04:ff:b2:75:9e:91:59:dd:b7:76:a4:63:3e:3a:
5e:1d:2c:da:07:3d:9d:90:a3:05:cd:62:f7:e8:f4:51:bd:61:
47:38:14:99:ae:aa:1f:5f:c1:fa:5f:d7:1b:24:c2:29:8c:00:
c7:cf:a1:9d:1b:a9:57:97:a0:f5:d6:b0:59:2d:79:29:ee:96:
08:d9:56:28:ba:d3:d6:27:e5:5d:6a:f3:62:1a:ae:f3:f3:97:
30:21:12:25:47:eb:51:5c:d1:f0:d8:77:4d:d9:23:5e:0a:a9:
29:4c:f3:02:29:cb:99:d1:ca:52:de:85:0f:04:1c:d7:fd:bc:
fc:97:6f:9e:a8:f7:42:78:05:6f:71:43:b3:7c:95:18:40:45:
f8:03:71:da:e6:03:78:d3:07:fe:e8:5f:1c:ec:6e:2d:a8:6d:
ae:9a:3e:de:f1:93:08:91:8a:78:0e:fe:26:c6:92:df:91:46:
a7:4a:fa:5c:b1:17:f1:6a:f3:2a:38:d3:8d:66:7c:57:0f:44:
5f:fa:41:0f:23:fa:9d:80:a5:6d:26:c5:cb:c8:91:75:8f:a9:
eb:0c:2e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 3 01:12:38 2025 by rpki-client