Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
File: i7dzgYUSSQpQCthD6irnF-8hsUw.mft (raw, json)
Hash identifier: 5IEuTT3irr9a5AucYHzvrjQ8cn+8yOTyE6pnScXcycs=
Subject key identifier: 7D:96:E4:0F:23:EC:C5:EE:BD:54:7F:1B:D3:1D:59:81:7A:EC:F7:93
Authority key identifier: 8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
Certificate issuer: /CN=8bb773818512490a500ad843ea2ae717ef21b14c
Certificate serial: 01995BA22FBB1643C4DAC7E6A9C6EF4EC11F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
Manifest number: 168E
Signing time: Thu 18 Sep 2025 07:02:59 +0000
Manifest this update: Thu 18 Sep 2025 07:02:59 +0000
Manifest next update: Fri 19 Sep 2025 07:02:59 +0000
Files and hashes: 1: L6BmwALeicC8VgFsadJhZLZOhdw.roa (hash: jlbIuI51ox4C1wny8/EXm0XGuTxyG7RmZ5JEvI5tNCo=)
2: i7dzgYUSSQpQCthD6irnF-8hsUw.crl (hash: HnYT1P+f76VViXZIWwsN1FamZS6GqMAxxqNwQVLJ5MU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Sep 2025 07:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5b:a2:2f:bb:16:43:c4:da:c7:e6:a9:c6:ef:4e:c1:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb773818512490a500ad843ea2ae717ef21b14c
Validity
Not Before: Sep 18 07:02:59 2025 GMT
Not After : Sep 19 07:02:59 2025 GMT
Subject: CN=7d96e40f23ecc5eebd547f1bd31d59817aecf793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:32:4d:ad:ff:1a:97:58:c5:72:65:60:14:b8:
35:da:b8:98:00:ba:47:5d:c1:c7:85:56:18:a7:3c:
c5:47:a9:f6:55:ca:27:07:18:7c:c4:4f:5d:b4:67:
3a:3a:a3:2b:e7:d0:70:69:43:0f:88:98:1b:4f:74:
7a:d0:d3:06:ab:32:f2:c1:6f:66:76:3a:c0:f4:47:
6a:42:2f:c0:ba:9e:13:7d:2d:f3:92:e8:39:df:b3:
04:fb:74:31:78:01:d9:83:a6:c3:1a:5a:18:91:a9:
ee:35:2e:07:a9:95:3b:fc:e6:27:f6:79:50:45:66:
28:91:06:09:5c:1b:44:6e:c6:1f:4b:b6:3d:00:8f:
f5:f1:a7:5f:22:f3:b4:10:21:85:c4:c7:26:d2:11:
1d:c5:94:72:35:b8:c2:45:47:f4:6d:bb:35:98:e8:
b6:c7:9a:c5:07:06:ca:93:6f:46:bb:2a:7c:7c:44:
92:be:39:b3:db:7d:df:61:88:ca:9c:c5:66:5f:fc:
44:c1:d8:aa:19:12:0b:6e:54:aa:12:83:c9:3d:b6:
c2:14:26:8a:39:65:5c:e3:39:ea:5f:fe:8b:e1:a9:
37:47:df:a4:3d:3f:e2:ba:5e:19:1d:0f:bb:98:16:
07:97:5f:0a:23:9c:51:40:dc:0f:d7:dc:6b:7f:59:
0e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:96:E4:0F:23:EC:C5:EE:BD:54:7F:1B:D3:1D:59:81:7A:EC:F7:93
X509v3 Authority Key Identifier:
keyid:8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:21:94:93:ac:49:07:a2:31:dc:e0:36:61:ef:f3:f1:82:1c:
53:e1:32:29:e1:9f:8a:91:06:c8:09:6f:f4:7e:e8:21:c7:a7:
e8:93:ef:e8:70:a2:30:00:00:86:37:18:1a:2a:26:de:8f:22:
09:81:26:88:6c:62:09:db:7e:d8:df:e9:d2:5a:0a:cb:dc:67:
40:82:fc:ad:9f:5d:a1:90:d4:df:5f:9b:8a:b3:f7:ab:8a:a1:
60:3f:d8:85:43:02:cf:d4:e0:95:03:dc:54:16:9b:3c:4e:47:
41:db:55:75:78:14:99:d8:5e:3f:f4:17:70:d9:1b:1e:d9:88:
b7:1d:81:f9:69:5a:78:5d:66:5a:e0:47:ea:aa:5a:ac:58:33:
ce:0f:a3:62:b1:77:3c:19:e1:26:ef:b4:b0:8d:ae:ff:9f:ad:
4e:9d:d6:53:ba:f1:8f:30:3f:5e:aa:9d:bb:8c:dc:12:42:ac:
f4:91:0d:e3:a4:b7:ee:7a:0d:61:ba:63:8d:fb:15:9a:35:2d:
7c:ff:c5:4b:02:cb:59:54:94:21:8e:b8:f1:b9:cd:9f:fd:0b:
72:ce:26:11:4f:a9:6e:f7:3a:dc:fb:2e:8f:3a:e8:fc:9f:f0:
0a:52:c4:a6:75:0b:c0:c7:64:0e:a9:57:c9:ec:cd:fa:8e:3e:
04:c8:45:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 12:40:45 2025 by rpki-client