Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
File: iwVEhe5ixvGTlhPLogZp7vRQT3k.mft (raw, json)
Hash identifier: IyCkNu2xrVqZ/CeK9k6FKjfPLjJS6htv+/nTUJ+/Ax4=
Subject key identifier: 9E:93:E5:B1:41:6F:48:4E:53:CF:8D:24:D8:8D:5B:46:81:8C:5F:65
Authority key identifier: 8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
Certificate issuer: /CN=8b054485ee62c6f1939613cba20669eef4504f79
Certificate serial: 01992BC6E5D186D500970F9AD3156DCB65B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
Manifest number: 0C67
Signing time: Tue 09 Sep 2025 00:01:19 +0000
Manifest this update: Tue 09 Sep 2025 00:01:19 +0000
Manifest next update: Wed 10 Sep 2025 00:01:19 +0000
Files and hashes: 1: FmWPQsDQv1I31vsCB-XoPwOttAE.roa (hash: xjF9H58/BASj6CKq3v5pVooMgpKIb+h+UMw0XGNXQo8=)
2: W0D9WIXmr4DG_xEj-xUZT82-dxQ.roa (hash: fBvWuzB9wp05SoO5x+Vb/EneDFqD/kJHT0KgvrAsF24=)
3: aheTt6_pS0K22xA67glREELod8A.roa (hash: qWC2pzWM7a75jc5rNLOSS10p2/VCBqYrjSpxRU7D9zI=)
4: g_SxF-_E_VpwVrwNdmKsnzbOYaM.roa (hash: wSo0WU3KC/Wo2i+eQ7vlG4IlKtTmfnJLRouHYXZqnO4=)
5: iwVEhe5ixvGTlhPLogZp7vRQT3k.crl (hash: PBRvR7nuKA2SzU0ShoDtkMrhK3LKe0eF0n/9MRroSRA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2b:c6:e5:d1:86:d5:00:97:0f:9a:d3:15:6d:cb:65:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b054485ee62c6f1939613cba20669eef4504f79
Validity
Not Before: Sep 9 00:01:19 2025 GMT
Not After : Sep 10 00:01:19 2025 GMT
Subject: CN=9e93e5b1416f484e53cf8d24d88d5b46818c5f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8d:cf:49:28:83:3c:ee:3c:72:4e:86:3e:2b:
1a:06:6e:8e:e3:04:57:28:c0:0a:9a:5c:c3:f8:ff:
db:72:c9:76:43:c0:be:29:fd:97:dc:3d:b9:1c:41:
98:81:e5:c7:1b:e1:1c:10:c0:0e:30:0c:27:82:43:
00:2b:44:cc:89:6b:e2:79:de:42:c0:e4:e7:0e:7b:
37:90:6a:3d:6b:df:5c:16:98:d7:e3:fe:66:ff:97:
27:71:e3:c0:38:db:3c:80:f1:19:0c:41:74:fe:d8:
46:f1:c6:bf:73:2d:97:64:4f:17:ee:98:ef:18:18:
b5:78:5b:7a:bb:21:aa:2a:70:8c:c0:09:22:68:a9:
07:e9:35:71:2f:0d:7e:e2:cf:c0:6e:72:fc:f4:70:
21:37:da:65:50:a2:e3:6b:5f:a4:7f:70:a9:54:dc:
48:8b:1a:cd:c0:fd:8b:0e:be:2d:9b:5a:9d:3d:9e:
86:16:2d:72:b8:ea:7f:66:16:8f:b5:19:b6:0c:24:
d5:2e:65:6b:b1:22:1f:4d:05:44:e2:ed:6a:0c:e3:
ca:50:94:77:e3:cb:75:c0:ab:a9:6c:8a:09:ba:2e:
e5:95:58:ec:1c:b1:fc:a3:05:df:ec:ea:79:19:a0:
7d:8c:9d:e4:2b:35:36:8c:77:bb:57:48:54:ac:9a:
61:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:93:E5:B1:41:6F:48:4E:53:CF:8D:24:D8:8D:5B:46:81:8C:5F:65
X509v3 Authority Key Identifier:
keyid:8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:7b:05:7b:b3:9a:15:21:3f:ca:d4:f9:82:1c:a0:75:05:c9:
93:c8:ef:05:a1:f5:3b:14:1c:ee:24:69:70:d4:7a:f6:ce:89:
88:a9:c4:20:73:c9:3c:98:bf:be:75:01:93:10:22:64:9b:46:
5a:6f:63:d0:5d:87:96:57:35:1c:ae:01:c9:60:d2:a4:bf:17:
16:9a:15:af:e3:99:8a:b7:77:88:67:66:f7:a5:6a:8c:a0:be:
e3:86:e3:5f:a7:cc:58:c5:ff:6f:e1:f0:42:ab:35:f4:cb:09:
36:f3:f3:42:a7:25:4c:b0:da:1f:36:a7:23:ec:06:e3:1f:0c:
e8:42:1c:c3:1f:ac:52:d7:ad:3c:ae:5a:07:df:69:df:75:6c:
92:fc:9a:89:a4:8b:39:48:95:4c:a6:dc:13:23:d1:fc:fa:6f:
ca:ab:b9:44:ca:cf:2a:51:dd:36:b1:2c:39:be:b1:ff:63:65:
31:96:ad:05:4f:53:e0:d1:4f:b9:5b:0e:e2:9a:34:79:c7:d5:
ed:d4:e2:7e:19:8e:1d:e6:52:82:43:34:38:ec:ab:88:d2:a1:
33:3b:18:f6:b2:3c:f4:9c:a1:8e:02:ea:83:f9:b0:99:14:2e:
de:07:ed:4e:5c:57:1c:c1:be:79:4a:89:99:32:fe:e3:37:49:
49:c7:d2:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 04:25:24 2025 by rpki-client