Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
File: iJiSZOUPOa6IiuMnYQm7qALkWAE.mft (raw, json)
Hash identifier: dHQf1z7W13NfiRpP4kUHmjJpRpdv8N1WSqYGSLrgQqg=
Subject key identifier: 7D:DA:5E:19:09:7F:7C:00:4F:39:BD:94:A1:34:F7:4C:9D:B8:C6:92
Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
Certificate issuer: /CN=88989264e50f39ae888ae3276109bba802e45801
Certificate serial: 019922FA17C865378BE94AC25486CFE99354
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
Manifest number: 0309
Signing time: Sun 07 Sep 2025 07:00:39 +0000
Manifest this update: Sun 07 Sep 2025 07:00:39 +0000
Manifest next update: Mon 08 Sep 2025 07:00:39 +0000
Files and hashes: 1: e7H9B5-pB3ikZ5-oh15fm0ggCqI.roa (hash: We6P0vvIkU060wWseVebnunaD4trxKPA+u+6dudIhmU=)
2: iJiSZOUPOa6IiuMnYQm7qALkWAE.crl (hash: AGNL+5GnV8riege/6AG+W7X1xNwoasZ5Gn8XXekh6rQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:17:c8:65:37:8b:e9:4a:c2:54:86:cf:e9:93:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88989264e50f39ae888ae3276109bba802e45801
Validity
Not Before: Sep 7 07:00:39 2025 GMT
Not After : Sep 8 07:00:39 2025 GMT
Subject: CN=7dda5e19097f7c004f39bd94a134f74c9db8c692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:cc:a4:2f:b4:23:ae:a9:ef:4d:f1:67:ed:19:
6a:39:aa:fa:d8:61:70:a8:d6:e2:87:01:a4:21:20:
e4:f3:41:f8:7d:bc:51:67:f6:cd:e8:52:77:d5:fa:
bb:fa:42:69:61:9b:fd:89:34:b2:35:83:bb:68:4c:
cc:95:36:ef:3d:84:39:d9:3f:20:31:59:9f:fe:2a:
d9:7c:e1:f9:4a:12:48:e1:32:61:07:a7:a8:d9:64:
3f:25:71:c8:94:a2:c9:2c:46:8c:ab:f2:c1:0f:7b:
4a:fa:58:eb:45:e2:02:e6:87:7b:15:58:75:88:3a:
a8:5a:c6:39:8a:bd:10:db:a2:5e:2d:09:bc:60:5b:
3b:11:d0:bf:64:62:2c:b6:79:05:2d:20:92:45:05:
d9:c8:b6:29:ee:e0:92:25:ba:d3:83:bc:e1:58:98:
6e:d7:61:97:11:8e:70:8c:4c:7e:90:77:26:49:39:
ff:b1:10:f5:03:0e:d3:48:73:4a:fd:b1:1f:ad:d4:
79:d3:30:72:9a:2d:a2:a9:f8:83:ee:c6:71:1a:62:
97:36:67:ff:12:d6:f9:0c:79:78:b7:00:54:1f:55:
72:33:8c:04:23:c9:44:30:0c:8d:e5:18:58:f3:40:
b1:29:30:ba:b5:b1:97:73:3c:c9:e1:e0:c0:2c:19:
83:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DA:5E:19:09:7F:7C:00:4F:39:BD:94:A1:34:F7:4C:9D:B8:C6:92
X509v3 Authority Key Identifier:
keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:09:ad:fc:fe:f3:c2:31:85:11:a1:3a:45:de:03:54:5e:7a:
a1:18:2d:0c:22:85:7b:58:f7:28:ec:d3:da:5c:b6:bd:f7:ce:
c9:b2:d5:97:49:4d:e7:bf:89:a6:23:29:87:bd:b7:28:7c:1a:
e0:c7:bf:43:bb:d1:cf:34:b3:a1:e4:ca:92:3a:f6:25:b2:99:
8c:7c:02:a1:59:87:ea:3a:b0:fd:44:db:c9:e9:07:13:75:17:
47:76:27:9e:21:f0:99:4f:69:c6:28:7d:37:e5:6f:12:f1:d0:
c0:6e:c5:a3:6a:23:45:55:0e:81:28:c2:73:94:66:61:06:ab:
da:47:45:37:76:13:b8:b5:7f:5a:e0:ea:85:ee:f3:ea:fe:8c:
f2:18:ff:d7:4b:a3:26:f1:c6:db:04:d4:72:4c:65:a7:f8:97:
f8:73:11:e7:93:1a:91:d3:56:0f:f5:6d:01:47:65:8c:59:ba:
65:fa:1a:32:bd:24:01:59:34:75:dc:51:0c:77:86:b0:93:8a:
13:71:3d:dd:7e:ef:71:0c:4a:dd:a2:60:50:78:da:0b:bc:13:
60:53:e4:a6:20:a3:6f:80:9f:e5:e0:02:8e:40:11:aa:1a:10:
a8:d4:62:8f:12:8d:01:f1:f5:69:22:5b:c7:a5:33:ec:5b:b7:
27:0f:60:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:23:11 2025 by rpki-client