Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
File: ioNVXKoizpubFoNQOhTjzdg24Bs.mft (raw, json)
Hash identifier: zz7JikSR6lamGnYJiKiJcBjzYO/CCPWu+rV/VNO7ZJw=
Subject key identifier: FF:A5:79:62:3E:8B:BA:B5:2F:E3:53:CB:AC:42:99:2F:9A:C6:EC:D6
Authority key identifier: 8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
Certificate issuer: /CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Certificate serial: 0199221E7D77B1157F53BE4ABE4BBD990602
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
Manifest number: 0EDF
Signing time: Sun 07 Sep 2025 03:00:47 +0000
Manifest this update: Sun 07 Sep 2025 03:00:47 +0000
Manifest next update: Mon 08 Sep 2025 03:00:47 +0000
Files and hashes: 1: 8ltVewMht9tkkoh6ikhHpmbvP28.roa (hash: qZH42qz06gavyuSaiRbHo+yLoZK1W5iI0G1jpEdB8DA=)
2: ioNVXKoizpubFoNQOhTjzdg24Bs.crl (hash: T0x8CJJifanhNpGnA0ziTrmZjZ83Xxk6ZdEPNXcoZLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:7d:77:b1:15:7f:53:be:4a:be:4b:bd:99:06:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a83555caa22ce9b9b1683503a14e3cdd836e01b
Validity
Not Before: Sep 7 03:00:47 2025 GMT
Not After : Sep 8 03:00:47 2025 GMT
Subject: CN=ffa579623e8bbab52fe353cbac42992f9ac6ecd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8f:82:dc:82:ec:93:75:48:7d:61:96:86:d9:
9c:1b:52:4c:1e:7e:ec:d9:48:51:82:91:ef:cd:21:
63:88:51:ff:e1:c3:06:9a:c3:11:2a:66:cf:41:59:
21:53:23:45:29:ec:aa:ed:3a:bf:e0:36:7a:74:07:
e0:24:3b:f3:8e:eb:e3:1d:06:f2:39:0b:33:c5:99:
29:59:50:63:19:db:1b:e6:64:f5:8a:b3:3d:f7:9e:
6d:30:d7:7d:cf:3a:d1:07:1a:a6:ad:b5:ec:bc:7a:
b6:b5:ec:d1:94:8e:90:e6:83:01:f0:b2:f5:ed:4a:
22:54:9f:89:a3:3f:3b:73:96:1a:43:89:b8:42:fa:
1b:9b:54:ca:73:d4:ac:f9:d4:c4:81:47:26:70:ee:
d8:91:20:b5:ff:0e:1d:6e:68:cf:d0:ec:23:6b:3e:
49:77:18:73:b1:6d:cc:8a:54:39:37:f2:86:5d:8f:
9a:d2:64:65:a0:f3:dc:cb:42:47:54:c9:8d:f7:1a:
92:83:71:9f:5e:77:3b:0e:dc:2d:b0:43:51:39:02:
2c:8d:d7:85:11:da:06:eb:b7:ae:d2:24:15:25:cf:
34:89:21:0e:ac:7b:53:49:9c:5b:77:96:49:9c:6e:
54:28:ab:5c:d5:69:6b:56:8d:62:90:26:2d:84:e5:
ef:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A5:79:62:3E:8B:BA:B5:2F:E3:53:CB:AC:42:99:2F:9A:C6:EC:D6
X509v3 Authority Key Identifier:
keyid:8A:83:55:5C:AA:22:CE:9B:9B:16:83:50:3A:14:E3:CD:D8:36:E0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ioNVXKoizpubFoNQOhTjzdg24Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7b9cf8-2542-41c2-88c0-1f325473ce68/1/ioNVXKoizpubFoNQOhTjzdg24Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:08:ac:ef:dc:b2:0d:b8:e1:07:3b:e5:f0:8e:d4:d4:ed:19:
ff:a1:f6:0c:7e:cf:73:71:80:5a:ef:83:f5:6b:42:b1:dd:88:
b7:27:2c:b8:98:29:8b:5d:f3:44:55:39:20:2d:df:68:50:18:
19:5f:22:ee:26:23:ff:1a:b7:dd:5f:08:9c:4b:1e:51:2e:12:
a6:01:e7:d9:cf:2b:80:3c:01:72:a2:ba:b2:13:b5:27:fb:03:
ca:4c:d4:e2:40:d1:9a:87:c1:d5:c4:2b:7a:62:19:ec:b2:37:
bf:67:bd:88:76:06:3c:5e:7d:0b:a5:18:2c:f8:4d:b2:aa:cc:
81:43:98:74:15:68:e1:54:6d:ef:57:9a:be:19:bb:92:98:1c:
3a:c5:19:41:85:4d:9b:fd:e1:ce:b1:b9:2c:e8:ae:da:a1:d6:
5f:fe:56:22:f6:73:3d:7c:6e:22:0f:3c:b9:20:54:a6:ff:7e:
21:84:75:ec:52:fa:52:23:b8:dd:50:3c:c2:db:a6:6b:38:99:
7e:fd:7d:d1:29:f2:07:c3:71:2e:4d:23:ef:8e:e9:17:fa:45:
e1:20:d9:54:3c:62:a1:b7:87:f4:6a:c2:f4:ea:7c:d9:db:77:
2a:d7:ed:fa:53:ea:9b:fa:84:da:ff:9d:e9:d9:ef:98:64:5f:
7b:25:b3:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:26 2025 by rpki-client