Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
File: i7i2EnIdTUwtB8v-LklemGoPAm0.mft (raw, json)
Hash identifier: 6Rzg/xxqgn/BFacvZZtUMZZF/Dzn+5L2g8gd6JAAyrA=
Subject key identifier: 73:A9:BE:A2:D4:75:B1:CF:D6:F1:51:5D:3C:48:ED:5A:CF:E3:19:A2
Authority key identifier: 8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
Certificate issuer: /CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Certificate serial: 0199240CD82E39DE10E514E295AF2F856E0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
Manifest number: 0653
Signing time: Sun 07 Sep 2025 12:00:45 +0000
Manifest this update: Sun 07 Sep 2025 12:00:45 +0000
Manifest next update: Mon 08 Sep 2025 12:00:45 +0000
Files and hashes: 1: i2xjHboexoRTpg38Qi-okoPsUcQ.roa (hash: x9dOoFm67St5fPryA+wWNLVDwzCG4EBSO5jTeQtPIqE=)
2: i7i2EnIdTUwtB8v-LklemGoPAm0.crl (hash: r3/EMBpcKNehOLfzUnwTB7LSd0C5kfnU7KrVI1zVIDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0c:d8:2e:39:de:10:e5:14:e2:95:af:2f:85:6e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb8b612721d4d4c2d07cbfe2e495e986a0f026d
Validity
Not Before: Sep 7 12:00:45 2025 GMT
Not After : Sep 8 12:00:45 2025 GMT
Subject: CN=73a9bea2d475b1cfd6f1515d3c48ed5acfe319a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:56:6b:af:ec:31:65:79:1b:fb:9d:40:22:46:
fb:36:50:c6:5a:9a:ef:82:32:7f:10:42:73:18:fa:
5c:75:ff:f8:6b:67:f6:50:87:43:fa:51:19:3d:d3:
27:7a:fa:c5:57:bc:f0:72:df:84:6d:84:60:d3:40:
91:68:2f:70:56:ff:fe:f7:e2:ca:72:2c:fa:65:cf:
ca:75:4c:66:cc:b6:69:5a:4f:8c:0a:13:ae:f3:95:
a7:b3:3c:77:2f:76:6e:43:7e:1b:99:f1:23:c4:fd:
bb:4c:99:94:3b:6e:08:60:40:94:13:4f:0d:a2:76:
e8:48:75:0f:84:18:f0:91:54:1f:1c:ec:8d:36:b0:
38:9e:77:57:61:09:8b:85:ff:b9:2b:57:81:a8:51:
b0:e5:16:0b:41:38:33:a0:bc:ea:c9:c5:36:e2:4e:
70:09:62:f9:e2:f9:70:bc:39:e1:3c:15:59:b8:e3:
fd:b1:5f:f2:ce:44:9b:4a:4b:d9:a4:b8:6e:40:8c:
2e:d7:09:ae:b2:db:0a:53:02:bf:28:1d:ec:ed:b5:
72:77:82:95:59:03:1f:9a:9a:18:77:27:43:e2:70:
6f:d9:a6:1b:ad:74:0d:e7:16:6d:38:a8:a7:f7:d5:
fb:93:47:43:6c:14:ba:3f:60:cf:b7:fd:37:ff:7c:
a1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A9:BE:A2:D4:75:B1:CF:D6:F1:51:5D:3C:48:ED:5A:CF:E3:19:A2
X509v3 Authority Key Identifier:
keyid:8B:B8:B6:12:72:1D:4D:4C:2D:07:CB:FE:2E:49:5E:98:6A:0F:02:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7i2EnIdTUwtB8v-LklemGoPAm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/7192c2-a788-4f56-be6b-bb493c46df3e/1/i7i2EnIdTUwtB8v-LklemGoPAm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:d2:df:ee:fe:58:f5:ac:e0:de:3f:f3:9a:78:9e:92:e5:1d:
dd:d3:c3:db:a7:45:45:4f:08:ce:91:1a:8f:c7:4d:c2:91:57:
58:42:68:bd:6d:3a:25:9a:79:11:ba:95:cb:3b:42:f8:3b:5c:
9a:99:11:7f:9a:55:d0:e3:28:d0:92:79:49:70:30:73:db:71:
17:c5:d9:18:c9:36:28:4b:8a:c1:46:74:62:1d:b1:06:bc:70:
fa:c4:a3:95:73:0c:3e:eb:d5:e0:10:c1:9e:af:04:03:d6:a7:
73:e5:b0:10:8c:e9:05:47:57:cb:25:b7:26:51:8a:30:e8:eb:
27:40:67:90:98:84:12:76:bb:08:be:5b:09:cb:a3:33:e5:19:
f3:73:06:b7:e2:66:c7:44:3a:52:9a:dc:7c:0e:c6:c3:a0:a8:
b0:66:9f:b4:06:07:30:3a:53:e9:47:db:fa:82:6f:ef:87:53:
64:74:26:53:db:5e:43:fb:6e:d2:79:9a:2e:be:df:a9:a3:10:
cd:45:aa:e5:f5:55:df:7c:23:23:69:22:73:3f:70:2e:77:f0:
ac:91:08:df:12:b3:33:64:a8:a8:3e:92:d4:90:8a:f5:3e:87:
a9:79:53:50:bf:12:c8:5e:a4:b3:30:ea:2b:a8:58:c6:2d:e5:
30:94:0a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:37:02 2025 by rpki-client