Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: Djq8CTcJav7UWLHwRlxz9H7nEOY75Q2sF9Y2zn0Gbm0=
Subject key identifier: 91:04:4F:0E:57:9C:ED:62:03:3C:17:5D:EF:1D:70:BB:88:7A:68:A9
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 01984AE6144E361DE4A1EA78CD2BD13C8D92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 10DB
Signing time: Sun 27 Jul 2025 08:00:49 +0000
Manifest this update: Sun 27 Jul 2025 08:00:49 +0000
Manifest next update: Mon 28 Jul 2025 08:00:49 +0000
Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: 6vyUWG0cy5mlPXi4oQZ56YwGbmBQOxdXOZvQ4Zn6pn8=)
2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:e6:14:4e:36:1d:e4:a1:ea:78:cd:2b:d1:3c:8d:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Jul 27 08:00:49 2025 GMT
Not After : Jul 28 08:00:49 2025 GMT
Subject: CN=91044f0e579ced62033c175def1d70bb887a68a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a5:ee:6c:ba:ec:3c:fa:72:cd:ae:5a:72:14:
00:7e:7f:ae:43:fe:84:da:f4:13:9a:33:9d:43:c5:
23:a1:90:35:49:84:c5:75:db:3e:9a:a9:23:6a:fc:
40:a1:11:be:83:83:12:04:57:b3:3c:4f:b8:d0:31:
38:5a:7d:bc:b8:9f:ed:b3:dd:38:95:1f:92:fb:f8:
a6:70:a1:13:03:13:12:86:e0:52:1f:4d:aa:8b:c5:
0d:c2:24:1c:00:c8:d9:c3:76:9d:17:5f:1e:1d:0f:
38:61:3d:56:d2:6e:47:d0:6f:24:dc:e6:88:22:1d:
71:b0:64:cf:16:52:f5:38:9b:6f:27:f1:08:4b:c7:
6c:69:3f:b2:2b:14:f9:04:2c:6a:59:ca:fe:10:5d:
a4:c8:04:b3:28:c9:2c:3b:16:f6:84:c7:2f:d7:b5:
49:46:f7:64:7f:0f:8d:9b:45:89:12:27:1a:9f:00:
e2:65:48:0f:75:69:ff:a4:5b:94:41:ff:3e:89:88:
27:94:15:19:19:da:58:37:05:07:2a:46:17:f4:c1:
7c:56:c3:64:7b:6f:72:08:81:0e:38:1c:bb:d3:5c:
5c:ab:44:1a:0c:01:48:fe:19:b8:da:e7:9d:99:a8:
3c:ec:f1:19:fd:44:12:5d:ac:bb:5a:8f:fc:b4:84:
9b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:04:4F:0E:57:9C:ED:62:03:3C:17:5D:EF:1D:70:BB:88:7A:68:A9
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:57:aa:74:24:c9:66:5d:c3:45:db:92:03:9a:ca:59:f1:28:
3f:da:1e:68:e6:89:69:c0:3e:3e:b9:97:1f:0f:47:1e:ef:6e:
a5:f8:db:ef:22:25:06:8d:68:d1:9c:e7:1a:96:58:96:de:63:
81:73:2e:73:84:e9:60:1c:16:10:c7:1d:21:ee:34:08:b6:cf:
19:b8:b3:66:22:a5:c8:ec:ab:bd:8d:ea:e9:40:e8:10:e5:fb:
26:ac:ce:8c:28:86:a1:f0:c1:7e:15:af:b4:8b:58:8f:c9:b5:
8f:01:7f:93:05:3e:e0:81:2a:06:1a:6a:a3:de:2c:98:56:73:
24:08:6f:20:39:65:e0:ce:db:ce:5a:90:04:e9:d7:da:69:80:
04:6b:af:80:c6:ef:37:b6:f7:2f:c8:9b:c2:8b:95:c6:3c:e5:
c2:f2:a4:8b:12:ef:98:6d:1d:f9:55:b3:71:49:cf:72:ab:68:
4a:2c:bf:9e:e8:c8:8a:19:80:70:e8:54:19:54:c2:56:fe:8f:
17:63:ce:40:16:49:4e:e1:ce:32:5e:a0:07:f9:79:b7:21:78:
9d:c4:b3:4d:2e:28:ad:ac:7c:17:de:ce:b0:2f:00:b9:dd:a0:
80:bb:51:d4:49:c1:00:58:cf:92:1f:a9:50:74:78:2f:54:07:
75:c0:83:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhK5hRONh3koep4zSvRPI2SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ODE2NjQ2M2ExYTMwMWNhNWI2ZWI5OGJkZGQwN2UzOTcw
OTE5ODYwHhcNMjUwNzI3MDgwMDQ5WhcNMjUwNzI4MDgwMDQ5WjAzMTEwLwYDVQQD
Eyg5MTA0NGYwZTU3OWNlZDYyMDMzYzE3NWRlZjFkNzBiYjg4N2E2OGE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6XubLrsPPpyza5achQAfn+uQ/6E
2vQTmjOdQ8UjoZA1SYTFdds+mqkjavxAoRG+g4MSBFezPE+40DE4Wn28uJ/ts904
lR+S+/imcKETAxMShuBSH02qi8UNwiQcAMjZw3adF18eHQ84YT1W0m5H0G8k3OaI
Ih1xsGTPFlL1OJtvJ/EIS8dsaT+yKxT5BCxqWcr+EF2kyASzKMksOxb2hMcv17VJ
Rvdkfw+Nm0WJEicanwDiZUgPdWn/pFuUQf8+iYgnlBUZGdpYNwUHKkYX9MF8VsNk
e29yCIEOOBy701xcq0QaDAFI/hm42uedmag87PEZ/UQSXay7Wo/8tISbaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJEETw5XnO1iAzwXXe8dcLuIemipMB8GA1UdIwQY
MBaAFIiBZkY6GjAcpbbrmL3dB+OXCRmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUt
MzhjMmMyYTc5YzM1LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUtMzhjMmMyYTc5YzM1
LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArVeqdCTJ
Zl3DRduSA5rKWfEoP9oeaOaJacA+PrmXHw9HHu9upfjb7yIlBo1o0ZznGpZYlt5j
gXMuc4TpYBwWEMcdIe40CLbPGbizZiKlyOyrvY3q6UDoEOX7JqzOjCiGofDBfhWv
tItYj8m1jwF/kwU+4IEqBhpqo94smFZzJAhvIDll4M7bzlqQBOnX2mmABGuvgMbv
N7b3L8ibwouVxjzlwvKkixLvmG0d+VWzcUnPcqtoSiy/nujIihmAcOhUGVTCVv6P
F2POQBZJTuHOMl6gB/l5tyF4ncSzTS4orax8F97OsC8Aud2ggLtR1EnBAFjPkh+p
UHR4L1QHdcCDNA==
-----END CERTIFICATE-----
Generated at Sun Jul 27 11:55:30 2025 by rpki-client