Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: 1T0+K2+uaIloAJ+LbJXV7GWWDIQM8rPmrA5Ljh0wV9A=
Subject key identifier: F6:44:09:3E:6D:83:57:EA:2D:6A:BF:B3:08:F9:AB:FA:60:BE:EB:C7
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 019847E54EFFF83C4A530FA4B29D0C0B5DAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 12A1
Signing time: Sat 26 Jul 2025 18:01:06 +0000
Manifest this update: Sat 26 Jul 2025 18:01:06 +0000
Manifest next update: Sun 27 Jul 2025 18:01:06 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: Mtxr3Wq+qxUjTdDffzZwLGHGqy+wktD2AOWfiIRCtiE=)
2: aEJUX-P3iWzm8iZ2YmNhX1BUm-w.roa (hash: UCW6fp2JBu8X3L8wVEatff2uZp8yn3edNh91K1NyH88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:e5:4e:ff:f8:3c:4a:53:0f:a4:b2:9d:0c:0b:5d:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Jul 26 18:01:06 2025 GMT
Not After : Jul 27 18:01:06 2025 GMT
Subject: CN=f644093e6d8357ea2d6abfb308f9abfa60beebc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0e:c3:2b:0d:6b:f9:7a:59:38:51:d5:e4:c0:
ce:17:3d:05:20:57:66:41:05:1e:0f:36:c1:a8:6f:
ad:e4:60:b7:e1:1d:25:d9:34:b5:d0:83:86:7b:6e:
b6:17:83:fe:93:ef:d6:f7:04:50:89:ff:68:ab:bb:
f3:a4:46:31:3e:34:52:38:b9:b5:33:29:b8:35:2a:
28:33:61:97:91:c2:53:58:20:e5:52:e0:e9:ed:c8:
1e:d3:a7:be:41:75:5d:33:84:41:af:5f:0e:67:40:
69:cf:24:80:94:8e:f9:16:06:4b:60:f4:b7:28:59:
50:ca:0b:e0:8b:01:26:51:3e:0a:89:3c:06:ad:3a:
99:69:05:5b:99:0d:12:0e:86:ef:45:85:7d:d3:49:
cd:8b:48:49:73:1a:c7:eb:7d:e6:2c:e7:d0:fc:8b:
06:8c:09:74:6f:f6:ec:27:45:02:a5:46:ef:ac:ea:
cf:50:c5:3c:fd:93:66:c8:56:17:c9:61:ed:9b:f0:
6a:79:86:32:21:a2:54:62:5e:e4:99:53:46:bf:2f:
0a:15:3b:29:8b:6d:5b:a2:f0:51:7f:f6:ea:a7:0f:
3c:60:03:c8:10:da:c0:ed:9d:30:03:fb:57:61:dc:
20:f4:f5:66:58:71:58:63:2f:de:1a:e5:68:4d:2f:
7c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:44:09:3E:6D:83:57:EA:2D:6A:BF:B3:08:F9:AB:FA:60:BE:EB:C7
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:3c:aa:0c:88:3e:da:bf:29:17:1a:a4:3d:64:e7:67:90:53:
f0:16:75:00:03:4f:cd:f9:9e:81:0e:2f:43:69:23:cd:f1:a2:
c4:5b:f8:65:6a:c6:39:7f:44:6d:88:c5:b1:2a:35:9c:05:e0:
5f:7b:b5:11:24:b1:63:7e:ee:f3:b7:30:86:72:96:00:aa:d3:
4f:fc:e8:c4:79:50:ef:b4:dd:8d:15:70:4a:c8:75:70:20:a3:
c7:c7:8a:f3:55:e1:d7:f5:a0:b7:42:58:d6:1a:b9:4b:82:d6:
d0:b9:bb:52:c4:8b:f6:fa:9a:33:3a:bc:27:55:9f:4a:93:cf:
47:e1:7f:7e:eb:c7:91:02:05:05:fd:d4:e2:fa:b7:ea:88:86:
2c:3a:f5:ec:70:67:66:71:3f:12:0d:8f:bd:2a:f7:0d:10:e5:
f7:05:7e:95:fe:7d:a5:db:24:ca:12:52:6d:81:6a:8a:80:ab:
66:78:e6:9e:3e:73:e1:4f:21:f4:1b:59:8b:f5:4b:d7:d5:36:
46:1a:e1:f6:38:6b:81:79:66:e1:55:84:53:c9:2a:fb:2e:f3:
61:f2:4a:56:6a:f8:b9:84:78:c3:08:ce:40:74:f1:f6:87:2f:
19:6b:12:6a:16:e9:ac:dd:07:b1:b5:23:bf:b3:77:ec:dc:8b:
34:9f:ca:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhH5U7/+DxKUw+ksp0MC12sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMDRkNjI5MzI3NDM5NmY1YThkNjkxNDg1ZDY4NzZhMGEy
MDcxZDkwHhcNMjUwNzI2MTgwMTA2WhcNMjUwNzI3MTgwMTA2WjAzMTEwLwYDVQQD
EyhmNjQ0MDkzZTZkODM1N2VhMmQ2YWJmYjMwOGY5YWJmYTYwYmVlYmM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuA7DKw1r+XpZOFHV5MDOFz0FIFdm
QQUeDzbBqG+t5GC34R0l2TS10IOGe262F4P+k+/W9wRQif9oq7vzpEYxPjRSOLm1
Mym4NSooM2GXkcJTWCDlUuDp7cge06e+QXVdM4RBr18OZ0BpzySAlI75FgZLYPS3
KFlQygvgiwEmUT4KiTwGrTqZaQVbmQ0SDobvRYV900nNi0hJcxrH633mLOfQ/IsG
jAl0b/bsJ0UCpUbvrOrPUMU8/ZNmyFYXyWHtm/BqeYYyIaJUYl7kmVNGvy8KFTsp
i21bovBRf/bqpw88YAPIENrA7Z0wA/tXYdwg9PVmWHFYYy/eGuVoTS98LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPZECT5tg1fqLWq/swj5q/pgvuvHMB8GA1UdIwQY
MBaAFCAE1ikydDlvWo1pFIXWh2oKIHHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzIt
NGVmOWNjNzUxNTE3LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzItNGVmOWNjNzUxNTE3
LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxjyqDIg+
2r8pFxqkPWTnZ5BT8BZ1AANPzfmegQ4vQ2kjzfGixFv4ZWrGOX9EbYjFsSo1nAXg
X3u1ESSxY37u87cwhnKWAKrTT/zoxHlQ77TdjRVwSsh1cCCjx8eK81Xh1/Wgt0JY
1hq5S4LW0Lm7UsSL9vqaMzq8J1WfSpPPR+F/fuvHkQIFBf3U4vq36oiGLDr17HBn
ZnE/Eg2PvSr3DRDl9wV+lf59pdskyhJSbYFqioCrZnjmnj5z4U8h9BtZi/VL19U2
Rhrh9jhrgXlm4VWEU8kq+y7zYfJKVmr4uYR4wwjOQHTx9ocvGWsSahbprN0HsbUj
v7N37NyLNJ/KIw==
-----END CERTIFICATE-----
Generated at Sat Jul 26 20:08:28 2025 by rpki-client