Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
File: I3ikqcUjJahZIICboaTYniHALxc.mft (raw, json)
Hash identifier: Z/I02TqxMBubBGuDG5T8dr0qqVy5Io29ptqVKfmrBxU=
Subject key identifier: 59:7E:38:C6:21:B2:5B:66:A3:B9:77:B9:0E:A5:E6:51:B0:D7:2C:68
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 01984B55456604FEBD70A8D2AED5F270E6DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
Manifest number: 1350
Signing time: Sun 27 Jul 2025 10:02:15 +0000
Manifest this update: Sun 27 Jul 2025 10:02:15 +0000
Manifest next update: Mon 28 Jul 2025 10:02:15 +0000
Files and hashes: 1: I3ikqcUjJahZIICboaTYniHALxc.crl (hash: EXKMol3huxOOofSuddHv1RQZ1SWW5qz4SczELhpkqpk=)
2: LWXmlZUU3ecfqvwZHXpe4N13PwE.roa (hash: 4NYVwWGAs7YF0X626zcPKU0/2BhITxR5hdojEVCb7vQ=)
3: Sb-J4R6jgDy1hu0trOifGY0aUIY.roa (hash: BnRnuIbBZBHwGOy/+XFTLzwpti+5vGhUFRVEfpqfups=)
4: XNLU8qoxsRXpQnmwz4ctSe-cqyE.roa (hash: JQ5L08jadmyYilDYeIqvPylZ8SNDZ1MGMwYpTLmwoLo=)
5: cEBx7aoqU0ILwpLn4WovM_f845U.roa (hash: J2opbMpTZpUpvX4wcx9CCjjTjdIRz3Wc8zKaGaF1BXs=)
6: caXYCCXqjYg5FcmsNZB3ePKReDk.roa (hash: XSzupsyXsQ8GmhQZJGGSHfiNeG8fCN+9mFDFmlJ4Bu4=)
7: gnOWx6TZJqqJDVFgIEMBOXAqJm4.roa (hash: fy9tgSe6kfwMDX9Ibp9s7/6EtOy/O5uDNSQU1PskuXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 09:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:55:45:66:04:fe:bd:70:a8:d2:ae:d5:f2:70:e6:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: Jul 27 10:02:15 2025 GMT
Not After : Jul 28 10:02:15 2025 GMT
Subject: CN=597e38c621b25b66a3b977b90ea5e651b0d72c68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1a:3a:d1:39:2a:d8:e1:9a:f0:b1:bf:16:ad:
01:f5:dc:a6:52:df:01:45:ad:54:11:e7:74:c8:9e:
79:6b:e7:22:d4:5b:5a:5d:ee:9c:38:7e:ea:f2:14:
f8:36:4c:6c:6b:65:3a:0a:70:0c:34:8d:f6:e8:e3:
c4:df:39:bc:0c:d0:e4:d2:a1:f4:17:98:12:98:64:
8b:53:a8:59:41:4e:14:00:fc:5b:d1:37:f0:c3:d4:
0d:1a:da:c4:05:68:0b:6b:66:1c:f0:42:37:e4:a1:
07:6e:f1:5c:a3:27:8a:45:7d:a4:bb:9c:2f:ba:97:
e6:31:f2:c1:c9:e8:c7:32:56:45:a6:bc:3d:f1:1c:
22:0b:5b:27:f2:de:f0:ae:3e:d0:dd:11:07:b0:21:
d3:ee:4f:73:5b:c8:5e:ba:97:4e:45:d3:b9:63:d9:
3b:c9:08:0d:b0:3a:51:ec:78:8b:cb:dd:46:4f:cc:
35:06:6c:26:d4:da:67:3c:8a:85:34:0f:4f:f5:d6:
68:47:7d:e5:86:7d:ae:45:ad:aa:18:65:1b:bd:fc:
58:b1:88:34:04:02:8c:a1:60:54:03:f3:81:a2:ac:
d6:28:ee:29:54:d1:bd:d3:a9:dd:32:2f:28:52:7c:
a1:34:62:fc:93:d0:bf:03:1b:4a:af:24:ee:6f:bd:
4c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7E:38:C6:21:B2:5B:66:A3:B9:77:B9:0E:A5:E6:51:B0:D7:2C:68
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:47:bb:f2:03:e9:26:0b:6c:ae:ff:be:e2:95:66:7b:a3:61:
4b:b3:dc:76:0b:d2:d8:f9:2e:fd:12:ae:71:68:92:34:8a:af:
af:aa:f2:48:61:ba:61:7a:e6:96:93:21:95:87:e2:4d:91:2e:
0a:23:34:71:95:a1:b3:5d:59:cb:93:7f:f9:45:21:be:4c:75:
92:92:4b:28:3d:e2:26:5e:d9:e3:b8:59:bc:a2:84:f8:b4:88:
18:e4:6e:b5:af:3d:85:62:e4:41:ed:11:85:fd:d6:79:6e:e1:
7d:01:90:de:ab:cd:45:e3:99:98:ef:d3:2a:27:d8:79:13:b9:
7b:49:ac:e9:c9:02:9c:f1:b4:21:13:13:49:b7:05:a8:b6:2f:
a9:f7:dd:ad:da:67:0d:6c:1c:1d:44:93:78:d9:ef:69:d3:66:
76:20:35:12:21:5f:21:69:2b:b3:b9:54:6c:e6:d4:d5:91:e2:
d7:6f:69:a2:f2:02:17:ab:52:5d:47:3b:a4:23:74:b2:4f:15:
03:0f:78:04:80:4b:38:ae:87:f0:43:2c:b8:0a:6b:04:28:18:
55:9b:71:bf:84:a3:e8:c0:d1:cf:fb:14:0b:f5:f7:71:8e:cf:
87:5e:57:f7:ff:ee:2b:36:7a:b7:09:3e:55:6e:0e:aa:d0:71:
57:f2:b9:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhLVUVmBP69cKjSrtXycObbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzNzhhNGE5YzUyMzI1YTg1OTIwODA5YmExYTRkODllMjFj
MDJmMTcwHhcNMjUwNzI3MTAwMjE1WhcNMjUwNzI4MTAwMjE1WjAzMTEwLwYDVQQD
Eyg1OTdlMzhjNjIxYjI1YjY2YTNiOTc3YjkwZWE1ZTY1MWIwZDcyYzY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4ho60Tkq2OGa8LG/Fq0B9dymUt8B
Ra1UEed0yJ55a+ci1FtaXe6cOH7q8hT4Nkxsa2U6CnAMNI326OPE3zm8DNDk0qH0
F5gSmGSLU6hZQU4UAPxb0Tfww9QNGtrEBWgLa2Yc8EI35KEHbvFcoyeKRX2ku5wv
upfmMfLByejHMlZFprw98RwiC1sn8t7wrj7Q3REHsCHT7k9zW8heupdORdO5Y9k7
yQgNsDpR7HiLy91GT8w1Bmwm1NpnPIqFNA9P9dZoR33lhn2uRa2qGGUbvfxYsYg0
BAKMoWBUA/OBoqzWKO4pVNG906ndMi8oUnyhNGL8k9C/AxtKryTub71McwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFl+OMYhsltmo7l3uQ6l5lGw1yxoMB8GA1UdIwQY
MBaAFCN4pKnFIyWoWSCAm6Gk2J4hwC8XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTNpa3FjVWpKYWhaSUlDYm9hVFluaUhBTHhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9kNjU0YmUtMTc0ZS00MWY3LTljZmIt
OTM3ZTI3ZWUxYjViLzEvSTNpa3FjVWpKYWhaSUlDYm9hVFluaUhBTHhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9kNjU0YmUtMTc0ZS00MWY3LTljZmItOTM3ZTI3ZWUxYjVi
LzEvSTNpa3FjVWpKYWhaSUlDYm9hVFluaUhBTHhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANke78gPp
Jgtsrv++4pVme6NhS7PcdgvS2Pku/RKucWiSNIqvr6rySGG6YXrmlpMhlYfiTZEu
CiM0cZWhs11Zy5N/+UUhvkx1kpJLKD3iJl7Z47hZvKKE+LSIGORuta89hWLkQe0R
hf3WeW7hfQGQ3qvNReOZmO/TKifYeRO5e0ms6ckCnPG0IRMTSbcFqLYvqffdrdpn
DWwcHUSTeNnvadNmdiA1EiFfIWkrs7lUbObU1ZHi129povICF6tSXUc7pCN0sk8V
Aw94BIBLOK6H8EMsuAprBCgYVZtxv4Sj6MDRz/sUC/X3cY7Ph15X9//uKzZ6twk+
VW4OqtBxV/K5/w==
-----END CERTIFICATE-----
Generated at Sun Jul 27 14:54:27 2025 by rpki-client