Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
File: iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft (raw, json)
Hash identifier: zzvuTHw2HDA/rpcsrA6rAAK7j2Dmt2IM95y4y4meQDE=
Subject key identifier: C7:C3:07:62:A6:31:08:F0:42:18:D4:8B:A5:E0:5A:1D:AD:73:0F:15
Authority key identifier: 88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
Certificate issuer: /CN=88a780738b853acffbabdb23914c50e36421f773
Certificate serial: 01974F33191DEE149FEEA7CFD1DABB56648F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 11:00:38 +0000
Manifest this update: Sun 08 Jun 2025 11:00:38 +0000
Manifest next update: Mon 09 Jun 2025 11:00:38 +0000
Files and hashes: 1: 0JBSKBByojNYZjOoZlphUB11hQs.roa (hash: 9bDpXvSUlNPWWMoYaJSQ0SO0EuZKnPkwfl5l8GKFytk=)
2: aKf7cpyzNQSyfw8b7-Pr38WCYnc.roa (hash: oRGD5ClevpyjAOYjV/aBq4YhQP42jPwVRjMhzooXQlg=)
3: iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl (hash: tTbBS6qlOmbY6fsPYtc20887LUxkHIxZl69+d+nkygw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:33:19:1d:ee:14:9f:ee:a7:cf:d1:da:bb:56:64:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a780738b853acffbabdb23914c50e36421f773
Validity
Not Before: Jun 8 11:00:38 2025 GMT
Not After : Jun 9 11:00:38 2025 GMT
Subject: CN=c7c30762a63108f04218d48ba5e05a1dad730f15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f6:c1:72:73:29:d8:a0:0d:42:a8:03:bf:1d:
80:89:f7:e0:ce:ce:1c:82:13:70:3d:8f:45:db:ea:
2e:13:b2:5a:fb:8d:21:37:ef:b2:09:b3:ac:d9:0d:
d3:f1:7a:d8:91:91:8c:64:55:e3:91:f1:60:ba:20:
35:c1:f3:44:b8:08:1e:a2:45:12:94:93:90:41:d6:
38:51:d7:a5:7f:37:ef:dd:ee:4a:b1:32:67:5f:88:
59:e0:ca:a8:24:1e:18:dd:30:a4:75:26:ff:b5:f5:
65:ad:5e:72:31:27:68:9b:d2:23:bb:41:04:02:8d:
0e:f0:2f:06:81:01:df:75:fc:98:01:13:cb:26:78:
5b:69:9e:5a:e4:85:85:1d:34:06:3d:b0:eb:85:6c:
29:98:7d:fa:46:c9:40:59:92:3f:f4:ad:f4:23:d4:
5c:7d:af:26:a2:1e:67:46:9d:fd:6e:fa:51:e7:4f:
85:1c:19:1b:42:0c:3b:be:ad:00:c7:cd:98:49:fc:
81:a5:4e:86:5f:48:72:01:70:d1:9e:96:de:c4:8a:
b4:5d:0d:2b:7c:a2:e5:e0:fb:77:17:ef:51:9d:3b:
13:56:bb:4f:bf:68:c2:d6:38:5e:b3:c4:ed:86:63:
f8:83:7a:93:b5:7f:01:5d:54:50:8d:b9:a9:c3:18:
b0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C3:07:62:A6:31:08:F0:42:18:D4:8B:A5:E0:5A:1D:AD:73:0F:15
X509v3 Authority Key Identifier:
keyid:88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:6d:78:4b:f0:63:78:65:0b:53:a0:f9:c8:10:87:f6:3e:a8:
d7:28:c1:8d:b6:26:8d:2b:66:d2:c5:03:bd:e9:00:f0:d4:d5:
3b:8f:42:29:17:38:53:e6:4f:48:dc:3f:b6:c1:26:26:44:a5:
7e:de:4f:60:91:7a:ae:b6:fd:91:d4:31:fb:2d:a3:21:79:c4:
29:36:f8:4b:21:ec:07:be:cf:a3:bf:32:81:2c:b0:e0:25:e6:
84:a5:f4:a1:0a:4b:7d:29:c4:1f:40:f7:3a:e2:82:60:80:0d:
94:83:15:61:97:f9:e4:a1:7c:3a:85:1e:55:19:68:be:98:3d:
ca:61:a6:91:a8:ec:6e:3e:1f:cc:eb:70:39:18:e0:77:c4:aa:
20:11:3c:61:d4:11:4b:98:4c:27:5a:8a:8d:a9:3d:8b:ba:8a:
fa:58:c3:be:0a:8a:d9:f7:be:09:d9:7d:47:e0:91:ad:e2:f5:
74:b5:ef:19:2c:f2:29:0f:9f:a1:bf:df:8e:bd:fa:b9:28:4b:
af:fd:fd:65:b8:f6:40:9a:67:01:65:ce:dd:8d:75:fe:0c:12:
94:c7:2b:e4:00:41:db:0b:91:a6:41:3b:c8:83:7a:64:e8:f9:
8e:83:e7:1e:b2:bd:8c:70:c7:6f:fa:f7:45:d6:4e:3a:4f:fa:
bb:d0:89:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdPMxkd7hSf7qfP0dq7VmSPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YTc4MDczOGI4NTNhY2ZmYmFiZGIyMzkxNGM1MGUzNjQy
MWY3NzMwHhcNMjUwNjA4MTEwMDM4WhcNMjUwNjA5MTEwMDM4WjAzMTEwLwYDVQQD
EyhjN2MzMDc2MmE2MzEwOGYwNDIxOGQ0OGJhNWUwNWExZGFkNzMwZjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmfbBcnMp2KANQqgDvx2Aiffgzs4c
ghNwPY9F2+ouE7Ja+40hN++yCbOs2Q3T8XrYkZGMZFXjkfFguiA1wfNEuAgeokUS
lJOQQdY4Udelfzfv3e5KsTJnX4hZ4MqoJB4Y3TCkdSb/tfVlrV5yMSdom9Iju0EE
Ao0O8C8GgQHfdfyYARPLJnhbaZ5a5IWFHTQGPbDrhWwpmH36RslAWZI/9K30I9Rc
fa8moh5nRp39bvpR50+FHBkbQgw7vq0Ax82YSfyBpU6GX0hyAXDRnpbexIq0XQ0r
fKLl4Pt3F+9RnTsTVrtPv2jC1jhes8TthmP4g3qTtX8BXVRQjbmpwxiwlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMfDB2KmMQjwQhjUi6XgWh2tcw8VMB8GA1UdIwQY
MBaAFIingHOLhTrP+6vbI5FMUONkIfdzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9iODk3MDQtNGZkMi00ZTA3LWEwMzkt
NjZmNTZlZjljZTI2LzEvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9iODk3MDQtNGZkMi00ZTA3LWEwMzktNjZmNTZlZjljZTI2
LzEvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASG14S/Bj
eGULU6D5yBCH9j6o1yjBjbYmjStm0sUDvekA8NTVO49CKRc4U+ZPSNw/tsEmJkSl
ft5PYJF6rrb9kdQx+y2jIXnEKTb4SyHsB77Po78ygSyw4CXmhKX0oQpLfSnEH0D3
OuKCYIANlIMVYZf55KF8OoUeVRlovpg9ymGmkajsbj4fzOtwORjgd8SqIBE8YdQR
S5hMJ1qKjak9i7qK+ljDvgqK2fe+Cdl9R+CRreL1dLXvGSzyKQ+fob/fjr36uShL
r/39Zbj2QJpnAWXO3Y11/gwSlMcr5ABB2wuRpkE7yIN6ZOj5joPnHrK9jHDHb/r3
RdZOOk/6u9CJ8A==
-----END CERTIFICATE-----
Generated at Sun Jun 8 19:22:58 2025 by rpki-client