Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
File: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft (raw, json)
Hash identifier: K5QtRPhZwWRJTfetGy2A3AuqjYMgjV3PsyWDfIM8rLA=
Subject key identifier: 8A:F2:37:5B:D5:5C:10:71:50:76:54:FA:61:CC:76:3A:38:81:D4:7A
Authority key identifier: 88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
Certificate issuer: /CN=88a8d325f97b03713342682fc408d53368740e7d
Certificate serial: 0197D7ABFAABF0A3F94C0CD755D71F861EDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
Manifest number: 1053
Signing time: Fri 04 Jul 2025 23:01:01 +0000
Manifest this update: Fri 04 Jul 2025 23:01:01 +0000
Manifest next update: Sat 05 Jul 2025 23:01:01 +0000
Files and hashes: 1: 1g597y06foQbOFcS_h93SwkhNOQ.roa (hash: TZdC67NT8fkd1drCN7n7TEHOt/q1UG1cqUfoMBev2T4=)
2: iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl (hash: sUcXFN//rzKNcDIBysN8oc4j+CWFOTQA6mZbkxxLNZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d7:ab:fa:ab:f0:a3:f9:4c:0c:d7:55:d7:1f:86:1e:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a8d325f97b03713342682fc408d53368740e7d
Validity
Not Before: Jul 4 23:01:01 2025 GMT
Not After : Jul 5 23:01:01 2025 GMT
Subject: CN=8af2375bd55c1071507654fa61cc763a3881d47a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c6:b5:c5:99:2b:21:0b:c5:16:28:5d:d7:78:
13:91:b9:24:14:96:4b:f8:b1:2a:c5:af:40:b8:a3:
2b:eb:9e:01:50:e3:54:c3:48:16:2e:5b:db:00:1d:
99:50:df:ef:29:71:66:bf:c7:cd:d0:86:89:92:7a:
7e:10:9b:96:22:20:23:6f:3c:14:3c:57:1f:68:6f:
a5:16:4f:20:15:05:c8:7e:b2:72:dc:7d:aa:35:ad:
00:f0:f4:1a:be:e6:5a:8e:3a:86:b8:61:01:f1:b1:
1d:55:72:64:a6:9d:fc:a2:b7:3b:ec:36:1a:89:ca:
03:8a:71:2b:3e:3c:f5:d2:3f:cb:dd:d4:62:ed:b6:
b3:e3:76:49:07:98:77:86:e6:19:f9:42:1e:a4:60:
f8:b4:bd:97:61:95:d3:29:dd:70:bc:01:73:fe:ca:
c3:69:f4:23:bf:00:f5:99:c6:2b:c4:f6:29:1e:ed:
82:48:b6:51:78:07:f4:8e:e8:e2:6b:91:ba:c2:f5:
39:e4:a8:c0:ff:a1:08:79:71:66:5f:5a:69:48:9a:
da:c6:b1:37:fe:be:6a:4b:a5:35:77:a3:a5:f3:75:
bc:a7:a5:2e:bc:cb:87:98:ce:a1:a4:6d:c1:bf:03:
1a:4d:7e:22:0f:1b:f1:8f:40:42:3b:5f:eb:c8:cd:
7c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F2:37:5B:D5:5C:10:71:50:76:54:FA:61:CC:76:3A:38:81:D4:7A
X509v3 Authority Key Identifier:
keyid:88:A8:D3:25:F9:7B:03:71:33:42:68:2F:C4:08:D5:33:68:74:0E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/645bb2-fc34-429b-a7f0-cf03fa4ca083/1/iKjTJfl7A3EzQmgvxAjVM2h0Dn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:51:d1:51:ce:04:0d:d0:56:2e:a6:d3:78:35:1a:2a:da:c0:
7f:45:2e:c8:be:2c:37:ae:cd:ff:49:0a:b8:29:11:a8:5d:95:
6e:0b:98:0c:6b:90:55:34:b2:c1:ab:77:8d:e4:4a:a5:3e:73:
26:d6:40:cb:a5:f2:1c:4f:8a:2c:65:70:7d:a8:22:39:0c:74:
fb:7c:7a:e4:91:a8:65:db:96:9c:8a:2b:41:43:9f:2a:22:44:
b6:50:ce:48:53:84:76:22:92:bc:be:ed:b4:5f:88:26:4d:79:
78:7d:34:08:fd:fb:2b:15:5b:05:e8:b7:9c:f9:d7:0f:b1:02:
60:38:eb:c7:31:39:84:be:b7:f9:07:7d:84:fd:2c:ba:b9:ff:
13:91:e3:6c:0d:b6:d5:1a:09:6d:35:9e:16:09:77:1b:10:cf:
ac:96:e4:56:7f:6b:5d:94:e7:a0:4a:86:89:63:83:64:5b:ff:
20:86:cf:9f:65:4d:1a:97:4a:e5:93:ac:fe:dc:b8:99:c9:62:
92:f1:ac:fe:7b:7d:e5:82:d9:1f:7c:c9:bf:26:ab:03:c4:45:
23:c5:37:e6:56:f4:d3:f0:ec:d1:1d:cc:99:8c:9f:30:86:ad:
f8:40:bd:86:fb:7e:f5:b0:71:65:d6:6c:27:4f:c7:10:5b:f2:
73:c8:d2:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfXq/qr8KP5TAzXVdcfhh7eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YThkMzI1Zjk3YjAzNzEzMzQyNjgyZmM0MDhkNTMzNjg3
NDBlN2QwHhcNMjUwNzA0MjMwMTAxWhcNMjUwNzA1MjMwMTAxWjAzMTEwLwYDVQQD
Eyg4YWYyMzc1YmQ1NWMxMDcxNTA3NjU0ZmE2MWNjNzYzYTM4ODFkNDdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMa1xZkrIQvFFihd13gTkbkkFJZL
+LEqxa9AuKMr654BUONUw0gWLlvbAB2ZUN/vKXFmv8fN0IaJknp+EJuWIiAjbzwU
PFcfaG+lFk8gFQXIfrJy3H2qNa0A8PQavuZajjqGuGEB8bEdVXJkpp38orc77DYa
icoDinErPjz10j/L3dRi7baz43ZJB5h3huYZ+UIepGD4tL2XYZXTKd1wvAFz/srD
afQjvwD1mcYrxPYpHu2CSLZReAf0jujia5G6wvU55KjA/6EIeXFmX1ppSJraxrE3
/r5qS6U1d6Ol83W8p6UuvMuHmM6hpG3BvwMaTX4iDxvxj0BCO1/ryM18OwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIryN1vVXBBxUHZU+mHMdjo4gdR6MB8GA1UdIwQY
MBaAFIio0yX5ewNxM0JoL8QI1TNodA59MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy82NDViYjItZmMzNC00MjliLWE3ZjAt
Y2YwM2ZhNGNhMDgzLzEvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy82NDViYjItZmMzNC00MjliLWE3ZjAtY2YwM2ZhNGNhMDgz
LzEvaUtqVEpmbDdBM0V6UW1ndnhBalZNMmgwRG4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK1HRUc4E
DdBWLqbTeDUaKtrAf0UuyL4sN67N/0kKuCkRqF2VbguYDGuQVTSywat3jeRKpT5z
JtZAy6XyHE+KLGVwfagiOQx0+3x65JGoZduWnIorQUOfKiJEtlDOSFOEdiKSvL7t
tF+IJk15eH00CP37KxVbBei3nPnXD7ECYDjrxzE5hL63+Qd9hP0surn/E5HjbA22
1RoJbTWeFgl3GxDPrJbkVn9rXZTnoEqGiWODZFv/IIbPn2VNGpdK5ZOs/ty4mcli
kvGs/nt95YLZH3zJvyarA8RFI8U35lb00/Ds0R3MmYyfMIat+EC9hvt+9bBxZdZs
J0/HEFvyc8jShQ==
-----END CERTIFICATE-----
Generated at Sat Jul 5 01:21:19 2025 by rpki-client