
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File: iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier: ezqJMcfH8pcqM+P4a3+7lJWDSJTH8MNp2hLlinkiYkk=
Subject key identifier: 75:46:28:3E:00:CB:50:6F:63:2D:C3:B2:AA:2D:16:30:A5:51:B6:A6
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer: /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial: 01976A05A286C3C45D85242BA7A0E257C118
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number: 0D2B
Signing time: Fri 13 Jun 2025 16:00:43 +0000
Manifest this update: Fri 13 Jun 2025 16:00:43 +0000
Manifest next update: Sat 14 Jun 2025 16:00:43 +0000
Files and hashes: 1: P5TwA4gqR6DNAZ9Tx38K6wVBeSw.roa (hash: JFHWlXs6ts8+WEohOsphMs0bmJPDZeURLkqEXMqad1U=)
2: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: yFcf+qr7pocXfAri98g+h6zJzVszxMuyRGN3Y/MDrOc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:a2:86:c3:c4:5d:85:24:2b:a7:a0:e2:57:c1:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Validity
Not Before: Jun 13 16:00:43 2025 GMT
Not After : Jun 14 16:00:43 2025 GMT
Subject: CN=7546283e00cb506f632dc3b2aa2d1630a551b6a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d9:46:c8:4e:67:e8:17:19:e6:18:a5:58:60:
8b:3a:2a:da:2a:b0:8a:d6:b1:be:ce:2a:52:7f:6a:
23:df:60:d6:38:d1:d2:16:a7:bb:8b:6b:9a:67:fd:
ce:2f:24:15:da:29:98:9d:c3:de:41:56:46:23:7d:
93:07:4e:c9:63:a1:29:7f:fb:2f:2c:03:4d:11:d3:
2b:5f:fa:ad:13:cd:9a:f8:f6:b7:ef:f2:24:37:11:
bc:46:ea:15:20:b9:30:2a:1e:20:e9:13:54:77:e8:
c9:47:c0:a7:66:df:d3:1c:ef:b8:3d:e3:6a:4d:51:
7c:59:76:01:32:f0:d8:20:1d:2f:16:34:5a:2f:a4:
0e:21:77:7d:48:cf:f7:4a:6b:e2:69:8f:c8:d6:da:
00:0d:c1:b7:39:81:36:a5:51:73:1f:66:40:15:23:
33:82:72:9c:e7:24:8b:7e:b5:4f:b8:4d:ff:ba:a8:
92:8a:a8:99:47:f4:71:ba:f5:f3:ef:46:82:3f:cd:
3c:91:8d:fb:b3:f3:1c:f8:43:e9:72:02:ce:3f:07:
02:c2:7b:1f:a0:fc:4f:72:f0:a4:86:64:2a:51:2a:
ed:06:81:2a:3b:17:75:aa:ef:2d:76:8a:b3:14:c7:
69:fa:d2:b5:81:1b:eb:46:2c:e4:e8:11:2a:eb:19:
3f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:46:28:3E:00:CB:50:6F:63:2D:C3:B2:AA:2D:16:30:A5:51:B6:A6
X509v3 Authority Key Identifier:
keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:e0:ca:48:b5:5d:c7:10:cf:0c:ff:d5:a2:e5:dd:69:ed:26:
7e:b3:cc:bc:a7:5d:3f:21:17:15:9c:8d:53:98:29:ae:82:9e:
28:86:91:07:26:e6:fc:51:25:af:fd:25:c8:40:cf:3b:48:a7:
f0:8b:96:2a:20:f2:2f:32:a7:66:7b:70:7a:75:14:fe:b6:6b:
d6:81:37:f1:3a:c8:aa:91:2a:bc:f0:98:95:68:e1:2a:9c:5e:
04:95:f1:f0:14:4c:4f:ff:d3:b7:58:e9:c6:ad:a7:64:c6:69:
b7:9e:37:2e:eb:b2:da:08:6a:81:60:2c:9b:11:2d:b8:e6:11:
cd:d9:ad:e6:ee:32:63:b4:31:80:55:e6:3d:25:7c:d2:9a:6a:
b8:70:ba:b4:ab:e5:c3:78:f2:7e:ce:b7:08:a2:cf:b2:c9:7c:
03:13:02:a1:3d:28:8b:bb:db:91:87:4d:6f:7f:38:bc:3a:63:
80:8e:b2:5a:83:c3:50:4f:1e:cb:b9:01:f7:3c:5d:dd:b3:e3:
ca:13:54:19:96:4f:4c:05:a6:fe:65:31:03:57:cb:a2:7f:fa:
a7:e0:61:e7:9f:ef:6b:ce:74:75:33:66:45:cd:47:47:e8:47:
2e:cc:49:40:9b:c3:e4:04:a0:2c:c3:bb:92:78:8b:9a:6a:52:
ee:90:f9:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdqBaKGw8RdhSQrp6DiV8EYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZWJhYTJmMTc2OWEzZGRmNjVmODczZGMzMWYzNTFlZjA3
OGFkMjUwHhcNMjUwNjEzMTYwMDQzWhcNMjUwNjE0MTYwMDQzWjAzMTEwLwYDVQQD
Eyg3NTQ2MjgzZTAwY2I1MDZmNjMyZGMzYjJhYTJkMTYzMGE1NTFiNmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtlGyE5n6BcZ5hilWGCLOiraKrCK
1rG+zipSf2oj32DWONHSFqe7i2uaZ/3OLyQV2imYncPeQVZGI32TB07JY6Epf/sv
LANNEdMrX/qtE82a+Pa37/IkNxG8RuoVILkwKh4g6RNUd+jJR8CnZt/THO+4PeNq
TVF8WXYBMvDYIB0vFjRaL6QOIXd9SM/3SmviaY/I1toADcG3OYE2pVFzH2ZAFSMz
gnKc5ySLfrVPuE3/uqiSiqiZR/RxuvXz70aCP808kY37s/Mc+EPpcgLOPwcCwnsf
oPxPcvCkhmQqUSrtBoEqOxd1qu8tdoqzFMdp+tK1gRvrRizk6BEq6xk/0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHVGKD4Ay1BvYy3DsqotFjClUbamMB8GA1UdIwQY
MBaAFIjrqi8XaaPd9l+HPcMfNR7weK0lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy84YmZjYzItNWRlZi00NGFhLTg3YzEt
MmJiZjQ2ODg0NTg1LzEvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy84YmZjYzItNWRlZi00NGFhLTg3YzEtMmJiZjQ2ODg0NTg1
LzEvaU91cUx4ZHBvOTMyWDRjOXd4ODFIdkI0clNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc+DKSLVd
xxDPDP/VouXdae0mfrPMvKddPyEXFZyNU5gproKeKIaRBybm/FElr/0lyEDPO0in
8IuWKiDyLzKnZntwenUU/rZr1oE38TrIqpEqvPCYlWjhKpxeBJXx8BRMT//Tt1jp
xq2nZMZpt543Luuy2ghqgWAsmxEtuOYRzdmt5u4yY7QxgFXmPSV80ppquHC6tKvl
w3jyfs63CKLPssl8AxMCoT0oi7vbkYdNb384vDpjgI6yWoPDUE8ey7kB9zxd3bPj
yhNUGZZPTAWm/mUxA1fLon/6p+Bh55/va850dTNmRc1HR+hHLsxJQJvD5ASgLMO7
kniLmmpS7pD5cA==
-----END CERTIFICATE-----
Generated at Fri Jun 13 20:50:56 2025 by rpki-client