Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
File: iBmVbdzq4CLP4SPaNzxrERZANo0.mft (raw, json)
Hash identifier: qlZDfTqQm/DGpzj3DeFD25yKIuNt3wbT7I4qZbvF9ds=
Subject key identifier: 61:00:FC:A1:BE:2F:80:7D:36:58:4B:E0:6A:22:B1:86:34:9E:C5:4F
Authority key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
Certificate issuer: /CN=8819956ddceae022cfe123da373c6b111640368d
Certificate serial: 019922C3268D136F3E2E6D9F661318BAD846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
Manifest number: 1283
Signing time: Sun 07 Sep 2025 06:00:38 +0000
Manifest this update: Sun 07 Sep 2025 06:00:38 +0000
Manifest next update: Mon 08 Sep 2025 06:00:38 +0000
Files and hashes: 1: JZQSwG4wbJPMZQTbI1xSGViuvto.roa (hash: 7nxSYve4K7+DiIBeaX8vSWVp7u4kFJYyJFHRolTK/UI=)
2: iBmVbdzq4CLP4SPaNzxrERZANo0.crl (hash: YmBIRRXLlwaASzH4FKmwhsfNmQmkTHpTzcqcU2uCtpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:26:8d:13:6f:3e:2e:6d:9f:66:13:18:ba:d8:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8819956ddceae022cfe123da373c6b111640368d
Validity
Not Before: Sep 7 06:00:38 2025 GMT
Not After : Sep 8 06:00:38 2025 GMT
Subject: CN=6100fca1be2f807d36584be06a22b186349ec54f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:11:13:95:5b:f6:89:ab:26:41:9f:92:77:c1:
d4:6a:5c:8e:83:73:c3:25:d8:4d:ed:56:ee:29:29:
76:6c:97:1f:05:91:8e:c2:8f:2f:0a:e5:9f:47:44:
91:b8:86:05:8a:6b:c4:ab:12:42:7f:0b:23:ba:ac:
1c:9d:6e:96:9a:63:ae:ec:36:cb:f9:96:a7:00:bc:
2b:d2:33:de:48:81:18:19:05:ca:6d:a0:af:f0:92:
d4:9e:05:86:5f:43:05:f6:3c:56:ae:bb:0f:ae:07:
22:ca:6f:d4:d1:77:71:c5:28:61:66:a9:25:c6:0a:
36:f9:29:11:fa:7c:39:88:52:94:d4:18:78:37:14:
1d:c2:d8:0d:37:65:2d:5d:9b:e9:21:bd:70:6b:49:
4d:1c:93:ac:8e:cf:f2:fe:4f:ed:f5:f3:4b:e6:5f:
28:c3:3f:21:b5:a0:d4:e2:f9:e3:24:4e:ac:d6:7f:
ba:8b:74:49:7b:87:c1:16:3e:4b:1f:81:d9:e9:7c:
0a:bb:f0:33:07:47:35:7b:59:dd:4c:7c:6a:e1:20:
11:d9:aa:28:24:74:e0:43:97:31:37:c3:9b:9d:5a:
28:da:27:69:34:ff:72:aa:63:11:fa:b9:13:8e:90:
00:0e:f6:29:31:0b:09:d5:ee:04:35:f5:8e:7f:cf:
1c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:00:FC:A1:BE:2F:80:7D:36:58:4B:E0:6A:22:B1:86:34:9E:C5:4F
X509v3 Authority Key Identifier:
keyid:88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:f6:bb:06:eb:46:16:a5:a0:3a:11:29:6c:b4:58:f4:b9:c2:
f9:44:89:d1:f8:9d:5a:c8:f8:6b:3a:25:f1:34:79:92:54:81:
6e:a1:7a:38:08:31:37:fd:3c:8a:ef:a1:b4:7d:ef:ee:a8:5d:
92:37:46:3a:08:04:91:22:35:aa:c8:03:59:08:a2:4d:42:74:
b3:cb:7b:6e:b9:9b:97:9b:e0:6a:86:cc:f9:70:62:a7:b2:ba:
5e:27:f4:39:e6:0e:67:15:d4:b7:9a:2c:ed:56:04:d3:34:39:
2c:54:ca:e1:e9:7f:ab:8f:a8:44:35:56:57:03:0c:7b:0c:c9:
04:3d:e3:f6:bf:08:36:2f:c7:b4:35:38:43:27:7b:fe:de:a7:
7a:ce:f1:05:19:b4:7a:ee:59:b4:aa:ff:5c:b4:48:43:56:34:
0b:66:98:6e:93:26:28:05:c8:38:92:11:5d:d8:56:77:a7:24:
28:8e:39:98:44:0e:9a:8f:3b:d9:9e:a4:78:95:1c:ef:86:a1:
d1:58:f8:c7:de:19:7f:3d:dc:0a:7e:c7:8f:cd:bb:3f:12:45:
b1:4f:c1:f3:84:73:dc:98:92:13:5f:d4:c8:47:af:58:c7:c4:
39:88:6d:a1:50:42:fe:5c:68:37:39:78:3b:e8:28:2c:93:7e:
4a:65:ef:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiwyaNE28+Lm2fZhMYuthGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MTk5NTZkZGNlYWUwMjJjZmUxMjNkYTM3M2M2YjExMTY0
MDM2OGQwHhcNMjUwOTA3MDYwMDM4WhcNMjUwOTA4MDYwMDM4WjAzMTEwLwYDVQQD
Eyg2MTAwZmNhMWJlMmY4MDdkMzY1ODRiZTA2YTIyYjE4NjM0OWVjNTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphETlVv2iasmQZ+Sd8HUalyOg3PD
JdhN7VbuKSl2bJcfBZGOwo8vCuWfR0SRuIYFimvEqxJCfwsjuqwcnW6WmmOu7DbL
+ZanALwr0jPeSIEYGQXKbaCv8JLUngWGX0MF9jxWrrsPrgciym/U0XdxxShhZqkl
xgo2+SkR+nw5iFKU1Bh4NxQdwtgNN2UtXZvpIb1wa0lNHJOsjs/y/k/t9fNL5l8o
wz8htaDU4vnjJE6s1n+6i3RJe4fBFj5LH4HZ6XwKu/AzB0c1e1ndTHxq4SAR2aoo
JHTgQ5cxN8ObnVoo2idpNP9yqmMR+rkTjpAADvYpMQsJ1e4ENfWOf88cOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGEA/KG+L4B9NlhL4GoisYY0nsVPMB8GA1UdIwQY
MBaAFIgZlW3c6uAiz+Ej2jc8axEWQDaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDkt
MmRlYjE0YzI5MGVkLzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy85ODg3NjgtZjE3Yi00ZjU5LWJlMDktMmRlYjE0YzI5MGVk
LzEvaUJtVmJkenE0Q0xQNFNQYU56eHJFUlpBTm8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJva7ButG
FqWgOhEpbLRY9LnC+USJ0fidWsj4azol8TR5klSBbqF6OAgxN/08iu+htH3v7qhd
kjdGOggEkSI1qsgDWQiiTUJ0s8t7brmbl5vgaobM+XBip7K6Xif0OeYOZxXUt5os
7VYE0zQ5LFTK4el/q4+oRDVWVwMMewzJBD3j9r8INi/HtDU4Qyd7/t6nes7xBRm0
eu5ZtKr/XLRIQ1Y0C2aYbpMmKAXIOJIRXdhWd6ckKI45mEQOmo872Z6keJUc74ah
0Vj4x94Zfz3cCn7Hj827PxJFsU/B84Rz3JiSE1/UyEevWMfEOYhtoVBC/lxoNzl4
O+goLJN+SmXvDg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:34 2025 by rpki-client