Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
File: I_IfcxbhvXj4bupkJdXCKbmA-aw.mft (raw, json)
Hash identifier: LZW2CCoUiSxWk2K+uGJpntaNbvgZsSMuWLKYTz0Cp1s=
Subject key identifier: 65:84:AD:4B:F9:4D:0C:75:22:E3:F4:C1:70:D9:48:EB:7C:C4:14:B4
Authority key identifier: 23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
Certificate issuer: /CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Certificate serial: 019A71EEA7890CEFC714876A78C20E3F2D2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 08:00:57 +0000
Manifest this update: Tue 11 Nov 2025 08:00:57 +0000
Manifest next update: Wed 12 Nov 2025 08:00:57 +0000
Files and hashes: 1: 15gQ3l_CTz5DpsQh5tCstrbwJks.roa (hash: NBh6zaBQW3FImxNGTreLJET3gJwOeBKW+FttZU4GhEA=)
2: I_IfcxbhvXj4bupkJdXCKbmA-aw.crl (hash: nKkuT4k8hW5Y8slWpqw4lhB7LsodUHZzTKAWfkyEpOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:a7:89:0c:ef:c7:14:87:6a:78:c2:0e:3f:2d:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Validity
Not Before: Nov 11 08:00:57 2025 GMT
Not After : Nov 12 08:00:57 2025 GMT
Subject: CN=6584ad4bf94d0c7522e3f4c170d948eb7cc414b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c6:76:82:a9:90:e5:ed:cb:2f:5f:49:1f:d0:
2e:5e:2e:59:36:44:7a:e6:c5:69:6c:ca:83:f7:6c:
8d:e4:04:9d:81:8d:c7:50:04:85:ea:a3:b9:cd:b5:
11:32:d6:57:a8:cc:bc:b7:39:6d:45:bb:fd:fc:14:
b3:8d:cc:3d:29:11:57:ab:ca:d5:5b:aa:49:1a:97:
41:82:95:91:d6:b6:40:aa:d9:9c:7b:43:1f:b7:fa:
d2:b5:40:16:5b:fd:72:e6:92:90:bf:bf:8e:c5:93:
25:95:f8:65:d0:1b:db:15:0e:67:bc:01:59:8b:47:
5a:2e:d6:cf:73:1f:be:09:da:63:fa:10:e2:cf:6f:
cd:07:44:f3:36:16:8c:a3:33:dc:f3:2b:1d:b3:db:
8c:fe:d8:8a:41:0b:e2:27:fe:8e:9d:d5:b2:f5:89:
f0:fa:59:82:52:51:e8:d0:b6:5c:74:35:1c:27:e9:
54:c9:cd:5b:b2:c1:72:aa:0a:7a:10:b8:8b:7e:ae:
9e:5d:a1:61:58:92:13:8d:8d:a9:10:eb:9b:26:60:
10:58:0a:dc:9a:05:1d:c9:e1:a6:f2:39:ae:93:fe:
2b:9c:aa:c2:7f:50:d0:b5:31:65:a2:b0:e2:39:6b:
8c:bc:ca:8f:68:d4:1c:4d:f7:62:82:99:b7:4d:7f:
46:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:84:AD:4B:F9:4D:0C:75:22:E3:F4:C1:70:D9:48:EB:7C:C4:14:B4
X509v3 Authority Key Identifier:
keyid:23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:d0:20:65:fc:c8:21:ef:9c:e0:59:41:10:92:b5:ec:76:83:
10:7e:63:b6:3e:65:a5:47:bf:69:2c:32:c4:1b:7f:17:c2:fe:
9d:5e:5d:5e:06:29:3e:25:bc:98:5b:b0:1b:fd:c2:2f:65:95:
32:67:4b:aa:37:b2:22:79:8c:9d:b9:06:66:7a:32:9c:6a:e0:
ae:85:ca:c9:42:7a:40:76:b2:2e:62:f8:23:f2:34:8a:f5:ae:
86:bd:fa:3e:f2:b2:35:0f:4c:d9:90:3a:3d:83:2e:ef:fd:cd:
24:27:cd:07:47:b4:79:ad:82:4a:14:9d:35:b7:b8:b4:68:5c:
ab:d1:51:96:21:58:ee:e7:3c:b0:da:0c:d7:8d:93:4e:e7:5f:
a8:88:41:1e:00:e0:eb:65:89:09:b7:5d:41:b6:cc:b0:a4:46:
d7:61:e3:d7:5b:10:1d:fd:5e:f5:ee:5d:1d:f2:a5:ed:36:49:
a3:3d:1c:e2:ee:d2:d1:ab:a2:9f:b7:69:48:3d:12:e3:88:44:
1f:d9:b1:e1:2e:7c:92:74:63:17:6f:95:23:b0:c5:46:f7:ba:
c7:02:67:aa:8b:ef:e4:1e:23:67:1f:d5:b8:9a:99:5c:e9:23:
37:8d:09:28:68:67:d4:eb:a9:18:0c:42:6e:da:d8:3b:89:69:
78:1f:1b:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpx7qeJDO/HFIdqeMIOPy0tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzZjIxZjczMTZlMWJkNzhmODZlZWE2NDI1ZDVjMjI5Yjk4
MGY5YWMwHhcNMjUxMTExMDgwMDU3WhcNMjUxMTEyMDgwMDU3WjAzMTEwLwYDVQQD
Eyg2NTg0YWQ0YmY5NGQwYzc1MjJlM2Y0YzE3MGQ5NDhlYjdjYzQxNGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlcZ2gqmQ5e3LL19JH9AuXi5ZNkR6
5sVpbMqD92yN5ASdgY3HUASF6qO5zbURMtZXqMy8tzltRbv9/BSzjcw9KRFXq8rV
W6pJGpdBgpWR1rZAqtmce0Mft/rStUAWW/1y5pKQv7+OxZMllfhl0BvbFQ5nvAFZ
i0daLtbPcx++Cdpj+hDiz2/NB0TzNhaMozPc8ysds9uM/tiKQQviJ/6OndWy9Ynw
+lmCUlHo0LZcdDUcJ+lUyc1bssFyqgp6ELiLfq6eXaFhWJITjY2pEOubJmAQWArc
mgUdyeGm8jmuk/4rnKrCf1DQtTFlorDiOWuMvMqPaNQcTfdigpm3TX9GPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGWErUv5TQx1IuP0wXDZSOt8xBS0MB8GA1UdIwQY
MBaAFCPyH3MW4b14+G7qZCXVwim5gPmsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSV9JZmN4Ymh2WGo0YnVwa0pkWENLYm1BLWF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84YTU5Y2YtNTA5Mi00NzRkLTgxY2Yt
OTc0YzMxZjI2NjBiLzEvSV9JZmN4Ymh2WGo0YnVwa0pkWENLYm1BLWF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84YTU5Y2YtNTA5Mi00NzRkLTgxY2YtOTc0YzMxZjI2NjBi
LzEvSV9JZmN4Ymh2WGo0YnVwa0pkWENLYm1BLWF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkNAgZfzI
Ie+c4FlBEJK17HaDEH5jtj5lpUe/aSwyxBt/F8L+nV5dXgYpPiW8mFuwG/3CL2WV
MmdLqjeyInmMnbkGZnoynGrgroXKyUJ6QHayLmL4I/I0ivWuhr36PvKyNQ9M2ZA6
PYMu7/3NJCfNB0e0ea2CShSdNbe4tGhcq9FRliFY7uc8sNoM142TTudfqIhBHgDg
62WJCbddQbbMsKRG12Hj11sQHf1e9e5dHfKl7TZJoz0c4u7S0auin7dpSD0S44hE
H9mx4S58knRjF2+VI7DFRve6xwJnqovv5B4jZx/VuJqZXOkjN40JKGhn1OupGAxC
btrYO4lpeB8bzQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:18:41 2025 by rpki-client