Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft
File: IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft (raw, json)
Hash identifier: +duvxvQ55c//JuzecCtg1kFmX+WTpAwfX0/7MtdfCIk=
Subject key identifier: 41:2E:9C:A6:52:2A:A5:0D:66:9B:30:2A:B9:D6:82:8E:B3:C6:72:9E
Authority key identifier: 23:07:65:21:44:C9:12:7D:D6:26:79:60:56:C9:EC:29:32:A4:F2:05
Certificate issuer: /CN=2307652144c9127dd626796056c9ec2932a4f205
Certificate serial: 0199239F12C78F00D94FFA48EFE28137D04A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IwdlIUTJEn3WJnlgVsnsKTKk8gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft
Manifest number: 0151
Signing time: Sun 07 Sep 2025 10:00:51 +0000
Manifest this update: Sun 07 Sep 2025 10:00:51 +0000
Manifest next update: Mon 08 Sep 2025 10:00:51 +0000
Files and hashes: 1: IwdlIUTJEn3WJnlgVsnsKTKk8gU.crl (hash: fN/I/USI6oyOU0pPzB/BAx+0oCfiuiztZ0jUnTlgk5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft
rsync://rpki.ripe.net/repository/DEFAULT/IwdlIUTJEn3WJnlgVsnsKTKk8gU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:12:c7:8f:00:d9:4f:fa:48:ef:e2:81:37:d0:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2307652144c9127dd626796056c9ec2932a4f205
Validity
Not Before: Sep 7 10:00:51 2025 GMT
Not After : Sep 8 10:00:51 2025 GMT
Subject: CN=412e9ca6522aa50d669b302ab9d6828eb3c6729e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0d:d6:2c:c2:99:b3:1e:b3:00:41:36:62:81:
f9:ad:e4:d0:fc:69:66:f7:88:7a:87:c1:25:d9:52:
3a:a9:b9:7a:13:04:0e:8b:e4:66:eb:34:c5:02:b4:
59:25:e7:69:ad:4e:95:27:71:49:9e:18:5f:dc:9d:
00:16:4a:f6:71:81:ae:71:85:bf:74:ff:ae:43:1c:
e7:d7:b6:74:cb:f3:c4:80:62:2e:5f:10:aa:2e:af:
89:8c:51:fa:61:23:65:e8:28:5b:8a:d1:24:2c:83:
0c:20:dc:10:9f:b9:69:08:c9:3e:da:65:aa:98:95:
41:23:32:e3:3c:23:46:bc:cf:a2:0c:fa:f7:95:f3:
a3:b5:b2:c4:28:74:d7:76:ea:e8:d8:0b:ad:8b:30:
0a:cb:60:13:03:e1:ae:70:ce:ac:25:05:c0:31:87:
59:9b:96:a0:f6:7e:81:5c:53:8c:25:7f:97:8b:09:
d0:3c:10:c5:da:23:ab:89:ef:7c:49:a6:35:3c:15:
1e:58:04:75:2c:17:45:e7:3c:6e:72:0e:20:59:58:
8b:5c:4e:3d:aa:83:24:ae:a6:7a:d7:29:7c:17:3e:
6a:31:15:09:2c:98:59:38:00:a4:64:15:d1:46:b9:
64:0f:32:eb:28:9a:8d:bb:95:a3:2a:c7:d4:ff:7d:
63:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2E:9C:A6:52:2A:A5:0D:66:9B:30:2A:B9:D6:82:8E:B3:C6:72:9E
X509v3 Authority Key Identifier:
keyid:23:07:65:21:44:C9:12:7D:D6:26:79:60:56:C9:EC:29:32:A4:F2:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IwdlIUTJEn3WJnlgVsnsKTKk8gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/99d177-8c03-498f-b202-7a78ae054b4c/1/IwdlIUTJEn3WJnlgVsnsKTKk8gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:fe:2c:b7:e5:79:a5:f3:b8:ce:3d:30:74:39:27:08:cc:5b:
6c:bc:be:d0:42:58:4f:f1:f9:54:4a:85:f0:93:1c:b6:68:97:
76:6c:4a:d7:f3:b1:15:57:1d:e6:cb:17:8c:87:8c:5b:96:67:
98:e6:08:c6:ef:91:5b:eb:d9:af:c0:9a:1d:9d:30:44:74:46:
5d:1e:8d:db:a9:35:99:d8:a7:a1:91:77:af:20:97:f0:a5:01:
73:24:16:8e:33:eb:66:6e:8b:0c:7d:01:8d:4a:7d:25:3f:ec:
97:8d:d2:2f:fc:a0:23:17:8d:6e:a6:bc:4d:b5:6b:e6:bd:71:
75:32:9c:7e:e6:19:7b:3c:37:ec:04:0b:91:9d:90:20:fa:28:
de:c0:59:ab:9c:40:b8:5c:b4:86:83:8c:40:fc:8a:05:fc:b1:
54:c4:ae:61:6d:e2:e3:0f:a0:0c:96:bf:fa:34:6b:d0:52:c0:
62:29:2a:15:6c:f1:b2:52:89:db:89:6d:db:8c:9b:46:0e:1e:
8e:5c:a7:39:c0:59:c0:05:12:82:89:c0:6e:30:08:da:51:31:
f9:0d:6b:1b:c2:0e:19:12:45:62:db:e5:03:09:cc:0d:16:e0:
b7:c3:f2:54:76:c2:a7:d5:d9:14:ca:b3:fc:3c:53:41:28:77:
c9:de:c2:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjnxLHjwDZT/pI7+KBN9BKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMDc2NTIxNDRjOTEyN2RkNjI2Nzk2MDU2YzllYzI5MzJh
NGYyMDUwHhcNMjUwOTA3MTAwMDUxWhcNMjUwOTA4MTAwMDUxWjAzMTEwLwYDVQQD
Eyg0MTJlOWNhNjUyMmFhNTBkNjY5YjMwMmFiOWQ2ODI4ZWIzYzY3MjllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuA3WLMKZsx6zAEE2YoH5reTQ/Glm
94h6h8El2VI6qbl6EwQOi+Rm6zTFArRZJedprU6VJ3FJnhhf3J0AFkr2cYGucYW/
dP+uQxzn17Z0y/PEgGIuXxCqLq+JjFH6YSNl6ChbitEkLIMMINwQn7lpCMk+2mWq
mJVBIzLjPCNGvM+iDPr3lfOjtbLEKHTXduro2AutizAKy2ATA+GucM6sJQXAMYdZ
m5ag9n6BXFOMJX+XiwnQPBDF2iOrie98SaY1PBUeWAR1LBdF5zxucg4gWViLXE49
qoMkrqZ61yl8Fz5qMRUJLJhZOACkZBXRRrlkDzLrKJqNu5WjKsfU/31jXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEEunKZSKqUNZpswKrnWgo6zxnKeMB8GA1UdIwQY
MBaAFCMHZSFEyRJ91iZ5YFbJ7CkypPIFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXdkbElVVEpFbjNXSm5sZ1ZzbnNLVEtrOGdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC85OWQxNzctOGMwMy00OThmLWIyMDIt
N2E3OGFlMDU0YjRjLzEvSXdkbElVVEpFbjNXSm5sZ1ZzbnNLVEtrOGdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC85OWQxNzctOGMwMy00OThmLWIyMDItN2E3OGFlMDU0YjRj
LzEvSXdkbElVVEpFbjNXSm5sZ1ZzbnNLVEtrOGdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgf4st+V5
pfO4zj0wdDknCMxbbLy+0EJYT/H5VEqF8JMctmiXdmxK1/OxFVcd5ssXjIeMW5Zn
mOYIxu+RW+vZr8CaHZ0wRHRGXR6N26k1mdinoZF3ryCX8KUBcyQWjjPrZm6LDH0B
jUp9JT/sl43SL/ygIxeNbqa8TbVr5r1xdTKcfuYZezw37AQLkZ2QIPoo3sBZq5xA
uFy0hoOMQPyKBfyxVMSuYW3i4w+gDJa/+jRr0FLAYikqFWzxslKJ24lt24ybRg4e
jlynOcBZwAUSgonAbjAI2lEx+Q1rG8IOGRJFYtvlAwnMDRbgt8PyVHbCp9XZFMqz
/DxTQSh3yd7CMw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:50:10 2025 by rpki-client