Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
File: IgTxXPMNc4SLB038rCYTgAYVatQ.mft (raw, json)
Hash identifier: BBk8BeYEeEJxvPkuojmN/NWuiw6S8txsSITdr3IUsoA=
Subject key identifier: 21:9C:74:1C:BB:FD:F2:71:0F:8C:F9:C4:91:FB:2B:F0:A8:AF:E7:F4
Authority key identifier: 22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4
Certificate issuer: /CN=2204f15cf30d73848b074dfcac26138006156ad4
Certificate serial: 019921B26BD1D13CBC4A77C306099FACD314
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
Manifest number: 0D7E
Signing time: Sun 07 Sep 2025 01:02:45 +0000
Manifest this update: Sun 07 Sep 2025 01:02:45 +0000
Manifest next update: Mon 08 Sep 2025 01:02:45 +0000
Files and hashes: 1: IgTxXPMNc4SLB038rCYTgAYVatQ.crl (hash: eOUw4sjuV11U1MR2+t1SBHoL9gvo1OaRmzaJZiv2q50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:6b:d1:d1:3c:bc:4a:77:c3:06:09:9f:ac:d3:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2204f15cf30d73848b074dfcac26138006156ad4
Validity
Not Before: Sep 7 01:02:45 2025 GMT
Not After : Sep 8 01:02:45 2025 GMT
Subject: CN=219c741cbbfdf2710f8cf9c491fb2bf0a8afe7f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:37:09:43:65:ba:35:c7:6c:96:dc:2b:f3:6e:
39:62:fd:b3:fc:66:25:d0:8b:b4:da:bb:b5:b4:3e:
60:f8:b9:1c:ee:46:89:1e:94:2f:91:49:4d:92:30:
13:13:d9:55:37:75:09:fd:f9:3e:db:21:c7:11:ac:
6a:80:57:c7:f8:da:8a:24:c6:cf:97:0b:c4:ce:bf:
80:a8:2e:4a:8a:b1:1e:78:7e:94:cc:2c:9d:a4:a4:
a3:d1:4f:a3:75:83:14:d1:89:4f:3c:5e:51:6a:04:
46:52:29:7b:f8:ef:4f:0d:0c:5b:9b:52:e6:b5:71:
8c:be:c2:c2:5d:71:3b:d2:67:95:9f:0b:43:f7:14:
41:9b:3c:7b:3d:92:f7:bc:cf:3d:06:98:76:7c:99:
93:b8:58:be:e4:9a:16:27:78:a7:1e:5b:e4:66:65:
f5:6d:84:49:64:cb:eb:08:83:35:dc:82:94:e5:24:
14:21:f0:5d:83:f0:b7:9c:ca:85:49:c2:4d:ea:c8:
16:69:f0:f5:43:1a:05:0a:39:6d:d7:b7:23:01:d3:
ae:b5:15:5f:ca:c8:55:40:11:48:59:3a:1a:2d:bf:
5e:0c:74:ca:4c:bb:c1:25:c9:ea:c0:33:36:7c:78:
c0:f0:31:30:1b:e8:43:d5:bb:93:00:b3:3d:d1:e5:
d2:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:9C:74:1C:BB:FD:F2:71:0F:8C:F9:C4:91:FB:2B:F0:A8:AF:E7:F4
X509v3 Authority Key Identifier:
keyid:22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ae:ce:91:ea:d6:b1:72:e9:3e:b5:2c:1d:90:0a:a3:29:fd:
84:14:7e:c8:bd:c4:da:4e:1f:45:35:54:de:ee:4e:64:3a:6c:
6d:e7:e8:97:1e:7e:9f:9e:e7:1b:00:c4:a2:91:23:d3:40:e3:
8a:a6:b8:2d:37:33:14:d2:e5:7a:b9:88:e0:d3:7d:c8:3b:9a:
cf:de:eb:36:93:d8:1a:43:34:4b:ac:b8:cb:d2:60:b2:82:9e:
54:39:99:02:82:5b:63:e1:4d:5d:66:00:0a:3a:75:03:41:84:
1b:38:d3:5d:57:0d:68:a9:7a:64:a8:b7:61:90:eb:32:57:a0:
6d:12:22:59:88:23:39:8f:76:3c:f6:74:50:fd:e0:cf:97:7b:
1e:42:a7:d4:35:0e:e6:a2:2f:00:d8:85:b2:57:3e:a4:2f:3f:
54:e4:56:90:cc:79:ff:fb:a9:0c:36:6c:13:11:ca:2e:cd:5f:
cc:0b:66:9f:2c:52:3d:ba:ca:69:28:90:25:5a:81:2f:a4:82:
0f:90:6f:2d:53:35:50:56:44:fd:d0:e3:81:80:32:69:03:84:
b1:22:b5:ed:05:64:77:92:79:24:3f:44:00:c6:32:af:cc:5a:
dc:be:8b:b9:7b:16:74:60:3d:ac:e0:e3:6b:b6:13:26:46:1a:
37:04:14:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsmvR0Ty8SnfDBgmfrNMUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyMDRmMTVjZjMwZDczODQ4YjA3NGRmY2FjMjYxMzgwMDYx
NTZhZDQwHhcNMjUwOTA3MDEwMjQ1WhcNMjUwOTA4MDEwMjQ1WjAzMTEwLwYDVQQD
EygyMTljNzQxY2JiZmRmMjcxMGY4Y2Y5YzQ5MWZiMmJmMGE4YWZlN2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2TcJQ2W6Ncdsltwr8245Yv2z/GYl
0Iu02ru1tD5g+Lkc7kaJHpQvkUlNkjATE9lVN3UJ/fk+2yHHEaxqgFfH+NqKJMbP
lwvEzr+AqC5KirEeeH6UzCydpKSj0U+jdYMU0YlPPF5RagRGUil7+O9PDQxbm1Lm
tXGMvsLCXXE70meVnwtD9xRBmzx7PZL3vM89Bph2fJmTuFi+5JoWJ3inHlvkZmX1
bYRJZMvrCIM13IKU5SQUIfBdg/C3nMqFScJN6sgWafD1QxoFCjlt17cjAdOutRVf
yshVQBFIWToaLb9eDHTKTLvBJcnqwDM2fHjA8DEwG+hD1buTALM90eXSbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCGcdBy7/fJxD4z5xJH7K/Cor+f0MB8GA1UdIwQY
MBaAFCIE8VzzDXOEiwdN/KwmE4AGFWrUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8zODcyY2YtYWE1OS00Yzk4LWI3YTMt
YzFiMTAyMzlkZDU4LzEvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS8zODcyY2YtYWE1OS00Yzk4LWI3YTMtYzFiMTAyMzlkZDU4
LzEvSWdUeFhQTU5jNFNMQjAzOHJDWVRnQVlWYXRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMq7OkerW
sXLpPrUsHZAKoyn9hBR+yL3E2k4fRTVU3u5OZDpsbefolx5+n57nGwDEopEj00Dj
iqa4LTczFNLlermI4NN9yDuaz97rNpPYGkM0S6y4y9JgsoKeVDmZAoJbY+FNXWYA
Cjp1A0GEGzjTXVcNaKl6ZKi3YZDrMlegbRIiWYgjOY92PPZ0UP3gz5d7HkKn1DUO
5qIvANiFslc+pC8/VORWkMx5//upDDZsExHKLs1fzAtmnyxSPbrKaSiQJVqBL6SC
D5BvLVM1UFZE/dDjgYAyaQOEsSK17QVkd5J5JD9EAMYyr8xa3L6LuXsWdGA9rODj
a7YTJkYaNwQUmg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:27 2025 by rpki-client