Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
File: iKVZ3N1bxLZssklvLm-w6PlUqus.mft (raw, json)
Hash identifier: coSBA2/eJPG1FWoT60Bu8wJyjOYndCeiarndL4CXMwM=
Subject key identifier: D3:CE:4A:B8:25:34:DE:E0:FF:59:95:CF:57:DF:E7:EA:E7:B7:7E:20
Authority key identifier: 88:A5:59:DC:DD:5B:C4:B6:6C:B2:49:6F:2E:6F:B0:E8:F9:54:AA:EB
Certificate issuer: /CN=88a559dcdd5bc4b66cb2496f2e6fb0e8f954aaeb
Certificate serial: 0199221F484561309A1FF6179AB87A824027
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
Manifest number: 0FD9
Signing time: Sun 07 Sep 2025 03:01:39 +0000
Manifest this update: Sun 07 Sep 2025 03:01:39 +0000
Manifest next update: Mon 08 Sep 2025 03:01:39 +0000
Files and hashes: 1: iKVZ3N1bxLZssklvLm-w6PlUqus.crl (hash: Ciq5JSm0ZV6KZRSi2nrIoRdrn9QnXadpZN+gUrQddBg=)
2: oGUzs3HriURmMyvP-1mM3ixvd88.roa (hash: U9dJ3cn9/4GeEgNWQhNTsFuWjpySklwjtb60dseGPO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:48:45:61:30:9a:1f:f6:17:9a:b8:7a:82:40:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a559dcdd5bc4b66cb2496f2e6fb0e8f954aaeb
Validity
Not Before: Sep 7 03:01:39 2025 GMT
Not After : Sep 8 03:01:39 2025 GMT
Subject: CN=d3ce4ab82534dee0ff5995cf57dfe7eae7b77e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2c:01:5f:3b:fa:8a:01:64:76:3e:6b:c2:24:
b6:e7:55:fa:0b:41:92:86:04:35:8e:34:65:7d:e9:
89:21:9f:d8:2a:d5:24:b7:9b:28:ac:69:40:ee:de:
15:75:57:67:8b:76:23:18:4b:2d:e7:e7:e8:0f:f4:
84:59:b7:a7:40:4f:8b:26:2f:f9:04:f6:28:14:7c:
24:74:2e:34:aa:88:ee:b3:f5:64:b5:f3:d3:08:cd:
45:92:1b:e4:af:f0:38:59:e8:a3:ce:e4:de:ec:a2:
11:21:31:1b:71:3e:26:98:6d:0e:a7:63:d8:09:43:
e8:75:0b:5e:81:39:4b:dc:1f:e6:47:3e:67:a0:29:
0f:a9:c3:0e:50:da:3e:f8:cf:e4:24:db:90:3e:99:
3a:5f:da:96:71:9e:79:0c:3d:42:64:b9:48:2c:af:
fb:d4:4c:3a:e4:c2:04:eb:28:e2:7e:d8:da:5e:70:
e8:34:69:0b:71:24:9f:68:cc:9f:e6:61:60:d6:ce:
51:f0:48:38:cc:f2:67:2f:b9:a7:d2:e8:7e:3a:1f:
43:c6:1c:f7:8c:d7:3a:0c:bf:0a:f1:33:43:62:d1:
de:db:34:c2:d4:67:ee:cd:3c:39:83:48:55:23:d2:
dd:56:3b:cf:c3:42:0a:ee:85:28:f4:23:aa:dc:c5:
bd:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:CE:4A:B8:25:34:DE:E0:FF:59:95:CF:57:DF:E7:EA:E7:B7:7E:20
X509v3 Authority Key Identifier:
keyid:88:A5:59:DC:DD:5B:C4:B6:6C:B2:49:6F:2E:6F:B0:E8:F9:54:AA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKVZ3N1bxLZssklvLm-w6PlUqus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/a84cd2-45d9-4179-a997-920d2a6207a4/1/iKVZ3N1bxLZssklvLm-w6PlUqus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:60:b8:36:9a:97:29:a1:99:dd:48:52:5b:64:e7:9f:41:63:
5a:a0:00:a5:cb:cd:9f:49:fa:cb:f7:a6:55:77:79:9d:3d:fc:
f0:e0:8b:b4:d5:ea:3f:25:81:f4:7b:d9:13:55:1a:99:e5:6f:
22:1f:27:a1:a8:77:25:d4:52:34:a7:73:04:8f:c1:b7:ff:0c:
74:d7:42:2e:09:62:67:1a:d3:77:c0:2e:10:11:1a:74:f0:4c:
07:7e:40:36:57:70:e6:d0:01:87:31:69:e1:ad:db:b3:8d:7b:
e9:6c:10:c6:1d:a8:37:c1:f2:7d:76:05:29:a7:5d:e4:97:d2:
2d:85:61:ba:0c:ea:c7:43:dd:2d:18:e7:24:a2:39:5e:e9:59:
22:2f:03:a8:9f:f4:d1:30:99:2a:e6:14:35:2c:e3:9f:bf:60:
5e:ca:e1:10:1c:fa:05:c5:cf:72:5d:84:93:3b:50:8b:25:00:
ef:d4:4c:03:74:4a:d2:c9:1e:b9:11:65:f9:a8:29:51:62:c6:
4b:96:6b:55:b3:a8:10:8b:89:27:a9:8d:96:52:85:29:64:90:
20:24:b3:39:03:f1:20:c3:30:a0:0e:f1:ce:8a:db:db:0c:b1:
5c:b9:5a:fd:60:87:e6:c0:0d:c6:75:de:f8:ad:de:4b:c5:a4:
8e:f1:d2:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiH0hFYTCaH/YXmrh6gkAnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YTU1OWRjZGQ1YmM0YjY2Y2IyNDk2ZjJlNmZiMGU4Zjk1
NGFhZWIwHhcNMjUwOTA3MDMwMTM5WhcNMjUwOTA4MDMwMTM5WjAzMTEwLwYDVQQD
EyhkM2NlNGFiODI1MzRkZWUwZmY1OTk1Y2Y1N2RmZTdlYWU3Yjc3ZTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApywBXzv6igFkdj5rwiS251X6C0GS
hgQ1jjRlfemJIZ/YKtUkt5sorGlA7t4VdVdni3YjGEst5+foD/SEWbenQE+LJi/5
BPYoFHwkdC40qojus/VktfPTCM1Fkhvkr/A4WeijzuTe7KIRITEbcT4mmG0Op2PY
CUPodQtegTlL3B/mRz5noCkPqcMOUNo++M/kJNuQPpk6X9qWcZ55DD1CZLlILK/7
1Ew65MIE6yjiftjaXnDoNGkLcSSfaMyf5mFg1s5R8Eg4zPJnL7mn0uh+Oh9Dxhz3
jNc6DL8K8TNDYtHe2zTC1GfuzTw5g0hVI9LdVjvPw0IK7oUo9COq3MW9zwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNPOSrglNN7g/1mVz1ff5+rnt34gMB8GA1UdIwQY
MBaAFIilWdzdW8S2bLJJby5vsOj5VKrrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9hODRjZDItNDVkOS00MTc5LWE5OTct
OTIwZDJhNjIwN2E0LzEvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC9hODRjZDItNDVkOS00MTc5LWE5OTctOTIwZDJhNjIwN2E0
LzEvaUtWWjNOMWJ4TFpzc2tsdkxtLXc2UGxVcXVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmGC4NpqX
KaGZ3UhSW2Tnn0FjWqAApcvNn0n6y/emVXd5nT388OCLtNXqPyWB9HvZE1UameVv
Ih8noah3JdRSNKdzBI/Bt/8MdNdCLgliZxrTd8AuEBEadPBMB35ANldw5tABhzFp
4a3bs4176WwQxh2oN8HyfXYFKadd5JfSLYVhugzqx0PdLRjnJKI5XulZIi8DqJ/0
0TCZKuYUNSzjn79gXsrhEBz6BcXPcl2EkztQiyUA79RMA3RK0skeuRFl+agpUWLG
S5ZrVbOoEIuJJ6mNllKFKWSQICSzOQPxIMMwoA7xzorb2wyxXLla/WCH5sANxnXe
+K3eS8WkjvHShg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:43:38 2025 by rpki-client