Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
File: Ihm1ncLp80slUjDlYqPMph2usVU.mft (raw, json)
Hash identifier: hCJn6MAKmDRlvsDezovD09u01RarYYJfeNftkQ2dzpM=
Subject key identifier: 6B:16:38:B6:85:A5:33:AF:AB:A6:98:64:7C:1D:BC:F5:19:9C:C0:D6
Authority key identifier: 22:19:B5:9D:C2:E9:F3:4B:25:52:30:E5:62:A3:CC:A6:1D:AE:B1:55
Certificate issuer: /CN=2219b59dc2e9f34b255230e562a3cca61daeb155
Certificate serial: 019922FA34FC674ABC6F0A4ACA25CF8F4087
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
Manifest number: 1343
Signing time: Sun 07 Sep 2025 07:00:46 +0000
Manifest this update: Sun 07 Sep 2025 07:00:46 +0000
Manifest next update: Mon 08 Sep 2025 07:00:46 +0000
Files and hashes: 1: Ihm1ncLp80slUjDlYqPMph2usVU.crl (hash: nAbF78/dDMkAWKJBR5dc1k2dESGNnazUmEDxjJzHXfs=)
2: Nk1hjqrpzwcKxMs_ejWJ395qXXo.roa (hash: uRWV+NR8DLzCaelMu4ig9EBtvA2PkzEXB7bjRzj91IU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:34:fc:67:4a:bc:6f:0a:4a:ca:25:cf:8f:40:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2219b59dc2e9f34b255230e562a3cca61daeb155
Validity
Not Before: Sep 7 07:00:46 2025 GMT
Not After : Sep 8 07:00:46 2025 GMT
Subject: CN=6b1638b685a533afaba698647c1dbcf5199cc0d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:91:7f:88:fd:f7:3e:07:e6:61:f1:50:5a:e1:
97:a6:78:2d:33:b9:0b:5c:04:b8:ca:05:a4:de:fe:
4c:8b:4f:b3:52:bc:31:45:ad:11:c4:0f:7d:e5:f4:
38:1f:4f:3a:65:42:1e:06:25:89:7c:e5:25:0a:93:
cb:92:0a:17:ed:16:01:85:dd:bd:f8:76:6f:c7:f1:
ac:ad:e1:ff:d1:57:50:2d:b3:45:5a:cc:4d:b3:8a:
e6:b8:5a:09:87:82:ba:d1:95:9d:b1:83:dc:db:23:
6a:ef:97:ab:19:d0:55:fc:26:21:52:45:ba:e7:0d:
71:7f:4a:48:e3:70:9c:19:e7:bf:0d:24:4d:df:fc:
35:f2:73:b2:9f:7f:11:cc:55:dc:d4:3a:d6:56:61:
87:99:13:c4:56:56:dd:bf:f7:c1:f4:a6:08:0e:ca:
4b:30:59:4f:2b:be:ca:09:47:81:31:30:1f:ca:d0:
07:09:4f:bc:3a:ad:93:9b:2f:b4:80:30:8f:71:97:
d6:2b:c9:ee:8f:94:ff:af:7a:85:86:60:fc:df:6e:
37:25:a9:30:c1:10:0e:36:ca:29:78:36:51:38:b3:
e6:c0:16:c3:08:c6:73:b2:68:45:5f:3a:c6:41:b1:
24:0b:d5:78:4c:e4:8d:3d:23:87:38:6a:ae:b7:e5:
ca:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:16:38:B6:85:A5:33:AF:AB:A6:98:64:7C:1D:BC:F5:19:9C:C0:D6
X509v3 Authority Key Identifier:
keyid:22:19:B5:9D:C2:E9:F3:4B:25:52:30:E5:62:A3:CC:A6:1D:AE:B1:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ihm1ncLp80slUjDlYqPMph2usVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/3bb3a8-1c3e-4154-90a9-006de0fa5342/1/Ihm1ncLp80slUjDlYqPMph2usVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:79:6f:b6:7c:9f:02:db:28:7d:ab:2c:f9:20:57:04:18:3a:
0c:10:2e:8b:f7:1e:67:2c:ea:59:0c:6b:f8:16:8d:6e:b5:4e:
ea:af:1a:5c:36:99:71:44:e4:22:92:13:e1:cf:49:3c:ee:43:
a7:16:be:61:1c:f6:0a:fe:81:9c:0c:54:b6:dc:75:f2:cf:3c:
77:55:fc:9e:d2:46:e8:f6:66:c3:ed:de:1a:74:e6:14:16:31:
b3:b4:3c:64:b2:6c:a3:41:f5:5b:c9:aa:78:c2:c8:32:51:f2:
5c:63:88:92:54:49:de:cb:b6:10:e3:2f:2f:c8:46:21:71:88:
e4:bc:92:4a:bf:42:e0:1c:9e:28:e3:32:e5:5d:46:54:2a:6c:
0d:ae:79:78:f6:ae:46:8a:70:db:87:30:28:8c:b3:96:f2:d8:
f9:73:58:06:72:b8:2b:b8:b3:f8:2c:75:9b:ac:d8:1e:e7:79:
2d:a2:46:81:c4:50:cb:22:00:73:e4:6d:95:97:62:a0:3e:89:
49:05:76:c8:ad:0f:39:88:c8:37:31:e3:70:a5:63:70:f6:ae:
0b:96:73:a8:17:12:39:34:fd:5b:aa:50:3e:09:56:a2:13:48:
14:3c:e0:bd:97:7d:55:89:c1:42:08:9f:75:30:9b:62:01:41:
2c:ca:ee:39
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+jT8Z0q8bwpKyiXPj0CHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyMTliNTlkYzJlOWYzNGIyNTUyMzBlNTYyYTNjY2E2MWRh
ZWIxNTUwHhcNMjUwOTA3MDcwMDQ2WhcNMjUwOTA4MDcwMDQ2WjAzMTEwLwYDVQQD
Eyg2YjE2MzhiNjg1YTUzM2FmYWJhNjk4NjQ3YzFkYmNmNTE5OWNjMGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspF/iP33PgfmYfFQWuGXpngtM7kL
XAS4ygWk3v5Mi0+zUrwxRa0RxA995fQ4H086ZUIeBiWJfOUlCpPLkgoX7RYBhd29
+HZvx/GsreH/0VdQLbNFWsxNs4rmuFoJh4K60ZWdsYPc2yNq75erGdBV/CYhUkW6
5w1xf0pI43CcGee/DSRN3/w18nOyn38RzFXc1DrWVmGHmRPEVlbdv/fB9KYIDspL
MFlPK77KCUeBMTAfytAHCU+8Oq2Tmy+0gDCPcZfWK8nuj5T/r3qFhmD83243Jakw
wRAONsopeDZROLPmwBbDCMZzsmhFXzrGQbEkC9V4TOSNPSOHOGqut+XKXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGsWOLaFpTOvq6aYZHwdvPUZnMDWMB8GA1UdIwQY
MBaAFCIZtZ3C6fNLJVIw5WKjzKYdrrFVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWhtMW5jTHA4MHNsVWpEbFlxUE1waDJ1c1ZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8zYmIzYTgtMWMzZS00MTU0LTkwYTkt
MDA2ZGUwZmE1MzQyLzEvSWhtMW5jTHA4MHNsVWpEbFlxUE1waDJ1c1ZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC8zYmIzYTgtMWMzZS00MTU0LTkwYTktMDA2ZGUwZmE1MzQy
LzEvSWhtMW5jTHA4MHNsVWpEbFlxUE1waDJ1c1ZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAenlvtnyf
Atsofass+SBXBBg6DBAui/ceZyzqWQxr+BaNbrVO6q8aXDaZcUTkIpIT4c9JPO5D
pxa+YRz2Cv6BnAxUttx18s88d1X8ntJG6PZmw+3eGnTmFBYxs7Q8ZLJso0H1W8mq
eMLIMlHyXGOIklRJ3su2EOMvL8hGIXGI5LySSr9C4ByeKOMy5V1GVCpsDa55ePau
Ropw24cwKIyzlvLY+XNYBnK4K7iz+Cx1m6zYHud5LaJGgcRQyyIAc+RtlZdioD6J
SQV2yK0POYjINzHjcKVjcPauC5ZzqBcSOTT9W6pQPglWohNIFDzgvZd9VYnBQgif
dTCbYgFBLMruOQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:42:06 2025 by rpki-client