Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
File: ih8K1VcrribjnIdAxoqPu0buSGQ.mft (raw, json)
Hash identifier: 194vjVqqXmc4cVWxV8UquQ6X2LYo6W+39xvsVj9F9aE=
Subject key identifier: ED:66:25:B9:EE:55:6D:01:10:23:72:B8:7E:FE:35:C5:F9:EF:ED:3D
Authority key identifier: 8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
Certificate issuer: /CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Certificate serial: 019932A3C493C9E51CC35E98565B78666D6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
Manifest number: 0A0B
Signing time: Wed 10 Sep 2025 08:00:17 +0000
Manifest this update: Wed 10 Sep 2025 08:00:17 +0000
Manifest next update: Thu 11 Sep 2025 08:00:17 +0000
Files and hashes: 1: eG2Sz-NBLwpAqaii4LbUZ-cWycY.roa (hash: uPzFHNSnB/27/j7jzNn6SSjG0qijsqzpue+Zsmabwu4=)
2: ih8K1VcrribjnIdAxoqPu0buSGQ.crl (hash: kVzqdDgoVu2z/HNaX2rmlcdPRUFg69h0SZFDklyxb8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:a3:c4:93:c9:e5:1c:c3:5e:98:56:5b:78:66:6d:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1f0ad5572bae26e39c8740c68a8fbb46ee4864
Validity
Not Before: Sep 10 08:00:17 2025 GMT
Not After : Sep 11 08:00:17 2025 GMT
Subject: CN=ed6625b9ee556d01102372b87efe35c5f9efed3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:9d:ae:75:da:e9:be:54:a1:0f:e7:0a:e0:08:
77:0c:96:03:48:67:6f:8b:c4:2f:1c:41:85:1d:ce:
25:6d:a0:29:b6:1c:0b:e6:e3:37:3c:14:ef:f4:44:
34:7c:98:6d:24:3c:e1:ce:bf:68:ce:bf:f3:70:1a:
43:4c:00:5d:af:77:e0:52:44:f3:48:13:5f:77:5d:
54:fa:e1:35:8c:20:ba:17:c2:d0:4d:77:e4:95:cf:
66:69:ab:f4:0e:93:c6:9e:60:b2:fb:54:c4:ef:2b:
9a:ce:90:66:60:9c:30:ee:5b:e7:73:08:ed:25:f6:
f8:6e:bb:c2:4c:46:9f:1d:63:99:86:e5:b6:67:4e:
e4:78:2e:6e:2a:68:5a:7a:f0:b7:5f:39:2a:08:b4:
08:7d:0f:61:60:9a:7a:07:2f:44:1c:2d:2d:e3:84:
55:c7:72:bc:b2:3c:34:2a:db:01:9b:c0:ab:a6:de:
b0:db:2f:86:c7:0f:3c:20:c0:0b:57:72:1d:ba:6c:
d1:88:ec:d0:da:28:b0:e1:9f:72:3d:a5:b6:3e:cf:
39:d0:78:de:dc:2a:7e:7f:d5:50:65:fd:4a:a9:57:
31:cb:ed:94:b0:cd:24:22:a9:c4:ec:a2:2a:0a:86:
a3:08:9b:44:c7:6b:d7:59:60:72:15:07:e2:a0:43:
fb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:66:25:B9:EE:55:6D:01:10:23:72:B8:7E:FE:35:C5:F9:EF:ED:3D
X509v3 Authority Key Identifier:
keyid:8A:1F:0A:D5:57:2B:AE:26:E3:9C:87:40:C6:8A:8F:BB:46:EE:48:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ih8K1VcrribjnIdAxoqPu0buSGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2fd20a-53ae-4bea-80c9-03f23a73941d/1/ih8K1VcrribjnIdAxoqPu0buSGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:66:c1:aa:1d:b1:27:50:c1:32:26:e5:97:a3:b3:8d:bb:18:
e3:cc:c3:66:42:f4:49:1b:12:f9:b6:ae:9a:bd:18:cc:9b:00:
4e:7a:2c:0c:1a:71:99:be:98:02:0f:21:a1:66:32:8e:7c:be:
1d:a7:2e:38:9b:26:8c:d1:cf:71:58:c2:b6:5a:71:fd:91:b2:
97:df:43:4c:66:62:dd:8b:01:40:78:0b:b6:75:1c:66:2b:ba:
e1:39:ad:6e:c3:58:89:00:00:75:bc:ef:5e:2c:0e:71:c9:14:
b4:6f:9a:f8:ef:82:3d:0f:9e:40:c5:1b:7a:11:9b:00:ea:04:
bf:37:40:f7:11:f9:b6:f1:d9:8b:93:07:bc:3d:a2:0c:4d:fb:
2a:ee:43:77:99:b8:0b:78:84:01:61:59:bf:fb:c3:07:fa:75:
27:e5:87:24:6d:15:ae:38:e1:9d:c4:fb:bd:92:4a:de:ff:0e:
03:60:02:8d:7a:11:4b:c8:3d:7c:de:38:82:46:12:ef:ba:90:
5e:9c:4b:ce:d4:1b:78:e7:64:a0:95:37:f8:fd:3a:99:53:6d:
52:a0:cf:d2:0d:6b:25:ce:0b:58:53:3c:4f:e3:47:c8:ec:4b:
73:64:60:94:1d:00:1a:e5:be:33:af:5e:78:60:65:a9:21:d0:
bc:f9:8b:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkyo8STyeUcw16YVlt4Zm1qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhMWYwYWQ1NTcyYmFlMjZlMzljODc0MGM2OGE4ZmJiNDZl
ZTQ4NjQwHhcNMjUwOTEwMDgwMDE3WhcNMjUwOTExMDgwMDE3WjAzMTEwLwYDVQQD
EyhlZDY2MjViOWVlNTU2ZDAxMTAyMzcyYjg3ZWZlMzVjNWY5ZWZlZDNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+J2uddrpvlShD+cK4Ah3DJYDSGdv
i8QvHEGFHc4lbaApthwL5uM3PBTv9EQ0fJhtJDzhzr9ozr/zcBpDTABdr3fgUkTz
SBNfd11U+uE1jCC6F8LQTXfklc9maav0DpPGnmCy+1TE7yuazpBmYJww7lvncwjt
Jfb4brvCTEafHWOZhuW2Z07keC5uKmhaevC3XzkqCLQIfQ9hYJp6By9EHC0t44RV
x3K8sjw0KtsBm8Crpt6w2y+Gxw88IMALV3IdumzRiOzQ2iiw4Z9yPaW2Ps850Hje
3Cp+f9VQZf1KqVcxy+2UsM0kIqnE7KIqCoajCJtEx2vXWWByFQfioEP70wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO1mJbnuVW0BECNyuH7+NcX57+09MB8GA1UdIwQY
MBaAFIofCtVXK64m45yHQMaKj7tG7khkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzkt
MDNmMjNhNzM5NDFkLzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS8yZmQyMGEtNTNhZS00YmVhLTgwYzktMDNmMjNhNzM5NDFk
LzEvaWg4SzFWY3JyaWJqbklkQXhvcVB1MGJ1U0dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmGbBqh2x
J1DBMibll6OzjbsY48zDZkL0SRsS+baumr0YzJsATnosDBpxmb6YAg8hoWYyjny+
HacuOJsmjNHPcVjCtlpx/ZGyl99DTGZi3YsBQHgLtnUcZiu64TmtbsNYiQAAdbzv
XiwOcckUtG+a+O+CPQ+eQMUbehGbAOoEvzdA9xH5tvHZi5MHvD2iDE37Ku5Dd5m4
C3iEAWFZv/vDB/p1J+WHJG0VrjjhncT7vZJK3v8OA2ACjXoRS8g9fN44gkYS77qQ
XpxLztQbeOdkoJU3+P06mVNtUqDP0g1rJc4LWFM8T+NHyOxLc2RglB0AGuW+M69e
eGBlqSHQvPmLJQ==
-----END CERTIFICATE-----
Generated at Wed Sep 10 10:24:01 2025 by rpki-client