Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
File: 20iBY9r1DbZG3k3yTTTLrJk_RX8.mft (raw, json)
Hash identifier: qJxP0k6zUFS/LI0mn7XvM3L+P9ip8cFyxZq14b4NdRk=
Subject key identifier: 62:6D:05:40:E6:F7:4D:A5:73:CC:90:F1:59:5C:0A:F4:03:5E:DC:B1
Authority key identifier: DB:48:81:63:DA:F5:0D:B6:46:DE:4D:F2:4D:34:CB:AC:99:3F:45:7F
Certificate issuer: /CN=db488163daf50db646de4df24d34cbac993f457f
Certificate serial: 019922FA80C3EE8C35698B31803864418AE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 07:01:06 +0000
Manifest this update: Sun 07 Sep 2025 07:01:06 +0000
Manifest next update: Mon 08 Sep 2025 07:01:06 +0000
Files and hashes: 1: 20iBY9r1DbZG3k3yTTTLrJk_RX8.crl (hash: jUPar8G8wbBoymucNfopBRuVzEeZYxuCxm96s1XMYhQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:80:c3:ee:8c:35:69:8b:31:80:38:64:41:8a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db488163daf50db646de4df24d34cbac993f457f
Validity
Not Before: Sep 7 07:01:06 2025 GMT
Not After : Sep 8 07:01:06 2025 GMT
Subject: CN=626d0540e6f74da573cc90f1595c0af4035edcb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:df:6d:47:50:3e:0a:35:b9:74:5e:3a:2f:03:
bf:d0:f0:79:8d:3c:66:0a:cf:f1:5e:89:09:9a:7a:
2b:5c:f5:6e:03:af:5b:77:f0:02:89:b9:22:be:08:
d9:46:e7:96:c4:48:04:21:4e:c9:b2:9e:5f:a2:59:
e8:50:77:7f:be:4f:ca:97:b5:89:26:6b:a7:91:61:
fd:ee:16:f1:b7:1c:28:84:4f:a6:a9:f9:87:9a:2d:
ed:70:4e:b3:02:95:83:08:f9:7a:e9:6f:8d:87:95:
79:18:73:b1:94:6d:07:f7:60:23:50:24:39:4e:b1:
3a:81:1a:52:96:b7:07:0b:7a:b0:25:ab:f2:31:98:
aa:5d:75:09:a8:42:c4:69:14:24:b6:64:aa:a3:c2:
11:2b:d8:07:d5:63:ac:cd:3c:4c:71:42:2e:39:d5:
17:63:a7:c2:43:e9:53:4f:15:0d:98:50:b7:32:2d:
d1:9a:08:87:93:90:ef:63:28:18:a8:21:c1:27:8b:
fd:56:2c:48:3d:74:f6:7a:0b:ad:cd:33:8f:87:e7:
a8:78:0a:3b:15:6d:2c:8d:b1:8e:cb:f3:dc:f6:04:
06:03:3b:03:08:e1:ad:f8:02:00:ba:72:f4:4b:b7:
b8:60:13:f5:93:6d:2a:28:45:3a:2a:e8:b0:f4:2b:
09:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:6D:05:40:E6:F7:4D:A5:73:CC:90:F1:59:5C:0A:F4:03:5E:DC:B1
X509v3 Authority Key Identifier:
keyid:DB:48:81:63:DA:F5:0D:B6:46:DE:4D:F2:4D:34:CB:AC:99:3F:45:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:47:d4:3f:af:b2:a0:cc:a6:aa:aa:ea:06:4a:24:a2:e8:47:
fd:a5:3b:d0:5d:78:8a:f1:60:f6:15:9f:a0:45:3e:a5:c9:af:
05:46:06:c6:8d:f6:36:c2:ba:7c:b2:5e:25:cb:31:7b:e2:1a:
2b:af:61:f7:cc:2a:f6:4c:00:f5:c3:23:b9:ca:ba:6d:5b:59:
8d:97:fc:02:36:95:e1:33:72:06:59:0f:50:dc:6b:43:f0:b1:
7c:61:62:53:a3:d3:10:32:ff:72:88:db:4b:8f:8f:2a:58:a9:
24:67:b9:5b:86:a4:fd:ce:83:69:f6:5a:a6:6f:1b:56:5f:07:
e3:8b:9d:20:1d:19:79:27:5f:68:be:d0:36:1e:82:3a:04:02:
dd:0c:07:7a:98:a8:50:a1:66:ea:99:19:51:7d:13:63:a8:bc:
b4:8d:48:33:76:ab:4f:3d:24:47:91:52:bb:c6:e7:da:de:56:
4c:cb:0e:54:e7:e7:cd:d6:0e:3c:13:91:cf:1d:bc:04:e5:68:
bb:e4:86:51:d4:46:0d:82:44:cf:59:1b:4e:cd:62:e9:f3:72:
df:1c:8d:20:c1:48:e6:99:8c:f8:84:fc:f3:24:5b:19:02:35:
05:46:b4:00:97:2b:34:49:4a:04:6c:74:b8:01:7f:54:de:3d:
f6:be:b1:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+oDD7ow1aYsxgDhkQYrkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNDg4MTYzZGFmNTBkYjY0NmRlNGRmMjRkMzRjYmFjOTkz
ZjQ1N2YwHhcNMjUwOTA3MDcwMTA2WhcNMjUwOTA4MDcwMTA2WjAzMTEwLwYDVQQD
Eyg2MjZkMDU0MGU2Zjc0ZGE1NzNjYzkwZjE1OTVjMGFmNDAzNWVkY2IxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5N9tR1A+CjW5dF46LwO/0PB5jTxm
Cs/xXokJmnorXPVuA69bd/ACibkivgjZRueWxEgEIU7Jsp5folnoUHd/vk/Kl7WJ
JmunkWH97hbxtxwohE+mqfmHmi3tcE6zApWDCPl66W+Nh5V5GHOxlG0H92AjUCQ5
TrE6gRpSlrcHC3qwJavyMZiqXXUJqELEaRQktmSqo8IRK9gH1WOszTxMcUIuOdUX
Y6fCQ+lTTxUNmFC3Mi3RmgiHk5DvYygYqCHBJ4v9VixIPXT2egutzTOPh+eoeAo7
FW0sjbGOy/Pc9gQGAzsDCOGt+AIAunL0S7e4YBP1k20qKEU6Kuiw9CsJ8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGJtBUDm902lc8yQ8VlcCvQDXtyxMB8GA1UdIwQY
MBaAFNtIgWPa9Q22Rt5N8k00y6yZP0V/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjBpQlk5cjFEYlpHM2szeVRUVExySmtfUlg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy80ZTVjMTAtNzFlZC00ZGViLWI0ZTAt
MTlkNTdmZjFmYmQ5LzEvMjBpQlk5cjFEYlpHM2szeVRUVExySmtfUlg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy80ZTVjMTAtNzFlZC00ZGViLWI0ZTAtMTlkNTdmZjFmYmQ5
LzEvMjBpQlk5cjFEYlpHM2szeVRUVExySmtfUlg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALEfUP6+y
oMymqqrqBkokouhH/aU70F14ivFg9hWfoEU+pcmvBUYGxo32NsK6fLJeJcsxe+Ia
K69h98wq9kwA9cMjucq6bVtZjZf8AjaV4TNyBlkPUNxrQ/CxfGFiU6PTEDL/cojb
S4+PKlipJGe5W4ak/c6DafZapm8bVl8H44udIB0ZeSdfaL7QNh6COgQC3QwHepio
UKFm6pkZUX0TY6i8tI1IM3arTz0kR5FSu8bn2t5WTMsOVOfnzdYOPBORzx28BOVo
u+SGUdRGDYJEz1kbTs1i6fNy3xyNIMFI5pmM+IT88yRbGQI1BUa0AJcrNElKBGx0
uAF/VN499r6xlQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:15:11 2025 by rpki-client