Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
File: i8EWjaFgICh-6h_eygVBkwqdNok.mft (raw, json)
Hash identifier: 29OPWZBXmP1srS6Aq3V+XtlhGKI+X9SIHIBQJ16SWK0=
Subject key identifier: D5:29:EE:90:44:AF:57:BC:4E:FC:4D:BE:24:09:FD:48:05:8E:48:86
Authority key identifier: 8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
Certificate issuer: /CN=8bc1168da16020287eea1fdeca0541930a9d3689
Certificate serial: 019922FAE98FCEF0E7EB5548FE684230BFF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
Manifest number: 02F5
Signing time: Sun 07 Sep 2025 07:01:32 +0000
Manifest this update: Sun 07 Sep 2025 07:01:32 +0000
Manifest next update: Mon 08 Sep 2025 07:01:32 +0000
Files and hashes: 1: M8dNAav4bGEdssIavf8xkWsYnhg.roa (hash: XQuy4W50mLmkvV791/MW+gWfWSh1bhqASgHVJ90pFyY=)
2: i8EWjaFgICh-6h_eygVBkwqdNok.crl (hash: Tdy1e7SGOJZHcpxhggtsSnK8tfxk0OWsFPaPFN5laCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:e9:8f:ce:f0:e7:eb:55:48:fe:68:42:30:bf:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc1168da16020287eea1fdeca0541930a9d3689
Validity
Not Before: Sep 7 07:01:32 2025 GMT
Not After : Sep 8 07:01:32 2025 GMT
Subject: CN=d529ee9044af57bc4efc4dbe2409fd48058e4886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:80:7a:69:20:81:b9:68:1c:46:48:9a:a6:de:
9b:2f:04:d1:4c:7e:36:4e:3f:ec:6a:72:fb:12:a4:
d0:24:ef:6a:fb:27:4f:cd:dd:74:1a:c7:80:87:df:
be:2c:4a:57:d3:2b:98:71:3d:3d:09:86:72:47:20:
48:88:63:ac:01:0a:9a:4c:30:ac:aa:72:de:95:b2:
7e:0e:f1:b3:c8:4e:ae:bf:f4:eb:0c:0f:80:39:6e:
26:c0:6d:76:2e:7a:0c:06:c8:ed:db:33:12:f6:13:
4a:cc:3c:a5:c0:ae:63:c2:f8:a8:43:29:8b:3e:a8:
56:3d:ab:25:f6:13:a3:84:5a:74:8d:63:f5:7b:c9:
1b:11:a6:cf:ec:c7:70:79:ab:f5:d8:e8:16:4e:b7:
13:90:ab:9f:9d:16:ad:e0:00:60:47:d3:eb:2c:17:
24:67:62:76:02:0e:68:f4:5f:5d:39:fb:1a:a7:ef:
88:56:16:ac:d0:2d:39:98:ce:cd:72:b1:53:5c:df:
16:1b:bb:c2:40:b1:cf:e0:8f:25:07:45:ad:6c:6d:
8b:00:dd:75:22:bb:aa:7d:49:41:2c:a9:96:b7:4a:
27:f0:c5:52:33:2f:1e:5b:5d:9b:2b:05:b5:bd:92:
29:68:07:03:c0:9c:43:b4:5b:80:49:7a:3f:f8:cb:
cd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:29:EE:90:44:AF:57:BC:4E:FC:4D:BE:24:09:FD:48:05:8E:48:86
X509v3 Authority Key Identifier:
keyid:8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:01:5a:00:3a:70:3d:25:d1:72:35:0a:7d:76:bf:59:8c:4e:
aa:33:27:c0:fb:49:d8:d7:58:51:ac:19:54:ae:a1:fa:5a:0a:
ce:64:94:79:29:b0:6a:6d:b9:d2:f2:17:32:94:d3:f5:87:c2:
7d:39:f7:f9:d8:58:b4:a8:8b:e6:7b:8e:de:2e:1d:c6:b2:09:
d3:bd:c4:3c:88:6e:34:de:81:08:74:ea:23:02:ab:c8:c0:0f:
1a:3f:6d:f5:31:96:01:bb:f4:dd:cc:f3:9d:16:00:ab:66:74:
41:e8:18:22:38:f2:6f:fd:c5:a2:ac:c6:0b:b3:39:1d:44:ab:
5f:b6:9b:6d:b5:bd:20:db:bc:a1:46:36:89:2c:29:8d:00:67:
b1:2f:80:b4:d3:90:9f:13:7d:70:3d:49:ed:27:93:77:66:43:
63:04:e2:95:05:42:33:c5:4d:30:7c:f2:6f:82:ae:f8:4a:9b:
08:d7:02:cf:7a:8e:eb:9b:37:2a:d6:20:63:be:c7:02:a8:28:
49:36:53:c1:fd:bb:f1:72:cc:88:2e:67:d6:e3:18:d0:91:ab:
31:90:32:c7:3f:ba:25:dc:db:38:a5:e8:83:7f:e7:c8:96:c1:
a0:93:43:46:e0:6f:06:89:df:f2:9f:e2:f2:ec:30:41:f2:57:
7a:61:ab:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+umPzvDn61VI/mhCML/wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYzExNjhkYTE2MDIwMjg3ZWVhMWZkZWNhMDU0MTkzMGE5
ZDM2ODkwHhcNMjUwOTA3MDcwMTMyWhcNMjUwOTA4MDcwMTMyWjAzMTEwLwYDVQQD
EyhkNTI5ZWU5MDQ0YWY1N2JjNGVmYzRkYmUyNDA5ZmQ0ODA1OGU0ODg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIB6aSCBuWgcRkiapt6bLwTRTH42
Tj/sanL7EqTQJO9q+ydPzd10GseAh9++LEpX0yuYcT09CYZyRyBIiGOsAQqaTDCs
qnLelbJ+DvGzyE6uv/TrDA+AOW4mwG12LnoMBsjt2zMS9hNKzDylwK5jwvioQymL
PqhWPasl9hOjhFp0jWP1e8kbEabP7Mdweav12OgWTrcTkKufnRat4ABgR9PrLBck
Z2J2Ag5o9F9dOfsap++IVhas0C05mM7NcrFTXN8WG7vCQLHP4I8lB0WtbG2LAN11
IruqfUlBLKmWt0on8MVSMy8eW12bKwW1vZIpaAcDwJxDtFuASXo/+MvNFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNUp7pBEr1e8TvxNviQJ/UgFjkiGMB8GA1UdIwQY
MBaAFIvBFo2hYCAofuof3soFQZMKnTaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaThFV2phRmdJQ2gtNmhfZXlnVkJrd3FkTm9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8xOGJjNjAtZWNhNi00OGRkLWFlOTkt
MjZjZTA3MWIwYzM2LzEvaThFV2phRmdJQ2gtNmhfZXlnVkJrd3FkTm9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi8xOGJjNjAtZWNhNi00OGRkLWFlOTktMjZjZTA3MWIwYzM2
LzEvaThFV2phRmdJQ2gtNmhfZXlnVkJrd3FkTm9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYAFaADpw
PSXRcjUKfXa/WYxOqjMnwPtJ2NdYUawZVK6h+loKzmSUeSmwam250vIXMpTT9YfC
fTn3+dhYtKiL5nuO3i4dxrIJ073EPIhuNN6BCHTqIwKryMAPGj9t9TGWAbv03czz
nRYAq2Z0QegYIjjyb/3FoqzGC7M5HUSrX7abbbW9INu8oUY2iSwpjQBnsS+AtNOQ
nxN9cD1J7SeTd2ZDYwTilQVCM8VNMHzyb4Ku+EqbCNcCz3qO65s3KtYgY77HAqgo
STZTwf278XLMiC5n1uMY0JGrMZAyxz+6JdzbOKXog3/nyJbBoJNDRuBvBonf8p/i
8uwwQfJXemGrQg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:49:33 2025 by rpki-client