Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
File: I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft (raw, json)
Hash identifier: kmc2WzHoIJa4FnoUVwoZFVbQfGWnCKxQFHsdPLlZoek=
Subject key identifier: 76:4A:22:6F:8B:B5:71:F7:C8:0E:63:79:E5:7D:8B:5B:B7:8F:62:C7
Authority key identifier: 23:A4:24:97:97:0D:65:54:1D:DB:15:96:58:E3:B0:A6:E2:F5:16:B7
Certificate issuer: /CN=23a42497970d65541ddb159658e3b0a6e2f516b7
Certificate serial: 0199240DA8609E4C5B02DF4E8644DA17209A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 12:01:38 +0000
Manifest this update: Sun 07 Sep 2025 12:01:38 +0000
Manifest next update: Mon 08 Sep 2025 12:01:38 +0000
Files and hashes: 1: I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl (hash: /IjtHacRreXc+WfKDhjUXtw6aqnqYe5PG02OWpVBK98=)
2: MTT1Ia9LOAm3voF-tKlGjmgFAPI.roa (hash: 4bP/TTzv7AEu1D5qKcmPGabc7tnqcf7nz+XM5tO/PTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:a8:60:9e:4c:5b:02:df:4e:86:44:da:17:20:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23a42497970d65541ddb159658e3b0a6e2f516b7
Validity
Not Before: Sep 7 12:01:38 2025 GMT
Not After : Sep 8 12:01:38 2025 GMT
Subject: CN=764a226f8bb571f7c80e6379e57d8b5bb78f62c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:10:50:57:3d:83:08:86:aa:07:18:1b:79:bb:
4b:63:c7:43:4f:6c:2e:22:cd:75:a5:28:cd:02:3d:
06:d7:bd:01:31:da:52:f1:bf:10:c2:0e:24:1f:3e:
05:27:5b:66:fe:fd:a9:6a:21:93:3b:5f:d8:b6:4c:
db:36:92:7b:4f:7f:dc:61:1d:06:25:ae:a0:34:22:
12:9a:79:0d:12:9d:1e:06:55:ca:18:d6:8d:08:81:
6f:99:60:3d:7b:ec:cd:b6:96:8f:02:1b:b8:f6:ab:
5d:e1:76:28:c7:f9:32:40:c6:fc:04:90:44:65:67:
40:2f:5c:10:c6:dd:f3:39:e1:f1:b2:4b:9f:26:76:
24:11:4e:2b:f9:93:39:0d:fc:3d:4b:19:3a:9a:c7:
fd:1d:07:a2:9e:55:eb:73:aa:71:b6:00:75:db:c1:
91:68:07:63:ef:0b:ca:71:81:cd:43:66:d1:06:76:
36:aa:0f:f8:7e:a0:19:3d:c7:1d:75:e6:dc:1a:94:
32:dc:ae:48:fc:c1:af:86:b5:1c:f6:c2:32:c5:c0:
66:0c:05:1a:89:ea:6d:1f:9b:e6:1a:75:be:ef:ea:
c1:bf:67:32:0d:34:7f:76:46:f8:7c:73:37:19:c1:
a2:83:76:95:aa:37:3f:a7:ed:e3:56:a2:53:10:b5:
56:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:4A:22:6F:8B:B5:71:F7:C8:0E:63:79:E5:7D:8B:5B:B7:8F:62:C7
X509v3 Authority Key Identifier:
keyid:23:A4:24:97:97:0D:65:54:1D:DB:15:96:58:E3:B0:A6:E2:F5:16:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ba2857-c098-44d2-9c01-e720feb10103/1/I6Qkl5cNZVQd2xWWWOOwpuL1Frc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:00:2b:79:b8:25:69:b9:1d:75:e3:e3:c6:41:69:f4:34:bc:
d3:b4:3a:84:6b:6f:fb:ac:eb:38:4f:13:73:4e:95:9d:43:10:
48:c1:c8:f4:0e:e5:0c:c9:e2:ef:02:b2:58:ea:32:c1:62:f6:
9f:28:97:73:b0:10:f2:95:be:35:43:91:29:ec:ea:0b:15:d4:
a9:5a:13:85:f7:01:07:f9:88:d2:ce:59:99:3f:bf:b7:b6:52:
53:fa:f1:4d:62:2e:31:e5:42:4d:05:17:48:78:25:85:dc:90:
56:2a:52:90:a6:a4:ad:92:bc:1b:63:83:48:af:33:d5:75:ac:
7e:a1:33:6b:b0:a7:f8:1f:98:df:95:8c:d6:24:7e:d1:f7:a0:
14:81:b0:31:f2:58:bd:a2:f7:fc:30:c5:92:f7:8c:a9:a9:13:
bf:f0:40:31:f3:b2:f6:3c:e1:e7:92:60:90:63:88:26:2d:de:
ba:69:f0:47:13:4b:85:c3:3a:a5:44:b7:36:a9:c4:4a:90:2f:
ab:66:df:7f:f6:1c:5d:00:fb:f1:4c:e7:74:c8:97:63:93:06:
3b:ea:49:b7:4d:0f:4e:c4:ed:97:e8:15:2a:95:ae:e5:a4:77:
d8:8a:0a:7c:23:80:e5:d9:f2:28:98:83:94:55:4b:43:f9:cc:
20:0c:d0:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkkDahgnkxbAt9OhkTaFyCaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzYTQyNDk3OTcwZDY1NTQxZGRiMTU5NjU4ZTNiMGE2ZTJm
NTE2YjcwHhcNMjUwOTA3MTIwMTM4WhcNMjUwOTA4MTIwMTM4WjAzMTEwLwYDVQQD
Eyg3NjRhMjI2ZjhiYjU3MWY3YzgwZTYzNzllNTdkOGI1YmI3OGY2MmM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7xBQVz2DCIaqBxgbebtLY8dDT2wu
Is11pSjNAj0G170BMdpS8b8Qwg4kHz4FJ1tm/v2paiGTO1/YtkzbNpJ7T3/cYR0G
Ja6gNCISmnkNEp0eBlXKGNaNCIFvmWA9e+zNtpaPAhu49qtd4XYox/kyQMb8BJBE
ZWdAL1wQxt3zOeHxskufJnYkEU4r+ZM5Dfw9Sxk6msf9HQeinlXrc6pxtgB128GR
aAdj7wvKcYHNQ2bRBnY2qg/4fqAZPccddebcGpQy3K5I/MGvhrUc9sIyxcBmDAUa
ieptH5vmGnW+7+rBv2cyDTR/dkb4fHM3GcGig3aVqjc/p+3jVqJTELVWYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHZKIm+LtXH3yA5jeeV9i1u3j2LHMB8GA1UdIwQY
MBaAFCOkJJeXDWVUHdsVlljjsKbi9Ra3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTZRa2w1Y05aVlFkMnhXV1dPT3dwdUwxRnJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9iYTI4NTctYzA5OC00NGQyLTljMDEt
ZTcyMGZlYjEwMTAzLzEvSTZRa2w1Y05aVlFkMnhXV1dPT3dwdUwxRnJjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC9iYTI4NTctYzA5OC00NGQyLTljMDEtZTcyMGZlYjEwMTAz
LzEvSTZRa2w1Y05aVlFkMnhXV1dPT3dwdUwxRnJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAngArebgl
abkddePjxkFp9DS807Q6hGtv+6zrOE8Tc06VnUMQSMHI9A7lDMni7wKyWOoywWL2
nyiXc7AQ8pW+NUORKezqCxXUqVoThfcBB/mI0s5ZmT+/t7ZSU/rxTWIuMeVCTQUX
SHglhdyQVipSkKakrZK8G2ODSK8z1XWsfqEza7Cn+B+Y35WM1iR+0fegFIGwMfJY
vaL3/DDFkveMqakTv/BAMfOy9jzh55JgkGOIJi3eumnwRxNLhcM6pUS3NqnESpAv
q2bff/YcXQD78UzndMiXY5MGO+pJt00PTsTtl+gVKpWu5aR32IoKfCOA5dnyKJiD
lFVLQ/nMIAzQYw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:47:36 2025 by rpki-client