Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
File: itKTDR_h3UMEkf17gx3pxhaSreQ.mft (raw, json)
Hash identifier: ydLqjvqRU80Iv6WA3Ln6INlVNYpOnX174VQz37BilGE=
Subject key identifier: F1:D1:AD:84:7D:0E:EA:0D:A8:DA:6B:DA:0A:10:75:AD:DD:E0:18:62
Authority key identifier: 8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
Certificate issuer: /CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Certificate serial: 0199225546626EE4576F9CCD27900BD2310B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
Manifest number: 13A0
Signing time: Sun 07 Sep 2025 04:00:37 +0000
Manifest this update: Sun 07 Sep 2025 04:00:37 +0000
Manifest next update: Mon 08 Sep 2025 04:00:37 +0000
Files and hashes: 1: BAzsPPCBy1zDTboFw5Sl-2syIOA.roa (hash: 3HXxwP+fQhhVnJuWOZekRFhU3Q46kmrc9Y0dZLDklcg=)
2: bYpyeHiVOX2l8iPl-uPkAX9zfmw.roa (hash: clblsPlZTuaRgRGxz58OPeCdg4rL7htkupWPy4rOhKg=)
3: itKTDR_h3UMEkf17gx3pxhaSreQ.crl (hash: 99UtsiM1xk15li4sipdokGe5LhtkLrcyeFoyJH3TPpQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:46:62:6e:e4:57:6f:9c:cd:27:90:0b:d2:31:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad2930d1fe1dd430491fd7b831de9c61692ade4
Validity
Not Before: Sep 7 04:00:37 2025 GMT
Not After : Sep 8 04:00:37 2025 GMT
Subject: CN=f1d1ad847d0eea0da8da6bda0a1075addde01862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0c:a1:e0:20:c8:82:54:06:5a:fd:3b:37:6f:
1f:9a:72:eb:dc:14:7a:ae:4b:46:28:f6:27:8f:8c:
76:62:68:5c:5b:5f:2d:50:76:31:ca:78:97:e9:aa:
d2:d4:72:b1:96:3a:9e:b0:f9:44:5c:4c:14:6e:3e:
77:d0:52:ae:5e:07:39:71:2a:e0:3e:51:7e:bf:c5:
1c:19:7b:66:f6:8d:f0:e0:76:3b:90:a6:df:2e:d9:
ee:b1:ee:45:0d:62:1a:1d:df:2f:39:ef:7d:7b:bd:
4a:69:c2:2f:75:f2:a2:ac:55:cf:bc:0d:74:34:8b:
1f:80:c3:2c:58:42:73:57:6e:ad:4b:54:39:25:11:
f9:11:b8:1c:9b:e7:af:37:70:85:96:97:c7:fc:78:
d1:cd:c6:0b:1a:a7:2c:49:c0:44:34:1c:71:a1:67:
17:63:7f:48:c1:03:c0:0b:43:2c:e6:00:06:67:8b:
78:9b:0e:57:82:96:3b:2a:3f:29:ce:ec:94:b5:30:
0b:4b:62:25:60:37:6f:c7:04:6d:d7:77:6c:fa:c5:
3a:4a:a3:bc:09:48:64:d8:2c:99:cb:b2:be:42:cd:
9f:57:6e:54:0e:e7:34:a6:8a:20:1c:7e:ed:3d:24:
5b:6d:5b:0f:67:ec:05:20:9c:62:7c:7b:8f:8f:e9:
7b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D1:AD:84:7D:0E:EA:0D:A8:DA:6B:DA:0A:10:75:AD:DD:E0:18:62
X509v3 Authority Key Identifier:
keyid:8A:D2:93:0D:1F:E1:DD:43:04:91:FD:7B:83:1D:E9:C6:16:92:AD:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itKTDR_h3UMEkf17gx3pxhaSreQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/be7894-0ccc-4fbd-880b-9758cb2b844e/1/itKTDR_h3UMEkf17gx3pxhaSreQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:2d:75:8b:12:a9:34:93:1e:fa:50:0a:39:ee:4c:d7:08:65:
e3:d2:01:c3:eb:d7:b7:27:07:a0:33:13:5a:ce:d6:c9:ab:1d:
ea:85:8a:df:58:2a:05:2a:c4:a9:f9:20:a9:ca:dc:5e:13:fb:
31:5a:3a:df:cc:1a:8a:6d:e0:9d:86:aa:d3:d1:b9:a3:ce:b3:
dc:22:c5:ec:80:bc:ef:91:5a:91:f8:67:87:07:8d:6d:98:ce:
10:e3:33:2c:04:8b:55:c8:a6:c6:9c:2f:96:89:c5:2e:f0:e2:
f5:80:f8:b6:1b:a1:29:82:05:ed:3d:c0:d4:16:1d:29:f1:e4:
9f:c4:55:b3:04:98:8d:f7:73:70:67:00:46:ed:5c:35:1a:c1:
8c:9e:74:0c:35:c7:ee:d2:e6:4a:a8:8d:ce:17:38:13:83:64:
a5:39:0f:43:a9:9a:50:20:53:3b:c8:40:69:61:12:af:d5:5e:
67:b5:4a:e9:4b:bf:36:d6:02:c9:70:b7:63:f9:8b:e8:19:3c:
f8:e1:24:d8:d4:b3:c4:d4:ce:fc:01:98:60:e8:89:16:c5:37:
af:ac:44:9d:9b:af:2c:b8:c2:d4:9d:56:4b:00:67:86:a4:ba:
e9:80:2b:22:0f:3b:6b:a5:c4:92:8d:0f:cf:0a:d5:e8:c9:4b:
98:61:6b:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVUZibuRXb5zNJ5AL0jELMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhZDI5MzBkMWZlMWRkNDMwNDkxZmQ3YjgzMWRlOWM2MTY5
MmFkZTQwHhcNMjUwOTA3MDQwMDM3WhcNMjUwOTA4MDQwMDM3WjAzMTEwLwYDVQQD
EyhmMWQxYWQ4NDdkMGVlYTBkYThkYTZiZGEwYTEwNzVhZGRkZTAxODYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngyh4CDIglQGWv07N28fmnLr3BR6
rktGKPYnj4x2YmhcW18tUHYxyniX6arS1HKxljqesPlEXEwUbj530FKuXgc5cSrg
PlF+v8UcGXtm9o3w4HY7kKbfLtnuse5FDWIaHd8vOe99e71KacIvdfKirFXPvA10
NIsfgMMsWEJzV26tS1Q5JRH5Ebgcm+evN3CFlpfH/HjRzcYLGqcsScBENBxxoWcX
Y39IwQPAC0Ms5gAGZ4t4mw5XgpY7Kj8pzuyUtTALS2IlYDdvxwRt13ds+sU6SqO8
CUhk2CyZy7K+Qs2fV25UDuc0poogHH7tPSRbbVsPZ+wFIJxifHuPj+l7KwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPHRrYR9DuoNqNpr2goQda3d4BhiMB8GA1UdIwQY
MBaAFIrSkw0f4d1DBJH9e4Md6cYWkq3kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXRLVERSX2gzVU1Fa2YxN2d4M3B4aGFTcmVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9iZTc4OTQtMGNjYy00ZmJkLTg4MGIt
OTc1OGNiMmI4NDRlLzEvaXRLVERSX2gzVU1Fa2YxN2d4M3B4aGFTcmVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS9iZTc4OTQtMGNjYy00ZmJkLTg4MGItOTc1OGNiMmI4NDRl
LzEvaXRLVERSX2gzVU1Fa2YxN2d4M3B4aGFTcmVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXC11ixKp
NJMe+lAKOe5M1whl49IBw+vXtycHoDMTWs7Wyasd6oWK31gqBSrEqfkgqcrcXhP7
MVo638waim3gnYaq09G5o86z3CLF7IC875FakfhnhweNbZjOEOMzLASLVcimxpwv
lonFLvDi9YD4thuhKYIF7T3A1BYdKfHkn8RVswSYjfdzcGcARu1cNRrBjJ50DDXH
7tLmSqiNzhc4E4NkpTkPQ6maUCBTO8hAaWESr9VeZ7VK6Uu/NtYCyXC3Y/mL6Bk8
+OEk2NSzxNTO/AGYYOiJFsU3r6xEnZuvLLjC1J1WSwBnhqS66YArIg87a6XEko0P
zwrV6MlLmGFrTw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:30:59 2025 by rpki-client