Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
File: IkCgcYD88zY191fMFEng1dvU_bg.mft (raw, json)
Hash identifier: CRAwMaUF6Id8CqxjKIUpVn7s1jN7k0iAsTnisvMg5NQ=
Subject key identifier: 7D:F8:C6:83:15:6E:71:5B:06:55:68:77:20:5F:F8:49:FD:7F:5E:32
Authority key identifier: 22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
Certificate issuer: /CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Certificate serial: 019922C33DD8566ABD9CE721F265A9B25C63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
Manifest number: 0259
Signing time: Sun 07 Sep 2025 06:00:44 +0000
Manifest this update: Sun 07 Sep 2025 06:00:44 +0000
Manifest next update: Mon 08 Sep 2025 06:00:44 +0000
Files and hashes: 1: IkCgcYD88zY191fMFEng1dvU_bg.crl (hash: j5W+XZRYI02FKe5Eg2u5iBSzWCi8RoTmvXjAeSWIBzY=)
2: nvx0QRZQO1QzuvMN00Bva6hTGZw.roa (hash: Gw59i4bicuVuHEY8V6dHsuW9MPHvsYhnw1rq0LLdv8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:3d:d8:56:6a:bd:9c:e7:21:f2:65:a9:b2:5c:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2240a07180fcf33635f757cc1449e0d5dbd4fdb8
Validity
Not Before: Sep 7 06:00:44 2025 GMT
Not After : Sep 8 06:00:44 2025 GMT
Subject: CN=7df8c683156e715b06556877205ff849fd7f5e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b5:ae:5f:74:d2:3f:12:53:b5:1e:ec:a7:69:
58:ec:26:28:8f:59:3a:91:09:56:bb:df:b4:b0:cd:
d7:47:50:6d:21:14:0d:a2:92:ff:21:87:25:61:bf:
2a:f9:c4:22:95:cb:98:f4:94:6d:73:f6:af:89:d9:
35:a8:ef:8c:b3:79:db:75:c2:bc:4b:54:b4:e1:c9:
03:b1:2e:21:fb:fa:e3:07:f5:f6:49:3d:47:57:90:
9d:9f:b0:a0:cf:e2:48:90:57:20:54:3f:c4:93:2c:
c8:37:3b:97:fa:84:ac:21:90:10:be:aa:3b:51:33:
fc:be:15:50:d7:cb:fe:fc:75:91:a3:24:20:69:56:
98:2d:13:90:ae:6d:7a:de:84:c0:19:2b:5a:37:0d:
6d:19:46:73:b4:90:be:fd:31:ae:00:d7:34:a7:a4:
b9:31:1a:8e:f1:39:a2:3a:b6:6c:a2:b6:59:15:7b:
be:db:62:56:cc:e8:d3:ed:23:3c:96:9c:9b:23:e6:
9c:c6:83:79:40:89:b8:90:f8:f9:43:20:58:49:4a:
3d:df:b2:c9:a9:44:37:c9:9c:0c:5d:4b:66:c2:81:
48:cf:66:da:ce:9e:a3:1a:ad:6f:71:3f:7b:80:ec:
5d:12:c9:f4:ec:c4:6c:6a:14:5a:d8:64:54:4f:e5:
3d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F8:C6:83:15:6E:71:5B:06:55:68:77:20:5F:F8:49:FD:7F:5E:32
X509v3 Authority Key Identifier:
keyid:22:40:A0:71:80:FC:F3:36:35:F7:57:CC:14:49:E0:D5:DB:D4:FD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkCgcYD88zY191fMFEng1dvU_bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a314cc-066e-4c09-a36a-d0bd0e803fd1/1/IkCgcYD88zY191fMFEng1dvU_bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:48:0e:74:01:9c:d8:15:5d:cc:7c:60:9a:67:9a:1b:b1:d4:
53:7c:31:2b:06:a6:1d:9b:65:85:33:10:37:bb:d8:c2:af:57:
3b:e5:27:8f:c8:e9:37:b6:22:86:b9:cd:91:9e:b0:c2:c7:9b:
06:ae:ae:2d:cb:09:04:55:89:84:80:3c:3a:a7:54:3f:c3:63:
c9:cc:91:2f:6c:fa:f8:f4:5f:2e:0f:dc:fd:9e:26:f5:e5:08:
0b:ec:5e:08:09:36:6f:7e:6e:8c:e4:1c:58:77:c6:71:ae:48:
dd:97:02:6e:4b:5f:d3:59:71:c6:04:b4:31:d3:0e:42:81:89:
4f:21:b6:68:21:79:a1:83:a9:e2:8f:c1:29:b7:c9:a5:cc:51:
45:e4:a6:57:17:42:3a:88:85:4e:db:05:ab:b4:ba:f1:3e:90:
8d:61:0b:c7:fc:e9:a0:4e:b6:0e:fb:f2:4e:dc:11:b7:1f:9e:
90:34:a8:30:1b:7d:59:5d:a4:c6:a4:e1:ca:66:20:29:90:72:
1d:57:d4:7b:7d:fb:86:e9:a5:e9:17:5b:e2:75:3c:db:5f:22:
c8:fb:f2:dd:0b:59:0d:b2:46:d5:42:e2:84:21:ea:58:bf:40:
2b:18:ef:e2:aa:11:75:4f:5a:d9:da:db:e1:14:26:cb:f4:22:
a4:9e:de:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiwz3YVmq9nOch8mWpslxjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNDBhMDcxODBmY2YzMzYzNWY3NTdjYzE0NDllMGQ1ZGJk
NGZkYjgwHhcNMjUwOTA3MDYwMDQ0WhcNMjUwOTA4MDYwMDQ0WjAzMTEwLwYDVQQD
Eyg3ZGY4YzY4MzE1NmU3MTViMDY1NTY4NzcyMDVmZjg0OWZkN2Y1ZTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5LWuX3TSPxJTtR7sp2lY7CYoj1k6
kQlWu9+0sM3XR1BtIRQNopL/IYclYb8q+cQilcuY9JRtc/avidk1qO+Ms3nbdcK8
S1S04ckDsS4h+/rjB/X2ST1HV5Cdn7Cgz+JIkFcgVD/EkyzINzuX+oSsIZAQvqo7
UTP8vhVQ18v+/HWRoyQgaVaYLROQrm163oTAGStaNw1tGUZztJC+/TGuANc0p6S5
MRqO8TmiOrZsorZZFXu+22JWzOjT7SM8lpybI+acxoN5QIm4kPj5QyBYSUo937LJ
qUQ3yZwMXUtmwoFIz2bazp6jGq1vcT97gOxdEsn07MRsahRa2GRUT+U9pwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH34xoMVbnFbBlVodyBf+En9f14yMB8GA1UdIwQY
MBaAFCJAoHGA/PM2NfdXzBRJ4NXb1P24MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEt
ZDBiZDBlODAzZmQxLzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9hMzE0Y2MtMDY2ZS00YzA5LWEzNmEtZDBiZDBlODAzZmQx
LzEvSWtDZ2NZRDg4elkxOTFmTUZFbmcxZHZVX2JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFkgOdAGc
2BVdzHxgmmeaG7HUU3wxKwamHZtlhTMQN7vYwq9XO+Unj8jpN7YihrnNkZ6wwseb
Bq6uLcsJBFWJhIA8OqdUP8NjycyRL2z6+PRfLg/c/Z4m9eUIC+xeCAk2b35ujOQc
WHfGca5I3ZcCbktf01lxxgS0MdMOQoGJTyG2aCF5oYOp4o/BKbfJpcxRReSmVxdC
OoiFTtsFq7S68T6QjWELx/zpoE62DvvyTtwRtx+ekDSoMBt9WV2kxqThymYgKZBy
HVfUe337huml6Rdb4nU8218iyPvy3QtZDbJG1ULihCHqWL9AKxjv4qoRdU9a2drb
4RQmy/QipJ7eLQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:39:00 2025 by rpki-client