Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
File: IsX-stJfrE3YuqT3HY3CJoGGoDk.mft (raw, json)
Hash identifier: FXzy/Grds5l/aSEJAkfPNtiz5qSFoVGRF0MW8TjAu+U=
Subject key identifier: 52:08:18:AB:E9:1F:FA:D1:8E:C6:9B:31:75:50:92:B1:7E:A8:24:75
Authority key identifier: 22:C5:FE:B2:D2:5F:AC:4D:D8:BA:A4:F7:1D:8D:C2:26:81:86:A0:39
Certificate issuer: /CN=22c5feb2d25fac4dd8baa4f71d8dc2268186a039
Certificate serial: 01974B5662971CA3B2E1253ECA944BA859D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 17:00:41 +0000
Manifest this update: Sat 07 Jun 2025 17:00:41 +0000
Manifest next update: Sun 08 Jun 2025 17:00:41 +0000
Files and hashes: 1: IsX-stJfrE3YuqT3HY3CJoGGoDk.crl (hash: KCRr9mQFZEmNwHkQ4NeXxKGjJ7X2v8x3DdTdAOMdZZw=)
2: X8ZFuM8cVmkTslM54G-NHaJfImQ.roa (hash: HXWB+offeGx+RYH+8cAxZvvU8F4PwjDTMuG2VKd+Z6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 17:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:62:97:1c:a3:b2:e1:25:3e:ca:94:4b:a8:59:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c5feb2d25fac4dd8baa4f71d8dc2268186a039
Validity
Not Before: Jun 7 17:00:41 2025 GMT
Not After : Jun 8 17:00:41 2025 GMT
Subject: CN=520818abe91ffad18ec69b31755092b17ea82475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6c:37:52:5d:21:fb:92:c0:c5:a4:63:b2:6f:
80:ae:fa:22:59:82:5c:9b:d9:b1:25:bb:6b:69:3d:
db:5a:bf:97:55:5d:91:29:2a:c7:29:71:44:fd:da:
be:37:79:22:94:37:7d:07:f5:64:70:41:db:42:76:
e7:a9:ff:c0:1e:51:2f:f7:fd:a9:31:10:c5:57:7f:
ae:35:57:94:78:59:55:21:0d:38:44:b5:58:d1:3d:
9f:5a:83:b3:64:e6:e2:87:20:ff:c5:7a:74:42:74:
c3:7e:74:95:bf:ef:85:39:3b:1a:a0:db:49:29:3e:
62:2e:f3:75:d5:9d:b7:13:be:e7:28:63:f6:e4:d0:
ad:94:75:70:83:27:83:a4:00:94:2b:e7:60:4b:b8:
60:0b:5e:90:77:34:43:ed:c5:cc:a9:37:76:be:b5:
4c:e1:ef:4e:f9:8e:b2:32:4a:83:1b:63:c0:bc:6b:
54:ff:8e:47:ce:b0:d0:17:27:4a:42:aa:e6:f5:eb:
46:20:6c:4e:85:53:64:2b:8a:db:aa:ae:07:5d:4b:
ad:45:f8:49:b9:0d:83:88:39:7e:35:a7:f9:60:6d:
21:65:3e:a5:2e:ce:32:ca:36:74:db:f4:35:33:c6:
55:ae:ed:47:6d:1b:ec:39:0b:7a:db:c8:c8:c4:c9:
7b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:08:18:AB:E9:1F:FA:D1:8E:C6:9B:31:75:50:92:B1:7E:A8:24:75
X509v3 Authority Key Identifier:
keyid:22:C5:FE:B2:D2:5F:AC:4D:D8:BA:A4:F7:1D:8D:C2:26:81:86:A0:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsX-stJfrE3YuqT3HY3CJoGGoDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d216ed-9a76-4a93-b6a9-468f498faf1c/1/IsX-stJfrE3YuqT3HY3CJoGGoDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:37:23:d0:d0:1d:f9:69:da:0e:bd:47:49:e8:49:1a:96:bd:
82:9d:97:a8:85:f6:a8:66:22:31:64:9a:e8:96:bc:a2:37:4d:
16:27:1a:eb:22:60:b1:61:1f:ed:39:b3:ef:bc:e5:f0:99:f1:
bc:39:b5:03:b3:07:1c:37:fc:07:50:22:a9:27:75:07:9a:42:
04:ca:10:65:cf:72:63:95:99:39:8c:82:86:06:78:ca:a3:95:
e1:f7:7b:67:fd:a0:a7:94:f4:25:25:8f:49:c5:f5:75:df:5c:
cc:5c:a0:c8:8a:44:1f:97:77:71:15:df:b9:96:16:8c:25:46:
26:15:f3:66:51:5f:78:af:9f:a8:dd:85:06:cd:6e:e8:65:4b:
2c:5b:07:d5:90:d5:33:26:4f:7b:4a:0c:33:fb:70:1a:4f:93:
a0:ec:e9:09:03:7e:08:12:f2:e0:3c:16:40:9a:36:2e:da:6b:
eb:b6:6f:e3:f1:4a:f7:fd:60:07:47:d7:f9:01:d9:e7:c0:aa:
8f:25:e3:58:df:8d:22:02:b1:b7:c8:f1:15:fe:1e:1f:5b:88:
f3:f3:37:48:8c:4c:86:23:82:d9:70:39:03:c4:25:09:22:e4:
42:64:3b:1c:2c:0d:e7:16:ef:e1:50:3a:1e:02:40:86:5c:8c:
32:ed:76:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLVmKXHKOy4SU+ypRLqFnUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzVmZWIyZDI1ZmFjNGRkOGJhYTRmNzFkOGRjMjI2ODE4
NmEwMzkwHhcNMjUwNjA3MTcwMDQxWhcNMjUwNjA4MTcwMDQxWjAzMTEwLwYDVQQD
Eyg1MjA4MThhYmU5MWZmYWQxOGVjNjliMzE3NTUwOTJiMTdlYTgyNDc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2w3Ul0h+5LAxaRjsm+ArvoiWYJc
m9mxJbtraT3bWr+XVV2RKSrHKXFE/dq+N3kilDd9B/VkcEHbQnbnqf/AHlEv9/2p
MRDFV3+uNVeUeFlVIQ04RLVY0T2fWoOzZObihyD/xXp0QnTDfnSVv++FOTsaoNtJ
KT5iLvN11Z23E77nKGP25NCtlHVwgyeDpACUK+dgS7hgC16QdzRD7cXMqTd2vrVM
4e9O+Y6yMkqDG2PAvGtU/45HzrDQFydKQqrm9etGIGxOhVNkK4rbqq4HXUutRfhJ
uQ2DiDl+Naf5YG0hZT6lLs4yyjZ02/Q1M8ZVru1HbRvsOQt628jIxMl77QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFIIGKvpH/rRjsabMXVQkrF+qCR1MB8GA1UdIwQY
MBaAFCLF/rLSX6xN2Lqk9x2NwiaBhqA5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNYLXN0SmZyRTNZdXFUM0hZM0NKb0dHb0RrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kMjE2ZWQtOWE3Ni00YTkzLWI2YTkt
NDY4ZjQ5OGZhZjFjLzEvSXNYLXN0SmZyRTNZdXFUM0hZM0NKb0dHb0RrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9kMjE2ZWQtOWE3Ni00YTkzLWI2YTktNDY4ZjQ5OGZhZjFj
LzEvSXNYLXN0SmZyRTNZdXFUM0hZM0NKb0dHb0RrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdzcj0NAd
+WnaDr1HSehJGpa9gp2XqIX2qGYiMWSa6Ja8ojdNFica6yJgsWEf7Tmz77zl8Jnx
vDm1A7MHHDf8B1AiqSd1B5pCBMoQZc9yY5WZOYyChgZ4yqOV4fd7Z/2gp5T0JSWP
ScX1dd9czFygyIpEH5d3cRXfuZYWjCVGJhXzZlFfeK+fqN2FBs1u6GVLLFsH1ZDV
MyZPe0oMM/twGk+ToOzpCQN+CBLy4DwWQJo2Ltpr67Zv4/FK9/1gB0fX+QHZ58Cq
jyXjWN+NIgKxt8jxFf4eH1uI8/M3SIxMhiOC2XA5A8QlCSLkQmQ7HCwN5xbv4VA6
HgJAhlyMMu12/A==
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:37:05 2025 by rpki-client