Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: h0IS5CEIc2z+3IXxhuVFWjCROjLMyUvRiT6srYrq2sM=
Subject key identifier: 71:CD:19:21:F8:6A:02:DF:43:37:07:2D:53:17:A2:CB:57:E3:9E:28
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 0198786416F5981C0AE4C95C2FB4344F7587
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 0A01
Signing time: Tue 05 Aug 2025 04:01:21 +0000
Manifest this update: Tue 05 Aug 2025 04:01:21 +0000
Manifest next update: Wed 06 Aug 2025 04:01:21 +0000
Files and hashes: 1: RZMmAomJrqs0yCU-Sl6pSFt5lLQ.roa (hash: mHTuz89sEZswLAvVyf4aCavMINMyLcZOi1mRW8tq0vE=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: vr+deYEShbgfQFhhTQJ2YcH8yFeKvFAvx58uxaYSqko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 00:46:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:78:64:16:f5:98:1c:0a:e4:c9:5c:2f:b4:34:4f:75:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Aug 5 04:01:21 2025 GMT
Not After : Aug 6 04:01:21 2025 GMT
Subject: CN=71cd1921f86a02df4337072d5317a2cb57e39e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:59:e6:29:7a:e9:24:4c:4a:ea:e8:43:96:f2:
2d:10:81:2b:92:e1:52:d1:16:78:ef:15:02:bf:f3:
e9:ed:1d:2a:dd:98:3e:7f:ab:9f:e3:02:0d:64:4b:
f1:27:39:14:ba:00:6e:6e:a7:ae:64:fe:f0:78:21:
f2:21:21:73:54:cd:f3:24:d2:86:21:89:e3:fc:1b:
63:5d:16:0e:ea:9f:77:9b:cc:72:bc:4e:95:8f:a0:
79:c5:e8:1c:2f:03:e0:f9:a8:24:7a:02:85:3f:22:
29:fd:90:c7:eb:e8:ac:93:9d:a4:c8:05:88:3b:43:
2e:1a:66:1e:ec:a7:62:0f:4e:7b:77:b7:4f:2e:2e:
8f:3a:42:0b:f0:c8:76:1d:f3:cb:e4:4a:84:f5:27:
ef:b6:24:49:0d:e1:a2:89:64:e7:17:8c:93:b1:c6:
a8:0c:19:9d:9c:1a:a1:6a:a8:ab:d2:4b:2d:3e:ab:
ae:46:31:d6:ab:22:0d:ef:9a:53:87:7c:2a:1c:44:
89:2c:92:88:0e:50:7a:b4:8f:db:c3:88:43:1a:f9:
03:c3:84:08:aa:79:66:53:fc:c3:7e:c0:e8:32:07:
61:90:68:ba:7b:8c:ce:05:c3:23:f8:f7:c0:6d:93:
bc:5c:67:fc:72:19:52:a4:65:76:c7:da:58:9e:63:
c3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:CD:19:21:F8:6A:02:DF:43:37:07:2D:53:17:A2:CB:57:E3:9E:28
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:17:c4:ce:1f:18:dc:c3:9d:de:4b:57:72:7f:ef:1a:92:36:
d0:b6:2a:35:60:18:4b:36:a8:33:b5:2e:97:7a:6e:d3:c1:b0:
20:e2:99:5d:ee:c0:b9:a7:cf:54:aa:4f:45:3d:ce:4f:57:c5:
94:05:16:00:eb:46:5f:b8:ac:5a:97:3b:95:5a:8d:f7:30:17:
ab:4f:c2:38:0e:b6:d5:00:32:79:fc:eb:85:da:1e:8b:a9:ed:
50:02:86:e8:17:3a:f5:99:ce:68:3b:2a:6a:b4:a6:4d:23:1a:
c4:c0:bb:6e:1d:2d:dc:fa:07:22:98:5e:cb:ab:13:39:77:41:
03:8e:50:16:12:07:d8:ee:d3:ae:da:2d:5a:b7:5f:61:6f:75:
92:45:78:04:e5:0c:75:04:7e:0b:83:68:4f:c0:aa:f3:d6:9d:
01:c0:12:9d:e2:f7:7b:4c:99:c9:45:dd:18:5f:dd:2b:18:6c:
fd:3d:f4:20:1a:a9:29:b3:da:b5:4b:95:07:28:67:47:1f:58:
ec:20:91:19:4b:90:38:c9:c1:d7:87:4c:e3:e5:42:f6:9d:9d:
0f:45:8c:da:44:18:9f:cd:d0:ad:67:0a:87:74:23:4b:15:34:
06:f9:ed:b1:3d:2b:11:a1:4b:1e:41:5c:28:d2:e0:65:fe:ba:
0e:3f:20:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh4ZBb1mBwK5MlcL7Q0T3WHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhZjdmMzJkMzNmNjY0Njc3OWE1MWZiMjMyMDFjNjQ0MmQx
NDUxY2EwHhcNMjUwODA1MDQwMTIxWhcNMjUwODA2MDQwMTIxWjAzMTEwLwYDVQQD
Eyg3MWNkMTkyMWY4NmEwMmRmNDMzNzA3MmQ1MzE3YTJjYjU3ZTM5ZTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzVnmKXrpJExK6uhDlvItEIErkuFS
0RZ47xUCv/Pp7R0q3Zg+f6uf4wINZEvxJzkUugBubqeuZP7weCHyISFzVM3zJNKG
IYnj/BtjXRYO6p93m8xyvE6Vj6B5xegcLwPg+agkegKFPyIp/ZDH6+isk52kyAWI
O0MuGmYe7KdiD057d7dPLi6POkIL8Mh2HfPL5EqE9SfvtiRJDeGiiWTnF4yTscao
DBmdnBqhaqir0kstPquuRjHWqyIN75pTh3wqHESJLJKIDlB6tI/bw4hDGvkDw4QI
qnlmU/zDfsDoMgdhkGi6e4zOBcMj+PfAbZO8XGf8chlSpGV2x9pYnmPDgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHHNGSH4agLfQzcHLVMXostX454oMB8GA1UdIwQY
MBaAFIr38y0z9mRneaUfsjIBxkQtFFHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMt
NWI3MmZiOTI3ZDFjLzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9hZmZjYmItYzFiMy00NDRhLTg3NmMtNWI3MmZiOTI3ZDFj
LzEvaXZmekxUUDJaR2Q1cFIteU1nSEdSQzBVVWNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARhfEzh8Y
3MOd3ktXcn/vGpI20LYqNWAYSzaoM7Uul3pu08GwIOKZXe7AuafPVKpPRT3OT1fF
lAUWAOtGX7isWpc7lVqN9zAXq0/COA621QAyefzrhdoei6ntUAKG6Bc69ZnOaDsq
arSmTSMaxMC7bh0t3PoHIphey6sTOXdBA45QFhIH2O7TrtotWrdfYW91kkV4BOUM
dQR+C4NoT8Cq89adAcASneL3e0yZyUXdGF/dKxhs/T30IBqpKbPatUuVByhnRx9Y
7CCRGUuQOMnB14dM4+VC9p2dD0WM2kQYn83QrWcKh3QjSxU0BvntsT0rEaFLHkFc
KNLgZf66Dj8gYg==
-----END CERTIFICATE-----
Generated at Tue Aug 5 08:24:09 2025 by rpki-client