Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: wAfYTCcgMVO0NpPISH21iSLUga1NGWhgAcOkUHo187c=
Subject key identifier: F3:F8:CD:B8:24:69:A1:6E:73:89:D5:E5:04:A9:68:68:35:ED:8E:2E
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 01987FE66A54D71D53F42CCC404BC5868758
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 12BE
Signing time: Wed 06 Aug 2025 15:01:03 +0000
Manifest this update: Wed 06 Aug 2025 15:01:03 +0000
Manifest next update: Thu 07 Aug 2025 15:01:03 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: mbW3Yg5FJUQoPgV00E/ad6ykfe/jI6dsUN4+/gGU+k0=)
2: aEJUX-P3iWzm8iZ2YmNhX1BUm-w.roa (hash: UCW6fp2JBu8X3L8wVEatff2uZp8yn3edNh91K1NyH88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 15:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:e6:6a:54:d7:1d:53:f4:2c:cc:40:4b:c5:86:87:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Aug 6 15:01:03 2025 GMT
Not After : Aug 7 15:01:03 2025 GMT
Subject: CN=f3f8cdb82469a16e7389d5e504a9686835ed8e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c8:c7:7a:ec:e7:06:b4:7f:42:6b:ec:ad:3c:
af:fc:6d:81:13:dc:da:f1:4a:fd:73:7b:3d:c0:5b:
a5:36:83:2b:4b:78:34:fe:97:aa:34:8f:59:f3:23:
41:58:47:2d:68:ca:ab:89:a8:17:46:e9:a2:29:2a:
c6:cb:06:c7:1a:19:00:4b:52:fc:cc:e4:c1:c0:9f:
1d:1b:c9:0a:6d:e1:04:01:18:18:4a:8b:ca:b3:d8:
e9:b8:b5:ac:bc:e6:fb:bb:f6:47:36:6a:4b:b3:96:
10:41:1e:1d:b6:e0:90:de:88:1b:c5:56:19:8f:2c:
18:dd:07:85:b8:07:2b:79:20:85:06:44:e3:0b:5f:
92:b3:3e:8a:bf:65:13:84:e0:56:d1:de:2f:f6:95:
df:e3:70:f7:76:a8:de:11:8f:51:9b:14:ea:29:90:
16:5e:2c:43:d8:4a:72:0e:09:d7:94:bc:f4:4a:6f:
17:e7:09:36:85:e0:48:4b:d1:b2:a3:8a:ee:6c:ef:
75:5a:63:73:80:b8:84:dc:6f:bd:fb:de:0e:56:3f:
fd:bb:fa:f4:b8:1a:65:36:37:6e:b2:21:12:a0:22:
1d:6b:8f:98:1e:44:76:2b:b0:34:7d:a3:d3:32:b3:
b5:77:86:8f:96:2e:98:96:99:b0:0e:77:16:b8:7d:
4c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:F8:CD:B8:24:69:A1:6E:73:89:D5:E5:04:A9:68:68:35:ED:8E:2E
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:ad:1d:60:96:70:e4:36:91:37:ff:59:c2:d4:59:28:b6:5f:
96:f7:ae:03:83:bd:f2:b2:5f:d8:ed:f3:a7:9f:59:53:1f:89:
2b:f5:f6:48:2c:57:ba:89:90:3b:ea:21:53:c6:66:66:59:e0:
9f:6e:08:c3:70:4a:4d:c3:09:27:07:61:33:64:6e:93:a1:7c:
9a:42:ad:b0:60:f8:87:27:44:cb:0d:cd:c2:a9:eb:5f:90:5a:
eb:67:18:e2:99:9d:35:77:d8:5a:46:6b:6a:34:c3:63:8d:a6:
ac:17:59:d6:2b:bb:fe:99:cf:df:ef:88:50:ec:77:a8:55:b8:
99:51:19:9b:c5:f5:54:d2:6c:a0:2b:23:56:d4:f3:c6:ac:4b:
49:81:0f:7f:84:87:e0:29:33:e1:42:61:72:46:92:38:15:ce:
0b:4a:ed:4c:7b:82:f2:16:b9:ef:2b:86:5d:94:b3:49:3e:61:
de:e7:af:ac:14:3d:d5:b1:7e:19:8f:d4:fb:ef:bb:1e:e0:2a:
d2:33:dc:67:83:f5:42:09:db:3c:6c:c8:66:ae:d1:41:6e:ab:
e8:a4:c9:27:22:d4:e1:6a:f6:e3:2f:17:21:ec:5d:7b:70:9b:
22:f3:ba:2d:61:02:49:a8:c8:0b:91:37:b8:ad:ec:04:3b:09:
ff:af:f0:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh/5mpU1x1T9CzMQEvFhodYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMDRkNjI5MzI3NDM5NmY1YThkNjkxNDg1ZDY4NzZhMGEy
MDcxZDkwHhcNMjUwODA2MTUwMTAzWhcNMjUwODA3MTUwMTAzWjAzMTEwLwYDVQQD
EyhmM2Y4Y2RiODI0NjlhMTZlNzM4OWQ1ZTUwNGE5Njg2ODM1ZWQ4ZTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsjHeuznBrR/QmvsrTyv/G2BE9za
8Ur9c3s9wFulNoMrS3g0/peqNI9Z8yNBWEctaMqriagXRumiKSrGywbHGhkAS1L8
zOTBwJ8dG8kKbeEEARgYSovKs9jpuLWsvOb7u/ZHNmpLs5YQQR4dtuCQ3ogbxVYZ
jywY3QeFuAcreSCFBkTjC1+Ssz6Kv2UThOBW0d4v9pXf43D3dqjeEY9RmxTqKZAW
XixD2EpyDgnXlLz0Sm8X5wk2heBIS9Gyo4rubO91WmNzgLiE3G+9+94OVj/9u/r0
uBplNjdusiESoCIda4+YHkR2K7A0faPTMrO1d4aPli6YlpmwDncWuH1MbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPP4zbgkaaFuc4nV5QSpaGg17Y4uMB8GA1UdIwQY
MBaAFCAE1ikydDlvWo1pFIXWh2oKIHHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzIt
NGVmOWNjNzUxNTE3LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzItNGVmOWNjNzUxNTE3
LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbK0dYJZw
5DaRN/9ZwtRZKLZflveuA4O98rJf2O3zp59ZUx+JK/X2SCxXuomQO+ohU8ZmZlng
n24Iw3BKTcMJJwdhM2Ruk6F8mkKtsGD4hydEyw3NwqnrX5Ba62cY4pmdNXfYWkZr
ajTDY42mrBdZ1iu7/pnP3++IUOx3qFW4mVEZm8X1VNJsoCsjVtTzxqxLSYEPf4SH
4Ckz4UJhckaSOBXOC0rtTHuC8ha57yuGXZSzST5h3uevrBQ91bF+GY/U+++7HuAq
0jPcZ4P1QgnbPGzIZq7RQW6r6KTJJyLU4Wr24y8XIexde3CbIvO6LWECSajIC5E3
uK3sBDsJ/6/wEA==
-----END CERTIFICATE-----
Generated at Thu Aug 7 00:40:06 2025 by rpki-client