Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: q4xErogDPf7kG0jVOcmxpm9+McsZl8cDy7taQXuIG6s=
Subject key identifier: BE:7E:8E:47:84:06:02:A0:AD:BC:2F:1B:F7:2E:6B:B7:D5:8B:28:49
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 01987306B56B49893F5F7AA9637DD52EA65B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 15F1
Signing time: Mon 04 Aug 2025 03:01:16 +0000
Manifest this update: Mon 04 Aug 2025 03:01:16 +0000
Manifest next update: Tue 05 Aug 2025 03:01:16 +0000
Files and hashes: 1: 2ttxDr4pGnjxuFL3h06WTGhjE60.roa (hash: gb8hbvNo/pcY/swamzsbRwiOgi4eH7YRN51AtOhEfsU=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: tyweNc/1610zKtUiEe3B8zToxyeBjCM12VE1ztaQNeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:b5:6b:49:89:3f:5f:7a:a9:63:7d:d5:2e:a6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Aug 4 03:01:16 2025 GMT
Not After : Aug 5 03:01:16 2025 GMT
Subject: CN=be7e8e47840602a0adbc2f1bf72e6bb7d58b2849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f5:09:19:d3:0e:5a:04:e9:51:5b:cc:74:08:
6c:61:b8:6b:fe:97:d5:95:bd:a1:59:28:db:a5:ae:
ae:75:36:71:2b:48:8e:5a:c0:f4:1c:4b:9a:b4:3b:
db:e7:ed:82:13:58:fb:cb:ff:d8:fa:3e:65:a9:34:
9e:c5:41:23:c0:39:31:b7:5c:74:65:ee:37:84:84:
f2:c3:9a:8d:bd:db:08:66:ea:f5:cb:95:3d:48:06:
1c:8f:f9:8d:f3:9b:1e:55:af:af:f0:1a:e6:a2:ff:
dd:59:9e:84:9c:63:d4:5e:ec:92:4d:ea:61:75:bd:
06:b2:b4:1f:45:84:6b:d8:ce:84:35:df:00:36:58:
94:eb:d2:c5:fd:55:34:33:56:0d:33:25:19:ec:d2:
90:fc:50:0f:ac:34:42:a5:cf:c0:72:b5:de:56:c2:
1b:aa:f7:b1:77:0b:19:04:97:0c:4b:df:2e:58:d2:
d1:89:0e:9f:8c:02:87:a8:df:71:92:a6:2c:6c:84:
0f:13:10:71:1c:f7:04:19:8a:1a:bc:02:cf:32:cc:
f8:0f:ed:0e:0c:37:59:5e:13:18:3c:fa:51:2f:a1:
fd:ba:81:d3:a8:81:98:61:40:86:bd:9c:04:75:a8:
bf:be:43:a8:08:19:d3:cf:95:49:54:34:97:b1:34:
cc:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7E:8E:47:84:06:02:A0:AD:BC:2F:1B:F7:2E:6B:B7:D5:8B:28:49
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:67:ba:41:25:cf:66:b7:2d:3f:d8:80:e9:20:74:c3:c9:a7:
93:d6:59:21:41:38:60:56:4e:b3:98:c7:7d:65:c4:0f:fc:89:
d3:fa:e8:8e:e8:15:e2:1d:85:c4:3e:b9:53:4f:b6:e4:fe:2b:
03:ae:93:b5:84:f3:69:59:51:e4:9a:3b:ab:90:47:4b:27:f9:
ed:b8:b1:17:ff:62:fb:fd:b5:00:eb:3e:b3:c7:18:7b:4e:19:
45:1e:1c:96:9d:33:c3:0b:9f:b4:5d:2a:a5:1b:7c:9e:78:44:
fb:ee:11:35:e3:32:64:f9:78:c2:fd:53:a7:7a:66:cf:46:2f:
35:ee:66:ce:01:1a:49:f1:9c:3f:82:38:de:95:8e:60:13:b6:
64:e7:b5:5e:d4:ba:af:05:1b:13:5e:da:f9:00:94:b9:d0:37:
ec:30:1b:76:84:ce:e1:62:f2:2c:1f:b6:04:28:bd:e2:ac:b8:
93:31:1c:e6:90:b4:c1:f1:7a:c4:9d:3b:38:7a:9f:4f:98:38:
f3:ef:96:8c:8c:fb:5b:a5:dc:d7:90:a7:73:d2:44:ef:23:0e:
87:26:e1:74:a2:e7:d3:e9:7d:d4:cf:39:51:c2:c6:98:88:81:
4a:a6:94:52:da:e5:ce:62:62:a2:4c:5d:e3:74:eb:36:60:08:
1a:3f:23:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhzBrVrSYk/X3qpY33VLqZbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhM2ZlMGI5YzYzMGEzM2UxNzFhMGE1Yzc5M2YzNDBiNDM0
NDY5MzIwHhcNMjUwODA0MDMwMTE2WhcNMjUwODA1MDMwMTE2WjAzMTEwLwYDVQQD
EyhiZTdlOGU0Nzg0MDYwMmEwYWRiYzJmMWJmNzJlNmJiN2Q1OGIyODQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/UJGdMOWgTpUVvMdAhsYbhr/pfV
lb2hWSjbpa6udTZxK0iOWsD0HEuatDvb5+2CE1j7y//Y+j5lqTSexUEjwDkxt1x0
Ze43hITyw5qNvdsIZur1y5U9SAYcj/mN85seVa+v8Brmov/dWZ6EnGPUXuySTeph
db0GsrQfRYRr2M6ENd8ANliU69LF/VU0M1YNMyUZ7NKQ/FAPrDRCpc/AcrXeVsIb
qvexdwsZBJcMS98uWNLRiQ6fjAKHqN9xkqYsbIQPExBxHPcEGYoavALPMsz4D+0O
DDdZXhMYPPpRL6H9uoHTqIGYYUCGvZwEdai/vkOoCBnTz5VJVDSXsTTMIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL5+jkeEBgKgrbwvG/cua7fViyhJMB8GA1UdIwQY
MBaAFIo/4LnGMKM+FxoKXHk/NAtDRGkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9mMzlhNDktNTllYS00YzRmLTk4ZmMt
NTNhYWI0MmY0NzZlLzEvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9mMzlhNDktNTllYS00YzRmLTk4ZmMtNTNhYWI0MmY0NzZl
LzEvaWpfZ3VjWXdvejRYR2dwY2VUODBDME5FYVRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEGe6QSXP
ZrctP9iA6SB0w8mnk9ZZIUE4YFZOs5jHfWXED/yJ0/rojugV4h2FxD65U0+25P4r
A66TtYTzaVlR5Jo7q5BHSyf57bixF/9i+/21AOs+s8cYe04ZRR4clp0zwwuftF0q
pRt8nnhE++4RNeMyZPl4wv1Tp3pmz0YvNe5mzgEaSfGcP4I43pWOYBO2ZOe1XtS6
rwUbE17a+QCUudA37DAbdoTO4WLyLB+2BCi94qy4kzEc5pC0wfF6xJ07OHqfT5g4
8++WjIz7W6Xc15Cnc9JE7yMOhybhdKLn0+l91M85UcLGmIiBSqaUUtrlzmJiokxd
43TrNmAIGj8jnA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:13:13 2025 by rpki-client