Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
File: 1Iml3dMALoAJmbXBhn94Z4G68T0.mft (raw, json)
Hash identifier: HIpHtxMTRJaoOznLHRnqBxkMuHn0GEp1WkMwkiDHpm8=
Subject key identifier: C4:F8:89:D3:B4:EC:C1:F5:E8:7B:3E:38:36:0F:1E:80:5C:49:EE:E1
Authority key identifier: D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
Certificate issuer: /CN=d489a5ddd3002e800999b5c1867f786781baf13d
Certificate serial: 01989F3A3E41BA1C16356429A4359A36A502
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
Manifest number: 162E
Signing time: Tue 12 Aug 2025 17:00:50 +0000
Manifest this update: Tue 12 Aug 2025 17:00:50 +0000
Manifest next update: Wed 13 Aug 2025 17:00:50 +0000
Files and hashes: 1: 1Iml3dMALoAJmbXBhn94Z4G68T0.crl (hash: 21EoH/Ip50xYau0Vj0yVrWhBOUsflCnz0pohhNuKxys=)
2: Oic624JnJmz9lkyUCkfkxynrzXU.roa (hash: reuQNdNLE9OYq59c7HheLuUPxQ+GdUmZR0j+FA5WU8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 17:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:3a:3e:41:ba:1c:16:35:64:29:a4:35:9a:36:a5:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d489a5ddd3002e800999b5c1867f786781baf13d
Validity
Not Before: Aug 12 17:00:50 2025 GMT
Not After : Aug 13 17:00:50 2025 GMT
Subject: CN=c4f889d3b4ecc1f5e87b3e38360f1e805c49eee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ce:ca:ad:ed:35:5e:f1:11:25:83:85:41:7b:
32:db:5b:4f:73:84:04:90:76:c6:e2:2e:f5:bf:1b:
f5:6e:cb:c3:03:de:01:de:72:bd:aa:f4:5e:0c:aa:
76:06:77:cc:ec:73:0a:53:3d:5d:f6:ad:84:0d:5d:
86:2e:e5:9d:6a:6d:17:c3:f3:16:6b:4d:f0:0c:ff:
b1:86:b7:df:27:ae:42:0c:5a:db:20:be:03:b0:dd:
c9:5a:5d:a7:45:66:ca:25:e3:1a:f7:3b:6d:03:a2:
0d:2c:a7:a9:8c:ec:47:82:a9:fd:16:8c:33:5c:64:
e4:52:e0:7b:5e:11:b2:ad:9e:70:99:67:13:66:7a:
25:55:48:3a:cf:d9:f6:59:2c:d5:8c:79:b0:4b:69:
78:20:6e:46:dc:3e:1c:b2:8b:74:ba:a9:aa:0e:4e:
f2:3f:af:fd:5e:07:47:d8:fa:83:3f:d5:bd:35:61:
e0:fd:96:e6:d5:72:4d:2e:b2:90:02:55:16:2a:37:
fa:b6:7c:2c:eb:58:2c:66:9b:d3:2a:98:41:8d:a5:
2d:f8:68:31:e4:25:c8:76:03:6d:22:b1:d0:26:90:
b4:ab:cd:92:d7:72:00:0d:ce:e4:88:b1:c6:13:bc:
81:51:29:d6:05:72:c6:04:cc:1a:62:a4:bf:13:64:
8e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:F8:89:D3:B4:EC:C1:F5:E8:7B:3E:38:36:0F:1E:80:5C:49:EE:E1
X509v3 Authority Key Identifier:
keyid:D4:89:A5:DD:D3:00:2E:80:09:99:B5:C1:86:7F:78:67:81:BA:F1:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Iml3dMALoAJmbXBhn94Z4G68T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bfd2d4-6d45-44bb-ae6b-5259eedca07c/1/1Iml3dMALoAJmbXBhn94Z4G68T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:c0:9a:ff:a6:f4:34:bb:d1:6c:a2:b7:47:51:4c:4b:18:59:
4a:84:6c:f8:35:b8:2b:6a:fc:b5:88:71:01:8e:1a:3e:fb:c5:
8a:26:d1:c8:74:34:7a:50:9d:83:7c:87:44:a3:77:16:90:64:
5a:a0:06:db:d5:7b:2f:de:6e:48:94:af:40:ad:ca:30:5e:93:
f8:05:2c:e8:08:05:6f:04:98:75:13:f3:dc:c1:19:c6:07:8a:
ba:14:41:04:4c:f1:df:d8:12:87:ed:d3:28:64:e2:dd:fd:03:
ac:00:3d:a7:c7:15:30:e6:2c:94:ea:42:53:39:c0:55:d3:19:
3a:02:a1:04:47:c2:ad:12:f4:51:c5:ab:66:e5:80:e0:ae:fe:
40:f7:29:0a:8e:55:2c:21:86:22:ba:9a:59:7b:f2:65:1e:0d:
07:15:2c:f9:b7:b4:8f:3c:9d:bd:a5:e4:86:86:5b:4e:e3:d4:
e4:e2:6e:7f:f3:da:4c:9c:f8:05:bf:54:e7:b5:22:83:c0:1c:
45:dd:07:a3:65:94:06:47:93:6c:ab:4f:7e:e3:ba:54:f3:44:
1c:0f:f5:4f:ea:b8:5c:1b:fd:71:2d:75:19:76:8e:18:d2:4b:
d3:4e:52:25:af:0f:41:68:d3:7b:21:a2:db:42:29:e6:71:c6:
7c:61:71:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZifOj5BuhwWNWQppDWaNqUCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ODlhNWRkZDMwMDJlODAwOTk5YjVjMTg2N2Y3ODY3ODFi
YWYxM2QwHhcNMjUwODEyMTcwMDUwWhcNMjUwODEzMTcwMDUwWjAzMTEwLwYDVQQD
EyhjNGY4ODlkM2I0ZWNjMWY1ZTg3YjNlMzgzNjBmMWU4MDVjNDllZWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw87Kre01XvERJYOFQXsy21tPc4QE
kHbG4i71vxv1bsvDA94B3nK9qvReDKp2BnfM7HMKUz1d9q2EDV2GLuWdam0Xw/MW
a03wDP+xhrffJ65CDFrbIL4DsN3JWl2nRWbKJeMa9zttA6INLKepjOxHgqn9Fowz
XGTkUuB7XhGyrZ5wmWcTZnolVUg6z9n2WSzVjHmwS2l4IG5G3D4csot0uqmqDk7y
P6/9XgdH2PqDP9W9NWHg/Zbm1XJNLrKQAlUWKjf6tnws61gsZpvTKphBjaUt+Ggx
5CXIdgNtIrHQJpC0q82S13IADc7kiLHGE7yBUSnWBXLGBMwaYqS/E2SOAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMT4idO07MH16Hs+ODYPHoBcSe7hMB8GA1UdIwQY
MBaAFNSJpd3TAC6ACZm1wYZ/eGeBuvE9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUltbDNkTUFMb0FKbWJYQmhuOTRaNEc2OFQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iZmQyZDQtNmQ0NS00NGJiLWFlNmIt
NTI1OWVlZGNhMDdjLzEvMUltbDNkTUFMb0FKbWJYQmhuOTRaNEc2OFQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iZmQyZDQtNmQ0NS00NGJiLWFlNmItNTI1OWVlZGNhMDdj
LzEvMUltbDNkTUFMb0FKbWJYQmhuOTRaNEc2OFQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd8Ca/6b0
NLvRbKK3R1FMSxhZSoRs+DW4K2r8tYhxAY4aPvvFiibRyHQ0elCdg3yHRKN3FpBk
WqAG29V7L95uSJSvQK3KMF6T+AUs6AgFbwSYdRPz3MEZxgeKuhRBBEzx39gSh+3T
KGTi3f0DrAA9p8cVMOYslOpCUznAVdMZOgKhBEfCrRL0UcWrZuWA4K7+QPcpCo5V
LCGGIrqaWXvyZR4NBxUs+be0jzydvaXkhoZbTuPU5OJuf/PaTJz4Bb9U57Uig8Ac
Rd0Ho2WUBkeTbKtPfuO6VPNEHA/1T+q4XBv9cS11GXaOGNJL005SJa8PQWjTeyGi
20Ip5nHGfGFx6Q==
-----END CERTIFICATE-----
Generated at Wed Aug 13 02:42:22 2025 by rpki-client