Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
File: IKpgywAkMyottomT8zVxWK9gyN4.mft (raw, json)
Hash identifier: lLqCdqnoQbHGpqaFaarc0MKGrHGc0fp5HceoUNEpmFE=
Subject key identifier: 9C:D9:C2:C3:FC:46:C5:47:D2:15:8D:68:78:20:5F:D1:18:14:42:86
Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de
Certificate serial: 0198801D0CAD1DD32EB4BF09072988DBE0CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
Manifest number: 164F
Signing time: Wed 06 Aug 2025 16:00:44 +0000
Manifest this update: Wed 06 Aug 2025 16:00:44 +0000
Manifest next update: Thu 07 Aug 2025 16:00:44 +0000
Files and hashes: 1: 5lfSf59AY-hC6ZBpQqdqsyBgfw4.roa (hash: hg0a1WqZnkeotSAobKNfSLW7zXmEvmKKXZqeOoYZdnY=)
2: IKpgywAkMyottomT8zVxWK9gyN4.crl (hash: wVhgSfSY4t53AtgPjJvKxjKl7o82ook0FBKL7htwgVk=)
3: jNg6vqzUy1VgyEygCa4DvoqjfIY.roa (hash: npuJNuYtC10xnW9UN6NXfDz60ESb4bhdw7EsN6BY2Z8=)
4: ttxltNG2zQjIJW6GFa8ByUupTIM.roa (hash: X+Rp7cCbU+AQt/6HVOu55hwFlooIOfWp0xOq7PMcuDs=)
5: v7n-0r9KgIhGKTchu2jwbHB0z74.roa (hash: Uqi7ReaJs7BBVFTKxxZ3ijn7JitQR2P+yiINISqSbUc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 16:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:1d:0c:ad:1d:d3:2e:b4:bf:09:07:29:88:db:e0:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de
Validity
Not Before: Aug 6 16:00:44 2025 GMT
Not After : Aug 7 16:00:44 2025 GMT
Subject: CN=9cd9c2c3fc46c547d2158d6878205fd118144286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:86:84:fe:ad:ff:6b:dc:6b:da:58:4a:9f:55:
f8:5d:63:84:f0:1a:59:66:f7:21:37:36:a7:96:fe:
6b:4b:c0:a1:d9:2b:9f:b8:d7:99:f5:6d:cf:55:bf:
28:ed:7b:db:35:ab:e1:e3:c8:11:df:f6:65:09:0c:
60:e5:96:46:b8:27:49:19:05:23:e2:67:cf:b0:90:
e7:a9:dd:03:ff:f4:85:89:fd:e6:af:94:8a:0f:10:
1c:83:23:78:82:31:fb:6c:f5:d1:09:bd:16:ce:d4:
83:d9:60:95:f3:b1:bf:06:10:48:a6:74:9d:44:78:
63:de:37:53:63:15:72:99:1e:6b:32:5c:7f:57:c8:
ab:e1:1c:a6:1b:21:9a:c6:62:74:5b:93:5c:d9:cc:
c0:9a:39:66:fb:99:e0:66:ed:a5:19:20:15:5b:9a:
e6:ad:9c:73:42:34:2a:d4:9d:80:99:6f:69:9d:2e:
22:4a:2d:de:bb:cb:a8:69:6f:49:62:02:c8:e3:52:
81:18:d6:5a:5a:30:9c:5d:4e:19:a2:a8:1d:95:d6:
1e:cc:a9:48:97:37:82:b3:c8:45:4e:65:7c:fe:6a:
e3:12:8d:8a:ee:ba:2d:d3:b3:fc:9a:7b:1f:e7:64:
1e:af:4c:b7:bb:a4:8c:77:eb:72:19:57:f6:b8:12:
8a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:D9:C2:C3:FC:46:C5:47:D2:15:8D:68:78:20:5F:D1:18:14:42:86
X509v3 Authority Key Identifier:
keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:30:f8:e9:b8:f9:b5:7b:de:a0:47:f7:eb:f0:03:41:54:e8:
a9:3e:9f:68:6e:be:62:c2:cd:18:a9:e0:42:6b:a0:dd:35:b6:
29:d8:dd:0b:09:2e:86:2b:38:e3:e4:97:83:be:e5:6a:9e:66:
45:d4:1b:e7:30:99:be:3c:67:96:1c:3b:16:eb:28:1d:69:74:
11:f3:83:88:66:5a:aa:29:9f:9f:35:f7:f3:43:49:0f:16:2f:
62:fb:46:ed:b5:10:8b:62:46:11:b6:33:93:ac:5b:75:c7:fe:
a2:7c:c3:aa:93:97:13:02:fd:b1:1f:43:41:c0:29:3b:4f:30:
b4:c5:fa:c1:d5:a3:2f:27:21:c9:f8:b3:d9:3a:5d:0d:e2:01:
d0:36:62:75:ab:18:f4:3e:f5:1a:82:79:5e:4f:68:d6:c3:82:
63:1b:52:9f:4a:ef:45:56:e7:66:86:92:3c:ac:31:1c:f5:28:
d6:4c:e9:09:74:aa:fc:39:18:a3:7b:48:87:e3:be:44:21:90:
28:1b:ba:2d:43:76:b5:25:81:cd:27:40:fe:ac:05:f7:c3:b4:
f6:7b:9c:f2:9b:3a:dd:23:63:0f:f2:88:5d:9b:62:3e:76:75:
a6:5c:5b:56:21:57:55:c9:bc:ed:5e:09:a1:03:ed:77:dd:cc:
e2:07:71:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAHQytHdMutL8JBymI2+DPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYWE2MGNiMDAyNDMzMmEyZGI2ODk5M2YzMzU3MTU4YWY2
MGM4ZGUwHhcNMjUwODA2MTYwMDQ0WhcNMjUwODA3MTYwMDQ0WjAzMTEwLwYDVQQD
Eyg5Y2Q5YzJjM2ZjNDZjNTQ3ZDIxNThkNjg3ODIwNWZkMTE4MTQ0Mjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsoaE/q3/a9xr2lhKn1X4XWOE8BpZ
ZvchNzanlv5rS8Ch2SufuNeZ9W3PVb8o7XvbNavh48gR3/ZlCQxg5ZZGuCdJGQUj
4mfPsJDnqd0D//SFif3mr5SKDxAcgyN4gjH7bPXRCb0WztSD2WCV87G/BhBIpnSd
RHhj3jdTYxVymR5rMlx/V8ir4RymGyGaxmJ0W5Nc2czAmjlm+5ngZu2lGSAVW5rm
rZxzQjQq1J2AmW9pnS4iSi3eu8uoaW9JYgLI41KBGNZaWjCcXU4ZoqgdldYezKlI
lzeCs8hFTmV8/mrjEo2K7rot07P8mnsf52Qer0y3u6SMd+tyGVf2uBKKEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJzZwsP8RsVH0hWNaHggX9EYFEKGMB8GA1UdIwQY
MBaAFCCqYMsAJDMqLbaJk/M1cVivYMjeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYt
NzNmN2QxMTBiODJhLzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYtNzNmN2QxMTBiODJh
LzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtjD46bj5
tXveoEf36/ADQVToqT6faG6+YsLNGKngQmug3TW2KdjdCwkuhis44+SXg77lap5m
RdQb5zCZvjxnlhw7FusoHWl0EfODiGZaqimfnzX380NJDxYvYvtG7bUQi2JGEbYz
k6xbdcf+onzDqpOXEwL9sR9DQcApO08wtMX6wdWjLychyfiz2TpdDeIB0DZidasY
9D71GoJ5Xk9o1sOCYxtSn0rvRVbnZoaSPKwxHPUo1kzpCXSq/DkYo3tIh+O+RCGQ
KBu6LUN2tSWBzSdA/qwF98O09nuc8ps63SNjD/KIXZtiPnZ1plxbViFXVcm87V4J
oQPtd93M4gdxmA==
-----END CERTIFICATE-----
Generated at Thu Aug 7 02:06:52 2025 by rpki-client