Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
File: iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft (raw, json)
Hash identifier: CTSKzJ1t8XJORYWVvrrGR/mA9cfKX47liqKMkSiwEdc=
Subject key identifier: 78:A9:B3:00:87:73:E6:D3:AF:37:8D:3B:1A:60:0D:DD:F5:F7:BC:B3
Authority key identifier: 88:A6:2C:F8:10:0E:8C:1B:47:54:43:FD:94:CD:58:D8:EF:2A:33:AE
Certificate issuer: /CN=88a62cf8100e8c1b475443fd94cd58d8ef2a33ae
Certificate serial: 019776AEB81BCB8A28E9DF6A5C11CA74AB1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
Manifest number: 1593
Signing time: Mon 16 Jun 2025 03:00:51 +0000
Manifest this update: Mon 16 Jun 2025 03:00:51 +0000
Manifest next update: Tue 17 Jun 2025 03:00:51 +0000
Files and hashes: 1: iKYs-BAOjBtHVEP9lM1Y2O8qM64.crl (hash: +GGJeSArCOlY1CB+on/FtCClJCUIqaA0MRY4P5ItyhI=)
2: qvYpsZQGhS3eiJYFcpoDInx2DkE.roa (hash: AzKXVpJ7rQhInqcKxYMIE20bjXuo9eJ0x8CLUXTV+A0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:ae:b8:1b:cb:8a:28:e9:df:6a:5c:11:ca:74:ab:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a62cf8100e8c1b475443fd94cd58d8ef2a33ae
Validity
Not Before: Jun 16 03:00:51 2025 GMT
Not After : Jun 17 03:00:51 2025 GMT
Subject: CN=78a9b3008773e6d3af378d3b1a600dddf5f7bcb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dd:d2:bc:4b:4f:90:6e:ff:56:00:01:85:df:
45:92:b5:b6:1c:85:99:64:e8:ba:9b:28:ae:b3:46:
dd:0f:82:3f:49:96:09:f0:28:7c:31:44:79:73:cd:
e4:fc:8e:d2:1d:3a:33:10:4b:ab:38:73:e7:03:7b:
f4:ee:79:55:70:40:61:f8:28:ee:42:43:69:29:29:
eb:c5:76:05:93:f6:8e:90:e1:bd:3c:59:ff:80:0f:
f7:44:28:f2:40:57:82:51:de:af:79:2a:ce:22:50:
00:ee:6b:77:df:fb:5b:1e:6d:33:b5:74:ea:9e:ad:
fb:ed:c6:3a:75:8d:57:35:f7:83:65:8a:d7:7a:38:
48:4b:cc:cf:0e:fe:9e:85:d8:74:2d:3b:51:71:2a:
a1:1c:cc:3a:53:a4:28:77:71:1b:72:01:c4:4d:67:
75:62:cc:8e:b4:90:3e:c6:79:f5:44:36:31:00:7c:
d9:7a:be:17:18:44:5e:f6:98:00:e7:72:ff:5a:7d:
c1:27:bc:9b:f5:c5:46:a3:3a:c5:c4:5d:62:77:4c:
62:52:74:48:de:cf:94:09:f7:10:50:ca:2a:b3:e0:
25:72:84:30:60:51:e0:df:56:ca:75:6c:dd:79:c9:
53:44:b5:15:43:f1:76:d4:49:82:b9:4c:e2:71:38:
0a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A9:B3:00:87:73:E6:D3:AF:37:8D:3B:1A:60:0D:DD:F5:F7:BC:B3
X509v3 Authority Key Identifier:
keyid:88:A6:2C:F8:10:0E:8C:1B:47:54:43:FD:94:CD:58:D8:EF:2A:33:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:1a:40:14:b4:53:54:e8:c9:39:29:81:9f:ba:37:e1:ca:c9:
21:bc:95:c7:67:2d:03:e4:7f:49:3c:33:3e:91:36:b9:ae:1f:
cb:12:f3:b1:be:d0:13:59:f0:66:ca:20:de:55:24:60:fa:6e:
19:52:c1:83:67:eb:34:50:bf:24:3d:e1:3b:cb:20:0a:72:12:
2d:2f:6b:b6:47:10:78:46:a0:eb:14:1f:e8:5d:72:b4:91:e7:
27:e2:4b:96:06:f9:34:6b:d1:80:86:c8:ef:79:6a:40:bc:41:
60:7f:2a:9c:8b:f4:90:3a:49:3e:1b:7b:30:bf:8d:71:50:80:
91:19:b3:0b:23:91:00:8d:ec:f7:1e:d2:4f:8e:07:b3:20:3c:
d6:3a:fe:5b:e0:24:15:a7:49:f8:c5:55:e2:d9:17:88:bb:d1:
9f:34:0b:9c:49:d5:b7:7e:ec:52:f7:24:c4:33:4d:eb:30:c2:
aa:42:aa:9e:41:1c:87:37:21:3c:00:24:dc:de:2c:8c:d9:12:
7d:2d:44:71:fe:fb:93:da:9a:8c:a1:7f:da:57:78:71:f3:ef:
68:a6:f1:12:27:7b:1f:c0:85:e7:57:03:3f:76:e1:fb:88:02:
a3:ca:8d:4c:a6:06:be:9a:05:5e:6d:40:ae:fa:0e:63:7a:4d:
3e:2b:97:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd2rrgby4oo6d9qXBHKdKsdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YTYyY2Y4MTAwZThjMWI0NzU0NDNmZDk0Y2Q1OGQ4ZWYy
YTMzYWUwHhcNMjUwNjE2MDMwMDUxWhcNMjUwNjE3MDMwMDUxWjAzMTEwLwYDVQQD
Eyg3OGE5YjMwMDg3NzNlNmQzYWYzNzhkM2IxYTYwMGRkZGY1ZjdiY2IzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt93SvEtPkG7/VgABhd9FkrW2HIWZ
ZOi6myius0bdD4I/SZYJ8Ch8MUR5c83k/I7SHTozEEurOHPnA3v07nlVcEBh+Cju
QkNpKSnrxXYFk/aOkOG9PFn/gA/3RCjyQFeCUd6veSrOIlAA7mt33/tbHm0ztXTq
nq377cY6dY1XNfeDZYrXejhIS8zPDv6ehdh0LTtRcSqhHMw6U6Qod3EbcgHETWd1
YsyOtJA+xnn1RDYxAHzZer4XGERe9pgA53L/Wn3BJ7yb9cVGozrFxF1id0xiUnRI
3s+UCfcQUMoqs+AlcoQwYFHg31bKdWzdeclTRLUVQ/F21EmCuUzicTgKfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHipswCHc+bTrzeNOxpgDd3197yzMB8GA1UdIwQY
MBaAFIimLPgQDowbR1RD/ZTNWNjvKjOuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUtZcy1CQU9qQnRIVkVQOWxNMVkyTzhxTTY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9lZWYwMzUtMjYyOS00ZTNlLWJlYmMt
MTVhMGRkZGQ3NDljLzEvaUtZcy1CQU9qQnRIVkVQOWxNMVkyTzhxTTY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9lZWYwMzUtMjYyOS00ZTNlLWJlYmMtMTVhMGRkZGQ3NDlj
LzEvaUtZcy1CQU9qQnRIVkVQOWxNMVkyTzhxTTY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtRpAFLRT
VOjJOSmBn7o34crJIbyVx2ctA+R/STwzPpE2ua4fyxLzsb7QE1nwZsog3lUkYPpu
GVLBg2frNFC/JD3hO8sgCnISLS9rtkcQeEag6xQf6F1ytJHnJ+JLlgb5NGvRgIbI
73lqQLxBYH8qnIv0kDpJPht7ML+NcVCAkRmzCyORAI3s9x7ST44HsyA81jr+W+Ak
FadJ+MVV4tkXiLvRnzQLnEnVt37sUvckxDNN6zDCqkKqnkEchzchPAAk3N4sjNkS
fS1Ecf77k9qajKF/2ld4cfPvaKbxEid7H8CF51cDP3bh+4gCo8qNTKYGvpoFXm1A
rvoOY3pNPiuXkA==
-----END CERTIFICATE-----
Generated at Mon Jun 16 07:46:07 2025 by rpki-client