Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
File: iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft (raw, json)
Hash identifier: FlkHs3NnpNGNlLCg2Pot/2iF9pf7uhapcwJEk8jn2R8=
Subject key identifier: B5:4D:17:B6:EC:92:79:F7:66:77:0B:75:07:88:08:FB:95:0E:B3:18
Authority key identifier: 88:A6:2C:F8:10:0E:8C:1B:47:54:43:FD:94:CD:58:D8:EF:2A:33:AE
Certificate issuer: /CN=88a62cf8100e8c1b475443fd94cd58d8ef2a33ae
Certificate serial: 0198816769CD80D36A19F02F8FE923C04687
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
Manifest number: 161D
Signing time: Wed 06 Aug 2025 22:01:34 +0000
Manifest this update: Wed 06 Aug 2025 22:01:34 +0000
Manifest next update: Thu 07 Aug 2025 22:01:34 +0000
Files and hashes: 1: iKYs-BAOjBtHVEP9lM1Y2O8qM64.crl (hash: VEnGfLHVPZvtbOB0fVuZNq+PcZOtc22VnxnrcRYHTWI=)
2: qvYpsZQGhS3eiJYFcpoDInx2DkE.roa (hash: AzKXVpJ7rQhInqcKxYMIE20bjXuo9eJ0x8CLUXTV+A0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:67:69:cd:80:d3:6a:19:f0:2f:8f:e9:23:c0:46:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a62cf8100e8c1b475443fd94cd58d8ef2a33ae
Validity
Not Before: Aug 6 22:01:34 2025 GMT
Not After : Aug 7 22:01:34 2025 GMT
Subject: CN=b54d17b6ec9279f766770b75078808fb950eb318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:90:f9:4d:b1:52:23:9f:95:e2:a8:13:1c:0b:
02:81:cb:19:db:e8:b7:a7:d2:89:61:54:26:20:62:
ee:23:01:79:7b:c9:d0:2e:ff:8d:19:d8:e7:c6:38:
0c:c2:99:10:8f:f4:18:2c:0e:42:b8:84:99:3f:15:
23:6d:e7:95:d7:74:a9:47:3d:7b:2d:4e:c8:22:c2:
ee:3f:5b:ab:36:74:b5:b7:e5:06:88:30:39:e9:8e:
75:01:18:e5:81:d6:c0:83:d9:1d:26:c9:22:2a:0a:
f5:0f:cc:0c:eb:cd:5f:be:66:a1:19:8d:37:5e:35:
ab:85:58:19:4e:b4:69:44:91:0c:dd:86:bd:8d:d0:
b0:c0:31:b2:5c:a6:a8:92:c3:2c:ab:5b:c5:82:5c:
2c:d9:c1:b5:c5:15:d4:d3:1e:18:b4:b5:56:a3:a4:
cc:b1:3e:4b:c0:f4:c8:67:eb:98:3b:ed:69:57:40:
fd:23:0d:b1:21:3d:5b:03:bd:17:ff:6a:fa:f6:2c:
09:0b:1b:b2:bf:db:aa:3c:16:09:a5:c9:e7:01:7d:
c1:ef:ef:b9:9d:94:e8:04:72:f7:bc:9e:82:2f:c4:
e9:c5:11:86:e5:b8:aa:ae:c3:0f:d3:20:32:13:a4:
db:e3:51:43:cc:e8:b0:cc:3b:69:24:fb:d2:7b:5f:
a9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4D:17:B6:EC:92:79:F7:66:77:0B:75:07:88:08:FB:95:0E:B3:18
X509v3 Authority Key Identifier:
keyid:88:A6:2C:F8:10:0E:8C:1B:47:54:43:FD:94:CD:58:D8:EF:2A:33:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKYs-BAOjBtHVEP9lM1Y2O8qM64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/eef035-2629-4e3e-bebc-15a0dddd749c/1/iKYs-BAOjBtHVEP9lM1Y2O8qM64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:4f:de:4e:25:1d:41:ec:0d:2c:63:61:94:a8:01:13:0a:9e:
10:b6:0d:9c:4e:d5:38:42:41:e0:b8:90:c0:fa:40:a1:47:c2:
b4:22:b2:56:bf:26:60:71:ec:63:10:86:fa:1b:64:cc:cf:a4:
99:c2:91:15:a0:a7:cf:36:ce:19:6c:ac:76:82:57:2f:70:40:
c2:f6:a2:22:23:58:4d:95:d8:65:67:20:d1:b7:66:13:2f:0d:
89:60:5d:3e:d5:ef:44:1a:5a:23:10:c3:4c:ac:88:d3:b2:b4:
a6:ba:11:50:fb:48:2a:02:93:f5:ab:a3:ef:75:4f:a7:e8:41:
0d:8e:6d:b6:9d:d3:eb:f4:8d:50:3f:44:72:fd:26:8b:7a:53:
38:76:04:bf:05:a5:56:b6:8e:ed:f7:11:e0:37:5a:d6:e7:25:
9d:34:97:e0:20:a8:51:54:82:49:06:e7:12:d5:ca:94:2a:69:
d6:f9:c2:d7:1e:36:4f:29:30:7b:a2:be:44:07:06:a3:b7:11:
81:fd:46:20:24:2e:d1:a9:b3:ef:f8:51:40:23:f4:aa:0f:47:
90:6a:ea:45:98:e7:4f:fc:82:75:b5:9f:7b:86:24:bf:63:23:
99:52:3e:c2:8c:85:51:60:a3:95:39:f7:1c:b0:b1:5d:b9:46:
c8:59:11:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiBZ2nNgNNqGfAvj+kjwEaHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YTYyY2Y4MTAwZThjMWI0NzU0NDNmZDk0Y2Q1OGQ4ZWYy
YTMzYWUwHhcNMjUwODA2MjIwMTM0WhcNMjUwODA3MjIwMTM0WjAzMTEwLwYDVQQD
EyhiNTRkMTdiNmVjOTI3OWY3NjY3NzBiNzUwNzg4MDhmYjk1MGViMzE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5D5TbFSI5+V4qgTHAsCgcsZ2+i3
p9KJYVQmIGLuIwF5e8nQLv+NGdjnxjgMwpkQj/QYLA5CuISZPxUjbeeV13SpRz17
LU7IIsLuP1urNnS1t+UGiDA56Y51ARjlgdbAg9kdJskiKgr1D8wM681fvmahGY03
XjWrhVgZTrRpRJEM3Ya9jdCwwDGyXKaoksMsq1vFglws2cG1xRXU0x4YtLVWo6TM
sT5LwPTIZ+uYO+1pV0D9Iw2xIT1bA70X/2r69iwJCxuyv9uqPBYJpcnnAX3B7++5
nZToBHL3vJ6CL8TpxRGG5biqrsMP0yAyE6Tb41FDzOiwzDtpJPvSe1+pFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLVNF7bsknn3ZncLdQeICPuVDrMYMB8GA1UdIwQY
MBaAFIimLPgQDowbR1RD/ZTNWNjvKjOuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUtZcy1CQU9qQnRIVkVQOWxNMVkyTzhxTTY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9lZWYwMzUtMjYyOS00ZTNlLWJlYmMt
MTVhMGRkZGQ3NDljLzEvaUtZcy1CQU9qQnRIVkVQOWxNMVkyTzhxTTY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9lZWYwMzUtMjYyOS00ZTNlLWJlYmMtMTVhMGRkZGQ3NDlj
LzEvaUtZcy1CQU9qQnRIVkVQOWxNMVkyTzhxTTY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOE/eTiUd
QewNLGNhlKgBEwqeELYNnE7VOEJB4LiQwPpAoUfCtCKyVr8mYHHsYxCG+htkzM+k
mcKRFaCnzzbOGWysdoJXL3BAwvaiIiNYTZXYZWcg0bdmEy8NiWBdPtXvRBpaIxDD
TKyI07K0proRUPtIKgKT9auj73VPp+hBDY5ttp3T6/SNUD9Ecv0mi3pTOHYEvwWl
VraO7fcR4Dda1uclnTSX4CCoUVSCSQbnEtXKlCpp1vnC1x42Tykwe6K+RAcGo7cR
gf1GICQu0amz7/hRQCP0qg9HkGrqRZjnT/yCdbWfe4Ykv2MjmVI+woyFUWCjlTn3
HLCxXblGyFkRIg==
-----END CERTIFICATE-----
Generated at Thu Aug 7 04:04:31 2025 by rpki-client