Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
File: IYssahphoXurfAMggKo78kR4tt0.mft (raw, json)
Hash identifier: BNlCZoNOzkYPhw50Uqcrk7ZmQ2BQjWElAkMlJAGQsN0=
Subject key identifier: 07:D4:6B:F9:AD:16:59:67:6A:8F:C8:D6:E3:18:38:74:D2:89:1F:43
Authority key identifier: 21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
Certificate issuer: /CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Certificate serial: 01988B0EF59599F6B1614A71D09C8F016CA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
Manifest number: 0CDD
Signing time: Fri 08 Aug 2025 19:01:10 +0000
Manifest this update: Fri 08 Aug 2025 19:01:10 +0000
Manifest next update: Sat 09 Aug 2025 19:01:10 +0000
Files and hashes: 1: IYssahphoXurfAMggKo78kR4tt0.crl (hash: 19WRHgAZ3BfOOhOJygBlai3J9IM0jNhHsRa03qoQeRo=)
2: wnACGaMKOrsg5i1-6PAAx8VKQ0Y.roa (hash: kxRyBHTXArEsk0qrBdKwIl2FB5x6O/p6TWut1bU4JRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0e:f5:95:99:f6:b1:61:4a:71:d0:9c:8f:01:6c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218b2c6a1a61a17bab7c032080aa3bf24478b6dd
Validity
Not Before: Aug 8 19:01:10 2025 GMT
Not After : Aug 9 19:01:10 2025 GMT
Subject: CN=07d46bf9ad1659676a8fc8d6e3183874d2891f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b8:ed:d6:50:85:79:f0:79:9b:11:44:cd:89:
89:2b:43:24:11:21:3d:27:46:59:ff:51:e3:01:85:
12:a3:f6:5a:f5:b5:7e:ec:f8:ef:c8:7b:dc:54:19:
2a:74:c5:ef:98:e7:76:d3:2b:da:77:4e:bc:a4:b2:
bf:53:ac:79:fd:96:34:86:90:b7:21:c8:91:bb:aa:
aa:43:64:e7:7a:b3:28:d7:8d:78:cc:10:ae:32:c7:
89:db:5f:e5:9f:7a:95:62:8b:d0:f3:f9:1f:bc:11:
5a:f2:3d:d7:11:57:0e:4c:3a:8e:18:dc:4b:a5:50:
c9:71:c6:33:2a:14:3a:b2:c7:f3:0e:2c:7a:3d:5d:
6e:96:8d:72:8a:60:bc:08:8f:e2:65:72:61:50:5e:
3d:e0:8a:bf:de:63:7d:bd:3a:18:13:bd:6a:1e:fb:
12:92:2b:43:9d:00:03:cd:2a:01:44:5b:cd:77:03:
54:55:3e:e3:74:60:ee:f6:47:71:9a:6d:ff:93:d1:
7f:35:93:ba:43:8c:54:e8:52:3d:c5:22:62:47:01:
29:38:c6:75:fa:ad:2f:48:b1:ac:f2:45:b1:8d:3b:
2f:5b:02:57:ca:a5:81:da:cb:39:41:66:69:07:66:
cf:2e:38:38:67:19:02:64:24:37:8f:ff:c5:95:af:
76:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D4:6B:F9:AD:16:59:67:6A:8F:C8:D6:E3:18:38:74:D2:89:1F:43
X509v3 Authority Key Identifier:
keyid:21:8B:2C:6A:1A:61:A1:7B:AB:7C:03:20:80:AA:3B:F2:44:78:B6:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYssahphoXurfAMggKo78kR4tt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/849140-c853-48cd-9a84-b993168bc593/1/IYssahphoXurfAMggKo78kR4tt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:01:9f:2e:86:fa:e5:38:23:6a:14:ba:e6:e3:c5:d6:e9:6e:
c3:f7:07:e8:b0:fd:cc:64:00:2c:e5:2e:6f:c2:e2:6a:a4:de:
7b:82:db:8e:ff:fd:f0:af:65:1e:9d:b9:ac:44:9f:ef:2e:d6:
dc:91:1b:68:92:46:84:46:0e:3a:58:2b:72:7c:b3:aa:a2:d6:
a4:81:a4:42:ac:34:73:fd:d7:2f:9a:53:b3:97:7d:fc:93:5c:
f5:ba:7a:38:98:54:cc:47:70:27:43:7f:70:37:9f:75:68:55:
5c:64:66:0a:3d:fa:06:49:2f:be:f2:06:d2:5e:32:3d:9b:15:
8f:7d:3c:33:a4:ce:4f:a0:9f:c1:c3:32:6d:5a:32:d6:c5:9c:
dd:6c:fb:4f:51:4e:6e:e7:2e:b2:87:48:c2:a5:79:a2:dd:b0:
73:9b:66:a7:ae:b9:54:97:25:fb:63:84:c1:a6:15:7f:d9:a6:
85:f1:eb:32:e5:90:bb:02:a6:af:da:57:5b:31:1e:3e:60:4d:
eb:ce:ad:dd:2b:ff:b4:15:b2:4b:69:fa:87:08:cc:97:cf:ca:
8a:9a:ec:81:d2:14:9d:30:26:5b:d2:8b:80:ca:df:e7:69:54:
86:7c:02:aa:87:33:db:06:f1:20:42:d9:5c:2e:4c:d2:b2:6b:
af:0e:e7:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLDvWVmfaxYUpx0JyPAWygMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOGIyYzZhMWE2MWExN2JhYjdjMDMyMDgwYWEzYmYyNDQ3
OGI2ZGQwHhcNMjUwODA4MTkwMTEwWhcNMjUwODA5MTkwMTEwWjAzMTEwLwYDVQQD
EygwN2Q0NmJmOWFkMTY1OTY3NmE4ZmM4ZDZlMzE4Mzg3NGQyODkxZjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbjt1lCFefB5mxFEzYmJK0MkESE9
J0ZZ/1HjAYUSo/Za9bV+7PjvyHvcVBkqdMXvmOd20yvad068pLK/U6x5/ZY0hpC3
IciRu6qqQ2TnerMo1414zBCuMseJ21/ln3qVYovQ8/kfvBFa8j3XEVcOTDqOGNxL
pVDJccYzKhQ6ssfzDix6PV1ulo1yimC8CI/iZXJhUF494Iq/3mN9vToYE71qHvsS
kitDnQADzSoBRFvNdwNUVT7jdGDu9kdxmm3/k9F/NZO6Q4xU6FI9xSJiRwEpOMZ1
+q0vSLGs8kWxjTsvWwJXyqWB2ss5QWZpB2bPLjg4ZxkCZCQ3j//Fla92/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAfUa/mtFllnao/I1uMYOHTSiR9DMB8GA1UdIwQY
MBaAFCGLLGoaYaF7q3wDIICqO/JEeLbdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVlzc2FocGhvWHVyZkFNZ2dLbzc4a1I0dHQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS84NDkxNDAtYzg1My00OGNkLTlhODQt
Yjk5MzE2OGJjNTkzLzEvSVlzc2FocGhvWHVyZkFNZ2dLbzc4a1I0dHQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS84NDkxNDAtYzg1My00OGNkLTlhODQtYjk5MzE2OGJjNTkz
LzEvSVlzc2FocGhvWHVyZkFNZ2dLbzc4a1I0dHQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbwGfLob6
5TgjahS65uPF1uluw/cH6LD9zGQALOUub8LiaqTee4Lbjv/98K9lHp25rESf7y7W
3JEbaJJGhEYOOlgrcnyzqqLWpIGkQqw0c/3XL5pTs5d9/JNc9bp6OJhUzEdwJ0N/
cDefdWhVXGRmCj36BkkvvvIG0l4yPZsVj308M6TOT6CfwcMybVoy1sWc3Wz7T1FO
bucusodIwqV5ot2wc5tmp665VJcl+2OEwaYVf9mmhfHrMuWQuwKmr9pXWzEePmBN
686t3Sv/tBWyS2n6hwjMl8/KiprsgdIUnTAmW9KLgMrf52lUhnwCqocz2wbxIELZ
XC5M0rJrrw7nLQ==
-----END CERTIFICATE-----
Generated at Sat Aug 9 05:37:50 2025 by rpki-client