Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
File: iaWq49f3LuzoOWtBSSIIrdUhhDU.mft (raw, json)
Hash identifier: xahp+5T5dA3oPsnsvtFRFbZw4KmLeB4d4Gboa3ZXyhQ=
Subject key identifier: 37:9C:5F:4D:B3:9C:0D:57:DE:DD:0A:0C:7E:B4:6F:3D:1A:0F:D4:04
Authority key identifier: 89:A5:AA:E3:D7:F7:2E:EC:E8:39:6B:41:49:22:08:AD:D5:21:84:35
Certificate issuer: /CN=89a5aae3d7f72eece8396b41492208add5218435
Certificate serial: 019874BE68124DD5142B4E7E0B877F7AE55D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaWq49f3LuzoOWtBSSIIrdUhhDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
Manifest number: 1508
Signing time: Mon 04 Aug 2025 11:01:32 +0000
Manifest this update: Mon 04 Aug 2025 11:01:32 +0000
Manifest next update: Tue 05 Aug 2025 11:01:32 +0000
Files and hashes: 1: iaWq49f3LuzoOWtBSSIIrdUhhDU.crl (hash: y8ZbKClCL952Mlc8/pa81DGcmWKNUclCp/t8JlsX1bI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iaWq49f3LuzoOWtBSSIIrdUhhDU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:be:68:12:4d:d5:14:2b:4e:7e:0b:87:7f:7a:e5:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a5aae3d7f72eece8396b41492208add5218435
Validity
Not Before: Aug 4 11:01:32 2025 GMT
Not After : Aug 5 11:01:32 2025 GMT
Subject: CN=379c5f4db39c0d57dedd0a0c7eb46f3d1a0fd404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1c:ef:36:d7:d3:b3:48:8c:c2:d4:e7:5e:bb:
5c:03:bc:9c:b2:43:ca:ca:0e:eb:07:61:ea:6b:83:
7d:7a:53:a4:e0:b8:2c:56:06:e0:6d:86:e6:f5:d7:
0e:3a:5c:cb:4c:6a:3c:d2:82:cf:e5:14:c2:ba:a9:
d0:a4:be:34:a1:88:3d:80:3e:21:c4:fc:2c:c6:b8:
c9:e6:c4:4b:cc:eb:fe:e9:41:65:05:7e:5d:65:15:
ed:30:6e:20:1d:30:e0:89:73:6b:d0:83:5d:3b:70:
91:27:df:e9:88:50:5d:7f:a0:05:7a:b2:a0:86:43:
82:1f:c1:c7:87:c0:d9:64:97:aa:07:19:7d:0b:26:
00:0b:5f:db:4c:7c:d3:3a:b5:2b:51:4e:a5:99:eb:
6c:48:5f:68:d6:42:f0:a4:ad:98:7a:bd:81:9f:7a:
85:7c:6e:40:50:6c:d2:92:65:93:03:36:ac:f0:ee:
a9:eb:52:e9:f8:3b:26:ad:18:07:2d:1e:67:2f:6e:
c8:1a:c0:25:dd:98:95:b7:af:c3:fa:b0:4f:8f:0d:
77:8d:62:77:e9:29:31:ef:3c:b2:f7:0c:62:fb:d9:
6b:dc:94:71:05:0a:4b:9b:6c:af:3a:58:c6:84:da:
29:ad:5b:01:23:fb:28:d0:7b:f7:a0:69:f3:e4:62:
bf:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:9C:5F:4D:B3:9C:0D:57:DE:DD:0A:0C:7E:B4:6F:3D:1A:0F:D4:04
X509v3 Authority Key Identifier:
keyid:89:A5:AA:E3:D7:F7:2E:EC:E8:39:6B:41:49:22:08:AD:D5:21:84:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaWq49f3LuzoOWtBSSIIrdUhhDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:ce:36:e3:cf:09:0e:cb:a0:e1:73:be:e7:20:bf:dc:b7:38:
53:72:67:63:76:86:a6:34:10:8f:5a:29:87:77:16:e9:3c:6f:
4d:b3:88:f5:84:f9:c6:9f:f0:88:af:2b:cd:05:0d:01:45:e6:
e0:8e:1f:46:78:f5:c4:1e:78:14:a2:76:42:56:d7:ca:86:13:
75:81:42:33:f1:e1:f2:7d:cc:34:be:42:7f:53:22:f7:79:ed:
e0:bc:80:63:28:53:f9:72:a6:d3:3e:f1:5b:5a:79:90:df:2a:
06:2a:6f:7d:bc:aa:25:e8:32:95:ed:c8:9c:70:6d:8b:13:b6:
1f:5b:62:fc:34:a3:75:ea:1a:61:f4:55:6c:fc:4d:e6:8e:c5:
0f:8b:9b:1e:15:47:c7:6d:00:e8:27:dd:86:f9:b8:72:17:35:
29:98:34:73:f1:b6:3c:9b:b6:a9:9f:49:95:a2:fc:fe:61:0a:
34:86:8c:52:64:1e:d9:9e:46:48:bc:d3:b5:37:f6:c1:72:20:
98:6c:1e:20:67:25:60:53:72:6b:40:61:54:39:9b:7d:c6:8a:
d7:76:ff:d8:a2:16:94:65:0b:bc:8c:a1:dd:9a:22:ab:36:1f:
87:78:a1:29:7d:4b:3b:92:e2:c7:6f:41:68:f1:b9:8e:2e:e7:
a7:e8:f8:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0vmgSTdUUK05+C4d/euVdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YTVhYWUzZDdmNzJlZWNlODM5NmI0MTQ5MjIwOGFkZDUy
MTg0MzUwHhcNMjUwODA0MTEwMTMyWhcNMjUwODA1MTEwMTMyWjAzMTEwLwYDVQQD
EygzNzljNWY0ZGIzOWMwZDU3ZGVkZDBhMGM3ZWI0NmYzZDFhMGZkNDA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRzvNtfTs0iMwtTnXrtcA7ycskPK
yg7rB2Hqa4N9elOk4LgsVgbgbYbm9dcOOlzLTGo80oLP5RTCuqnQpL40oYg9gD4h
xPwsxrjJ5sRLzOv+6UFlBX5dZRXtMG4gHTDgiXNr0INdO3CRJ9/piFBdf6AFerKg
hkOCH8HHh8DZZJeqBxl9CyYAC1/bTHzTOrUrUU6lmetsSF9o1kLwpK2Yer2Bn3qF
fG5AUGzSkmWTAzas8O6p61Lp+DsmrRgHLR5nL27IGsAl3ZiVt6/D+rBPjw13jWJ3
6Skx7zyy9wxi+9lr3JRxBQpLm2yvOljGhNoprVsBI/so0Hv3oGnz5GK/1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDecX02znA1X3t0KDH60bz0aD9QEMB8GA1UdIwQY
MBaAFImlquPX9y7s6DlrQUkiCK3VIYQ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWFXcTQ5ZjNMdXpvT1d0QlNTSUlyZFVoaERVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy85MTQ1Y2ItMDJiZC00N2U2LWIwNGIt
MDg3MTE1MmExYWEzLzEvaWFXcTQ5ZjNMdXpvT1d0QlNTSUlyZFVoaERVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy85MTQ1Y2ItMDJiZC00N2U2LWIwNGItMDg3MTE1MmExYWEz
LzEvaWFXcTQ5ZjNMdXpvT1d0QlNTSUlyZFVoaERVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd842488J
Dsug4XO+5yC/3Lc4U3JnY3aGpjQQj1oph3cW6TxvTbOI9YT5xp/wiK8rzQUNAUXm
4I4fRnj1xB54FKJ2QlbXyoYTdYFCM/Hh8n3MNL5Cf1Mi93nt4LyAYyhT+XKm0z7x
W1p5kN8qBipvfbyqJegyle3InHBtixO2H1ti/DSjdeoaYfRVbPxN5o7FD4ubHhVH
x20A6Cfdhvm4chc1KZg0c/G2PJu2qZ9JlaL8/mEKNIaMUmQe2Z5GSLzTtTf2wXIg
mGweIGclYFNya0BhVDmbfcaK13b/2KIWlGULvIyh3ZoiqzYfh3ihKX1LO5Lix29B
aPG5ji7np+j4UQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 18:36:25 2025 by rpki-client