Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
File: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft (raw, json)
Hash identifier: So2re+dLu5aPN+9nxP/AJ3kjIhoNb4NlxqVnC7QWF9Y=
Subject key identifier: A1:B7:FF:EC:F2:83:5F:97:56:D7:0F:B4:34:12:03:08:9A:60:F1:26
Authority key identifier: 21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
Certificate issuer: /CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Certificate serial: 019779B0263881C40A64AB66A3051ABD4BA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
Manifest number: 1598
Signing time: Mon 16 Jun 2025 17:01:16 +0000
Manifest this update: Mon 16 Jun 2025 17:01:16 +0000
Manifest next update: Tue 17 Jun 2025 17:01:16 +0000
Files and hashes: 1: Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl (hash: bTauHvU3QFQSgnvO0djh1yFRjDlMgZZP6Snl8rmLIE0=)
2: ZUnY6DcgMFOkn5YPuY63h16XVew.roa (hash: j75VTgwm6ax4o8jG9UYWYEtlaoF5sYfNI7iKEcRNxJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:b0:26:38:81:c4:0a:64:ab:66:a3:05:1a:bd:4b:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa28de21bc91f39dbf2d012fd552d22d0f5aaa
Validity
Not Before: Jun 16 17:01:16 2025 GMT
Not After : Jun 17 17:01:16 2025 GMT
Subject: CN=a1b7ffecf2835f9756d70fb4341203089a60f126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2f:8b:45:29:c1:68:30:ba:2a:d8:54:c6:7d:
6a:6e:56:79:5f:8a:ae:3a:13:71:e2:e3:91:71:e4:
26:7a:88:a2:11:8f:83:8e:64:13:6b:37:4e:40:37:
c8:07:91:f4:b6:92:79:7e:9a:ce:6c:e5:4b:32:65:
74:4d:a7:56:fc:cc:39:ff:86:f5:07:ea:a4:f6:0b:
c1:8e:d8:96:d0:0c:bd:83:5e:1b:45:b2:71:66:7f:
39:bd:d6:63:3f:83:1c:b5:58:46:fb:54:b4:06:56:
71:1e:0b:7d:e8:55:ea:63:1f:f3:4d:38:4e:d3:ae:
5c:d8:b7:04:3e:21:21:e4:84:18:bf:c0:1e:a9:24:
0e:fa:d2:6c:5e:37:b3:a9:89:20:33:07:13:8c:3e:
05:1a:3b:47:33:72:aa:ba:17:cc:7a:f0:ba:8b:72:
89:25:c0:e4:46:e9:5b:be:cb:12:5d:22:9f:58:cd:
5e:5b:0f:39:c5:ac:c4:3c:0d:43:45:b2:9a:b9:c3:
1d:7e:e2:4d:32:a8:90:c1:ee:11:b4:5c:81:bf:b2:
46:dc:a9:d3:f5:f4:78:f6:91:fe:f6:f9:fe:86:92:
6d:26:23:ee:85:45:33:86:6f:06:77:4a:6c:b9:9d:
0c:03:22:49:cd:ec:6e:4c:81:50:2a:7b:10:c2:cc:
69:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B7:FF:EC:F2:83:5F:97:56:D7:0F:B4:34:12:03:08:9A:60:F1:26
X509v3 Authority Key Identifier:
keyid:21:AA:28:DE:21:BC:91:F3:9D:BF:2D:01:2F:D5:52:D2:2D:0F:5A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/63a5bb-24d0-4db9-b510-f9973c576b03/1/Iaoo3iG8kfOdvy0BL9VS0i0PWqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:e3:f8:3c:59:b3:b9:83:6e:c0:6e:d4:f0:7b:3e:fd:1b:54:
65:bf:e0:54:66:95:44:51:2a:1c:2a:27:79:d0:c0:39:40:ae:
88:e3:16:11:8e:d1:fd:74:d0:e1:cc:22:2e:a9:4b:08:a4:e9:
31:79:cd:1c:77:73:6e:5d:f5:36:be:44:fa:6c:30:e3:a8:60:
1c:51:27:0a:79:39:e2:35:42:84:5c:fd:34:98:ed:f0:9c:36:
de:f8:9f:a6:de:e3:67:ff:ba:2b:05:43:f9:99:b6:71:b4:e9:
a5:48:e3:72:3d:d3:f2:43:b9:86:c9:44:87:80:f9:7e:de:b5:
0f:94:b6:0b:fd:be:4f:50:c4:37:13:15:0c:b3:87:23:26:0a:
97:db:db:eb:96:0e:6c:64:51:9a:1d:bb:50:2f:df:3f:f9:1d:
07:4e:9f:a1:08:0c:04:ca:fe:ac:ec:77:79:1c:06:41:a7:5d:
2c:4e:6c:dc:07:05:ac:79:27:86:0d:6c:e2:35:bb:35:2c:01:
4d:04:91:30:3e:43:ea:3e:28:9c:58:94:82:19:71:6a:59:38:
c8:c6:e5:84:dd:da:e6:a2:e3:38:b3:0a:83:30:5e:21:b9:3b:
8a:ca:e4:3d:1b:1b:40:c6:42:b7:6c:7f:c5:03:1b:7b:f1:73:
9d:9c:a9:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd5sCY4gcQKZKtmowUavUugMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYWEyOGRlMjFiYzkxZjM5ZGJmMmQwMTJmZDU1MmQyMmQw
ZjVhYWEwHhcNMjUwNjE2MTcwMTE2WhcNMjUwNjE3MTcwMTE2WjAzMTEwLwYDVQQD
EyhhMWI3ZmZlY2YyODM1Zjk3NTZkNzBmYjQzNDEyMDMwODlhNjBmMTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxC+LRSnBaDC6KthUxn1qblZ5X4qu
OhNx4uORceQmeoiiEY+DjmQTazdOQDfIB5H0tpJ5fprObOVLMmV0TadW/Mw5/4b1
B+qk9gvBjtiW0Ay9g14bRbJxZn85vdZjP4MctVhG+1S0BlZxHgt96FXqYx/zTThO
065c2LcEPiEh5IQYv8AeqSQO+tJsXjezqYkgMwcTjD4FGjtHM3KquhfMevC6i3KJ
JcDkRulbvssSXSKfWM1eWw85xazEPA1DRbKaucMdfuJNMqiQwe4RtFyBv7JG3KnT
9fR49pH+9vn+hpJtJiPuhUUzhm8Gd0psuZ0MAyJJzexuTIFQKnsQwsxpFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKG3/+zyg1+XVtcPtDQSAwiaYPEmMB8GA1UdIwQY
MBaAFCGqKN4hvJHznb8tAS/VUtItD1qqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWFvbzNpRzhrZk9kdnkwQkw5VlMwaTBQV3FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS82M2E1YmItMjRkMC00ZGI5LWI1MTAt
Zjk5NzNjNTc2YjAzLzEvSWFvbzNpRzhrZk9kdnkwQkw5VlMwaTBQV3FvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS82M2E1YmItMjRkMC00ZGI5LWI1MTAtZjk5NzNjNTc2YjAz
LzEvSWFvbzNpRzhrZk9kdnkwQkw5VlMwaTBQV3FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX+P4PFmz
uYNuwG7U8Hs+/RtUZb/gVGaVRFEqHConedDAOUCuiOMWEY7R/XTQ4cwiLqlLCKTp
MXnNHHdzbl31Nr5E+mww46hgHFEnCnk54jVChFz9NJjt8Jw23vifpt7jZ/+6KwVD
+Zm2cbTppUjjcj3T8kO5hslEh4D5ft61D5S2C/2+T1DENxMVDLOHIyYKl9vb65YO
bGRRmh27UC/fP/kdB06foQgMBMr+rOx3eRwGQaddLE5s3AcFrHknhg1s4jW7NSwB
TQSRMD5D6j4onFiUghlxalk4yMblhN3a5qLjOLMKgzBeIbk7isrkPRsbQMZCt2x/
xQMbe/FznZypSw==
-----END CERTIFICATE-----
Generated at Mon Jun 16 23:41:40 2025 by rpki-client