Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
File: iA2KtqoscvB5dV92zwEgql3dx98.mft (raw, json)
Hash identifier: lWXMymcLKTkpWvnFXICWzKogTiLg+0mun9oUvVGZwDk=
Subject key identifier: 91:E1:A1:C0:70:A4:75:26:FA:CE:68:4C:E0:79:5B:AB:78:FD:2D:7E
Authority key identifier: 88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
Certificate issuer: /CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Certificate serial: 01987C40DDE3F38D70EB212019E2C380BC83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
Manifest number: 0DFC
Signing time: Tue 05 Aug 2025 22:01:22 +0000
Manifest this update: Tue 05 Aug 2025 22:01:22 +0000
Manifest next update: Wed 06 Aug 2025 22:01:22 +0000
Files and hashes: 1: hi3FrnF-3jLI3lIxcnrMYtC-4ow.roa (hash: Hon+3addqQMzwZi2hE3IgLssZw3bA0MMDqOLsP3ZK0E=)
2: iA2KtqoscvB5dV92zwEgql3dx98.crl (hash: nSxZnxtBXa3sFUk96IqzDK/bT3rCiN0l5QWXUYE99rc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 22:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:40:dd:e3:f3:8d:70:eb:21:20:19:e2:c3:80:bc:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880d8ab6aa2c72f079755f76cf0120aa5dddc7df
Validity
Not Before: Aug 5 22:01:22 2025 GMT
Not After : Aug 6 22:01:22 2025 GMT
Subject: CN=91e1a1c070a47526face684ce0795bab78fd2d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:67:6e:25:55:aa:83:23:0c:47:c4:e4:c3:a3:
81:48:f5:eb:f3:28:17:71:1c:75:27:3a:2f:fa:65:
7b:26:ae:b3:c2:e9:37:c6:ed:da:91:76:98:22:c3:
39:34:f9:f9:53:96:f4:be:99:b9:f0:ec:31:81:ab:
5d:89:a0:b8:86:13:54:b6:55:00:cf:95:63:ce:f1:
f2:ba:54:34:95:72:37:96:c4:e9:08:39:58:3e:0b:
ee:0b:14:d4:3e:40:66:03:aa:e0:38:a5:8f:74:20:
3c:fa:ed:bb:40:3e:39:71:77:ce:50:99:a5:bc:dd:
68:cc:50:a4:c6:39:c6:74:4a:4d:30:0b:4f:f3:b3:
86:23:c2:fc:9f:6b:8a:46:11:5c:59:46:a7:ee:35:
4c:3c:1c:62:3e:09:32:cb:2f:25:34:e3:ac:87:9f:
f4:64:6a:6e:92:b3:da:a0:d1:54:09:62:b2:71:29:
58:3d:21:4b:01:a2:c7:8d:e4:35:91:28:b8:a6:2a:
a0:4b:1e:b9:63:e3:13:5f:64:5d:97:c7:1d:f2:bc:
04:d7:7d:53:2c:c9:67:b5:95:de:5f:1d:5e:a3:b3:
cc:c0:1c:71:c4:4b:7c:f8:fc:92:a8:47:37:9e:3c:
36:00:de:f9:d3:2d:e5:6b:d5:76:5c:4d:02:90:57:
b6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E1:A1:C0:70:A4:75:26:FA:CE:68:4C:E0:79:5B:AB:78:FD:2D:7E
X509v3 Authority Key Identifier:
keyid:88:0D:8A:B6:AA:2C:72:F0:79:75:5F:76:CF:01:20:AA:5D:DD:C7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iA2KtqoscvB5dV92zwEgql3dx98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/c84cd3-672b-44b2-8ce0-40289479ac05/1/iA2KtqoscvB5dV92zwEgql3dx98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:38:45:67:44:04:bc:7c:46:1b:fc:31:d3:43:ab:03:aa:8b:
60:82:8a:27:1c:67:82:86:1d:fb:c7:10:d1:68:fa:b1:ef:02:
5b:5a:67:5b:24:d0:42:f5:5b:31:59:d4:45:8e:17:ad:41:91:
b8:15:ed:c9:e5:ea:9d:fb:87:49:4f:ff:08:e4:d9:69:90:23:
df:e8:37:34:18:eb:7a:15:20:35:7f:1a:e2:f6:49:79:0e:5b:
05:97:32:bb:ae:1d:3b:45:25:b0:b1:c9:03:8f:d3:f4:63:93:
a7:86:3c:ff:57:9e:44:05:2d:e3:77:77:e2:91:8b:92:00:2b:
22:2d:40:94:9e:c6:c3:9b:48:c0:61:12:73:98:00:fa:fb:19:
7c:c1:0a:0d:62:75:75:bb:d8:b9:09:a1:d5:30:63:41:f0:64:
7e:79:d0:8b:be:a9:cb:54:3b:02:be:73:40:0c:12:5b:ec:cc:
8c:5b:53:bf:86:f0:e4:fd:43:b3:08:9c:16:db:12:95:bd:79:
22:b8:38:6f:30:18:54:a0:0d:96:12:d5:61:b5:27:94:93:ca:
51:59:91:fc:fb:f7:be:9b:d0:a1:b2:02:9c:b3:ed:91:aa:36:
16:c7:9f:3b:d7:c8:11:dc:97:3f:54:d1:95:ac:a8:e9:51:ce:
14:b6:9e:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh8QN3j841w6yEgGeLDgLyDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MGQ4YWI2YWEyYzcyZjA3OTc1NWY3NmNmMDEyMGFhNWRk
ZGM3ZGYwHhcNMjUwODA1MjIwMTIyWhcNMjUwODA2MjIwMTIyWjAzMTEwLwYDVQQD
Eyg5MWUxYTFjMDcwYTQ3NTI2ZmFjZTY4NGNlMDc5NWJhYjc4ZmQyZDdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2duJVWqgyMMR8Tkw6OBSPXr8ygX
cRx1Jzov+mV7Jq6zwuk3xu3akXaYIsM5NPn5U5b0vpm58OwxgatdiaC4hhNUtlUA
z5VjzvHyulQ0lXI3lsTpCDlYPgvuCxTUPkBmA6rgOKWPdCA8+u27QD45cXfOUJml
vN1ozFCkxjnGdEpNMAtP87OGI8L8n2uKRhFcWUan7jVMPBxiPgkyyy8lNOOsh5/0
ZGpukrPaoNFUCWKycSlYPSFLAaLHjeQ1kSi4piqgSx65Y+MTX2Rdl8cd8rwE131T
LMlntZXeXx1eo7PMwBxxxEt8+PySqEc3njw2AN750y3la9V2XE0CkFe2iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJHhocBwpHUm+s5oTOB5W6t4/S1+MB8GA1UdIwQY
MBaAFIgNiraqLHLweXVfds8BIKpd3cffMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC9jODRjZDMtNjcyYi00NGIyLThjZTAt
NDAyODk0NzlhYzA1LzEvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC9jODRjZDMtNjcyYi00NGIyLThjZTAtNDAyODk0NzlhYzA1
LzEvaUEyS3Rxb3NjdkI1ZFY5Mnp3RWdxbDNkeDk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUjhFZ0QE
vHxGG/wx00OrA6qLYIKKJxxngoYd+8cQ0Wj6se8CW1pnWyTQQvVbMVnURY4XrUGR
uBXtyeXqnfuHSU//COTZaZAj3+g3NBjrehUgNX8a4vZJeQ5bBZcyu64dO0UlsLHJ
A4/T9GOTp4Y8/1eeRAUt43d34pGLkgArIi1AlJ7Gw5tIwGESc5gA+vsZfMEKDWJ1
dbvYuQmh1TBjQfBkfnnQi76py1Q7Ar5zQAwSW+zMjFtTv4bw5P1DswicFtsSlb15
Irg4bzAYVKANlhLVYbUnlJPKUVmR/Pv3vpvQobICnLPtkao2FsefO9fIEdyXP1TR
layo6VHOFLaeyw==
-----END CERTIFICATE-----
Generated at Wed Aug 6 05:24:44 2025 by rpki-client