Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
File: i8Wo923xVof4NEHJprVUV48831c.mft (raw, json)
Hash identifier: C+LuiGn1o5+OaLYHsH92vy+6mIIfkCyDDj0XNxPRncA=
Subject key identifier: 22:DB:19:08:96:5B:07:AF:56:D1:95:B1:07:AB:F2:30:D3:A0:7E:99
Authority key identifier: 8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
Certificate issuer: /CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Certificate serial: 0198D4A832A9F99CA1DEE276F32061D18B65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
Manifest number: 02E7
Signing time: Sat 23 Aug 2025 02:00:49 +0000
Manifest this update: Sat 23 Aug 2025 02:00:49 +0000
Manifest next update: Sun 24 Aug 2025 02:00:49 +0000
Files and hashes: 1: i8Wo923xVof4NEHJprVUV48831c.crl (hash: 0gazS6r6J+G3dpDyrvft6uayMP98OWvAsRi5pOYgYi4=)
2: xqruQTCgxIM4PNAxf9wXVycyPyQ.roa (hash: hdKTf9nYGB8AkPxxLnuI6L7FG/INFNDmxrZRzLc1Xt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:32:a9:f9:9c:a1:de:e2:76:f3:20:61:d1:8b:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Validity
Not Before: Aug 23 02:00:49 2025 GMT
Not After : Aug 24 02:00:49 2025 GMT
Subject: CN=22db1908965b07af56d195b107abf230d3a07e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:57:9d:0c:a0:0c:6b:af:59:94:e0:0a:38:c0:
dd:5d:8e:d2:e2:6e:e1:9a:95:e4:17:d3:66:3e:f2:
86:03:16:d0:a1:19:07:04:e6:0b:ad:5d:31:c9:30:
99:89:a2:61:24:e1:3d:95:52:3c:ac:bc:3b:8e:5c:
9c:5a:b9:f0:12:c2:e4:8e:79:fa:67:6f:30:0a:11:
c9:7b:2c:fa:67:4f:09:75:b7:8c:46:c2:ca:13:9e:
89:f5:14:80:9e:cc:3a:61:fd:5a:0a:b5:81:3c:a0:
bd:45:71:93:2e:6a:6b:66:58:1e:aa:4e:a2:fe:38:
8e:92:25:7b:db:85:22:67:aa:57:a2:0d:90:20:61:
c6:4d:da:ed:be:57:25:d5:3d:ca:73:28:1f:e5:2b:
31:33:1d:b4:3c:aa:08:0d:59:19:dd:41:59:8d:dd:
da:69:6d:4c:96:2a:de:04:a4:67:8a:59:01:4c:c8:
ed:47:3d:eb:2c:52:b5:df:13:29:d5:c4:89:e2:dd:
2d:a9:be:e1:f1:c0:f1:53:c1:27:6b:3b:89:41:71:
42:1c:8e:01:60:5f:d8:81:90:92:d2:6e:1e:2c:34:
c7:88:10:df:89:4d:cc:a4:1f:70:9e:fc:2b:f2:82:
ef:f8:5f:f1:ab:65:6c:ee:9b:7e:c0:02:62:3a:c9:
d5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:DB:19:08:96:5B:07:AF:56:D1:95:B1:07:AB:F2:30:D3:A0:7E:99
X509v3 Authority Key Identifier:
keyid:8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:18:3f:6a:18:54:12:34:76:1c:47:14:63:33:40:b9:ec:ba:
69:ab:a0:08:2b:98:cc:e4:60:fe:69:3e:43:82:3e:07:45:50:
1e:41:ea:e7:4a:ea:92:4b:20:0a:88:31:63:3d:e7:6d:aa:06:
b0:bc:dd:68:15:e6:f0:d5:b3:6b:36:b6:68:ac:87:bc:fc:92:
f5:b0:a1:a3:16:20:db:ce:0b:06:93:47:06:cb:35:13:e1:05:
a0:9d:f5:e7:11:79:6a:49:57:b0:fe:88:de:7c:83:c5:d7:62:
bd:3f:30:94:19:72:7d:73:70:ed:54:87:ac:ca:66:57:0e:fc:
66:a5:65:68:56:01:a2:53:27:dd:85:9a:b0:70:90:13:0c:74:
80:3a:df:d5:10:02:b7:86:4c:69:ac:c6:3c:8b:79:c9:f1:4b:
b4:00:32:87:2e:84:7b:e4:15:88:0b:02:bf:c4:7f:25:a7:b8:
e6:7f:e8:01:7d:af:9f:ad:4c:58:83:42:58:55:04:bf:99:de:
66:30:3a:1b:a9:fc:91:79:f1:ff:3c:e1:7b:1a:8a:b7:c5:cb:
18:6a:2d:17:c9:1a:48:e7:65:6a:6b:06:63:53:41:d1:ac:13:
be:01:a4:a3:0a:86:8f:b4:b4:14:82:d9:8c:02:c4:e6:3d:4d:
c2:6e:16:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUqDKp+Zyh3uJ28yBh0YtlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYzVhOGY3NmRmMTU2ODdmODM0NDFjOWE2YjU1NDU3OGYz
Y2RmNTcwHhcNMjUwODIzMDIwMDQ5WhcNMjUwODI0MDIwMDQ5WjAzMTEwLwYDVQQD
EygyMmRiMTkwODk2NWIwN2FmNTZkMTk1YjEwN2FiZjIzMGQzYTA3ZTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFedDKAMa69ZlOAKOMDdXY7S4m7h
mpXkF9NmPvKGAxbQoRkHBOYLrV0xyTCZiaJhJOE9lVI8rLw7jlycWrnwEsLkjnn6
Z28wChHJeyz6Z08JdbeMRsLKE56J9RSAnsw6Yf1aCrWBPKC9RXGTLmprZlgeqk6i
/jiOkiV724UiZ6pXog2QIGHGTdrtvlcl1T3Kcygf5SsxMx20PKoIDVkZ3UFZjd3a
aW1MlireBKRnilkBTMjtRz3rLFK13xMp1cSJ4t0tqb7h8cDxU8EnazuJQXFCHI4B
YF/YgZCS0m4eLDTHiBDfiU3MpB9wnvwr8oLv+F/xq2Vs7pt+wAJiOsnVXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCLbGQiWWwevVtGVsQer8jDToH6ZMB8GA1UdIwQY
MBaAFIvFqPdt8VaH+DRByaa1VFePPN9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8yNWU4M2QtMjM2NS00MTI2LTlhYTct
OTRiOWNmMmNkMmVmLzEvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS8yNWU4M2QtMjM2NS00MTI2LTlhYTctOTRiOWNmMmNkMmVm
LzEvaThXbzkyM3hWb2Y0TkVISnByVlVWNDg4MzFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUBg/ahhU
EjR2HEcUYzNAuey6aaugCCuYzORg/mk+Q4I+B0VQHkHq50rqkksgCogxYz3nbaoG
sLzdaBXm8NWzaza2aKyHvPyS9bChoxYg284LBpNHBss1E+EFoJ315xF5aklXsP6I
3nyDxddivT8wlBlyfXNw7VSHrMpmVw78ZqVlaFYBolMn3YWasHCQEwx0gDrf1RAC
t4ZMaazGPIt5yfFLtAAyhy6Ee+QViAsCv8R/Jae45n/oAX2vn61MWINCWFUEv5ne
ZjA6G6n8kXnx/zzhexqKt8XLGGotF8kaSOdlamsGY1NB0awTvgGkowqGj7S0FILZ
jALE5j1Nwm4WJg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:27:19 2025 by rpki-client