Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
File: i9lSvUDOCXP5EEEfWS426QE2wuo.mft (raw, json)
Hash identifier: sOpBWPdxIZVVlDYXvxqsGZEpny4PTbLowO50PvD8oFw=
Subject key identifier: 58:91:EA:14:89:D5:3E:20:C4:5A:3E:B4:5E:7B:B8:D0:87:CA:84:40
Authority key identifier: 8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
Certificate issuer: /CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Certificate serial: 0198D5BB9E9732A77B0C35026D7FA91DCE7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
Manifest number: 07C9
Signing time: Sat 23 Aug 2025 07:01:39 +0000
Manifest this update: Sat 23 Aug 2025 07:01:39 +0000
Manifest next update: Sun 24 Aug 2025 07:01:39 +0000
Files and hashes: 1: i9lSvUDOCXP5EEEfWS426QE2wuo.crl (hash: 877eThGcubd3zRlPFtQ6bw7CZB7ngxS4tbIFIXl4RSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 07:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:9e:97:32:a7:7b:0c:35:02:6d:7f:a9:1d:ce:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bd952bd40ce0973f910411f592e36e90136c2ea
Validity
Not Before: Aug 23 07:01:39 2025 GMT
Not After : Aug 24 07:01:39 2025 GMT
Subject: CN=5891ea1489d53e20c45a3eb45e7bb8d087ca8440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4a:2d:0f:14:25:12:dd:d0:23:da:79:99:e6:
96:ad:8c:e3:84:99:2d:80:80:51:ef:3c:1d:a1:bc:
3c:1f:f0:31:c2:3b:e1:8e:cd:0f:de:9c:92:92:4d:
0e:50:fc:9f:ee:a4:f2:cb:8a:53:c1:d6:c7:cb:ee:
89:9e:0c:21:54:87:35:a7:7e:6b:00:e7:c8:59:bf:
c2:91:c0:ce:f7:71:c4:9f:2e:f7:99:15:ac:0d:6d:
74:15:5a:d5:89:84:bb:55:b0:3c:c5:d0:86:3d:5c:
4b:af:60:3e:66:e3:65:ea:27:10:7a:87:43:b3:60:
cd:07:b2:bb:54:98:b1:8d:f0:40:7c:d5:ee:fb:28:
f2:b6:4d:79:40:87:88:29:04:8c:d7:45:30:3b:dc:
44:ea:0d:56:29:32:bf:3e:16:4f:99:e5:5c:be:54:
f7:55:a5:01:47:bf:8e:dd:d9:0e:b2:3c:4a:ff:55:
c1:7a:2e:37:fb:49:0d:42:00:ea:1c:fa:f0:ed:98:
00:bc:10:8d:65:78:f3:a5:f5:04:96:44:17:e7:ca:
74:63:72:a2:68:bf:c2:51:42:55:4c:ff:12:a0:1a:
08:14:1c:05:e8:e7:64:09:1e:30:3a:04:73:1a:9a:
1b:64:11:84:85:39:70:6e:35:51:59:f4:b3:b0:fb:
e6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:91:EA:14:89:D5:3E:20:C4:5A:3E:B4:5E:7B:B8:D0:87:CA:84:40
X509v3 Authority Key Identifier:
keyid:8B:D9:52:BD:40:CE:09:73:F9:10:41:1F:59:2E:36:E9:01:36:C2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9lSvUDOCXP5EEEfWS426QE2wuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3edb8c-1850-488f-afdf-5c2abe5394e6/1/i9lSvUDOCXP5EEEfWS426QE2wuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:aa:b1:62:fd:4b:5e:73:dd:4f:5a:2e:bd:99:c0:3b:6c:87:
4d:76:a7:24:d1:d0:2d:d1:83:d1:35:1a:0f:a5:87:f6:4c:8e:
70:1b:3e:53:ca:43:ba:47:91:c2:91:24:82:ab:df:bc:1b:a3:
02:f7:29:d6:1b:8a:42:19:9e:8d:bf:e6:bd:b3:13:20:52:f6:
98:0a:82:b2:44:1f:48:a3:a0:6b:f5:b6:e6:06:63:7d:7f:17:
bd:f3:d1:5b:70:b8:ca:e9:5d:72:eb:d2:04:f6:53:55:7d:77:
29:ff:66:38:5f:9a:09:83:ba:a4:0f:b4:49:f1:fa:1c:ed:3c:
d3:7f:2a:1c:c2:f8:17:5b:56:b8:f9:63:c1:29:b0:f3:47:70:
43:8c:ce:a2:bb:64:78:16:63:28:c8:e1:0a:de:a0:70:9f:d6:
e4:f7:40:01:7c:44:40:55:1a:86:24:60:00:50:22:d6:d2:f2:
5f:6b:dd:63:97:bb:30:81:2f:ce:48:20:54:47:7a:01:44:5f:
9b:f2:d9:ed:80:73:ab:6e:fa:66:8f:af:7e:a2:73:18:e7:69:
e6:4a:22:55:1e:d9:37:b6:c4:d7:fc:5f:5f:fc:8b:0a:30:6e:
e1:a5:26:d3:b1:b1:5c:8e:9a:5c:58:f5:d6:44:05:4a:93:58:
1d:08:08:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu56XMqd7DDUCbX+pHc59MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiZDk1MmJkNDBjZTA5NzNmOTEwNDExZjU5MmUzNmU5MDEz
NmMyZWEwHhcNMjUwODIzMDcwMTM5WhcNMjUwODI0MDcwMTM5WjAzMTEwLwYDVQQD
Eyg1ODkxZWExNDg5ZDUzZTIwYzQ1YTNlYjQ1ZTdiYjhkMDg3Y2E4NDQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5EotDxQlEt3QI9p5meaWrYzjhJkt
gIBR7zwdobw8H/Axwjvhjs0P3pySkk0OUPyf7qTyy4pTwdbHy+6JngwhVIc1p35r
AOfIWb/CkcDO93HEny73mRWsDW10FVrViYS7VbA8xdCGPVxLr2A+ZuNl6icQeodD
s2DNB7K7VJixjfBAfNXu+yjytk15QIeIKQSM10UwO9xE6g1WKTK/PhZPmeVcvlT3
VaUBR7+O3dkOsjxK/1XBei43+0kNQgDqHPrw7ZgAvBCNZXjzpfUElkQX58p0Y3Ki
aL/CUUJVTP8SoBoIFBwF6OdkCR4wOgRzGpobZBGEhTlwbjVRWfSzsPvm1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFiR6hSJ1T4gxFo+tF57uNCHyoRAMB8GA1UdIwQY
MBaAFIvZUr1Azglz+RBBH1kuNukBNsLqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8zZWRiOGMtMTg1MC00ODhmLWFmZGYt
NWMyYWJlNTM5NGU2LzEvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS8zZWRiOGMtMTg1MC00ODhmLWFmZGYtNWMyYWJlNTM5NGU2
LzEvaTlsU3ZVRE9DWFA1RUVFZldTNDI2UUUyd3VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnaqxYv1L
XnPdT1ouvZnAO2yHTXanJNHQLdGD0TUaD6WH9kyOcBs+U8pDukeRwpEkgqvfvBuj
Avcp1huKQhmejb/mvbMTIFL2mAqCskQfSKOga/W25gZjfX8XvfPRW3C4yuldcuvS
BPZTVX13Kf9mOF+aCYO6pA+0SfH6HO08038qHML4F1tWuPljwSmw80dwQ4zOortk
eBZjKMjhCt6gcJ/W5PdAAXxEQFUahiRgAFAi1tLyX2vdY5e7MIEvzkggVEd6AURf
m/LZ7YBzq276Zo+vfqJzGOdp5koiVR7ZN7bE1/xfX/yLCjBu4aUm07GxXI6aXFj1
1kQFSpNYHQgI3w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:30:00 2025 by rpki-client