Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json)
Hash identifier: P9F8ftupmTSZOgaFHw8J324NdRQLHst4e1huI9dsXMQ=
Subject key identifier: F5:1A:97:23:8B:06:B1:4A:F2:F9:F5:1F:8B:5D:01:96:AF:C3:3D:60
Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Certificate serial: 0197B6A0CC5EF590C7D3F2B94AECA7FF5D4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
Manifest number: 0D41
Signing time: Sat 28 Jun 2025 13:01:20 +0000
Manifest this update: Sat 28 Jun 2025 13:01:20 +0000
Manifest next update: Sun 29 Jun 2025 13:01:20 +0000
Files and hashes: 1: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: UF2uXdegvVq3k6gTlgQM5N74odVo9Dg3r5EytHyDiDc=)
2: ItUhScrgPwKkKUyhqEMMP6UQG5o.roa (hash: gmpeHaOEVGgSYmwc/n6Xey1Y6I6lJR2qqLtWqmrTzmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:cc:5e:f5:90:c7:d3:f2:b9:4a:ec:a7:ff:5d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Validity
Not Before: Jun 28 13:01:20 2025 GMT
Not After : Jun 29 13:01:20 2025 GMT
Subject: CN=f51a97238b06b14af2f9f51f8b5d0196afc33d60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:72:31:39:bf:d2:3c:c1:e7:8b:00:f8:e6:13:
31:4c:16:5d:cd:22:ab:8f:68:79:ab:be:1f:41:16:
f4:4c:c4:1b:b6:61:13:69:b1:c7:db:f5:6e:d6:6a:
f5:f2:16:12:a3:aa:d5:59:cb:c3:61:76:70:d5:84:
42:9b:95:11:44:07:b8:7d:a6:82:fa:5e:4e:17:20:
05:e1:55:84:3a:45:f7:5b:39:b8:b3:fa:22:ce:12:
4b:26:88:05:6a:14:08:43:22:84:1b:d0:8a:4b:cc:
8f:d1:7a:9c:2b:d1:e9:93:1d:91:aa:ff:55:0f:e0:
e0:1a:12:bf:3a:c8:2f:b3:e8:5e:34:37:64:ac:25:
92:c1:4b:72:97:3d:82:79:c6:aa:55:ec:28:ca:cc:
4e:35:39:cd:66:6e:2d:e8:45:2c:19:c4:89:07:14:
0e:e4:41:af:7b:11:c1:8d:e9:c5:a0:a4:23:0e:b6:
ae:4f:7c:60:7d:e1:ec:17:2c:d6:35:ca:85:12:71:
a6:8b:d0:e9:da:01:7c:e2:64:59:fc:3a:cb:58:5d:
60:e9:82:9c:03:06:26:76:72:91:c8:09:c0:0b:ce:
76:63:52:ce:2c:51:50:e7:f2:9e:01:8d:06:15:89:
de:8a:4c:22:b5:c4:27:d5:95:c8:14:3c:2d:50:66:
91:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:1A:97:23:8B:06:B1:4A:F2:F9:F5:1F:8B:5D:01:96:AF:C3:3D:60
X509v3 Authority Key Identifier:
keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:e3:b9:37:71:ed:0f:1d:ad:23:6f:ed:b4:c4:2b:e8:d3:70:
80:e3:40:82:c9:46:11:49:fa:29:67:52:ab:b7:f7:aa:df:bf:
5d:6d:ff:09:d9:94:88:74:59:14:b4:a5:d7:4c:08:04:e7:23:
2d:c3:4d:0e:ab:82:b5:8a:31:cf:a7:d8:49:0d:cf:f5:8a:fb:
0c:e8:70:b7:cb:95:f6:97:fb:b0:4e:1b:58:c3:15:9a:93:c2:
42:f0:b6:14:ce:57:3c:b6:03:55:2c:50:b3:ef:78:a1:51:7b:
ba:fd:fe:93:97:bb:87:b7:90:a8:c7:6e:72:e9:24:96:9b:2c:
6f:e7:12:26:d6:b9:00:7a:3b:53:c7:c6:d0:2e:9f:2f:59:e3:
c1:b6:cb:bf:b7:1f:e6:96:45:9d:8b:e5:e7:5f:18:8f:44:95:
a8:f4:f7:a8:3d:b6:2f:5c:2d:fb:40:9d:81:af:38:59:c2:b3:
e2:6d:3d:96:15:06:13:cb:61:31:69:9c:7b:5b:30:32:6d:5c:
69:49:3a:25:bb:f5:e0:7b:7b:75:62:ac:c1:2f:6c:eb:e2:e2:
aa:66:5a:f5:8c:f6:18:70:6c:da:ab:10:55:3e:16:90:ca:cb:
2f:b5:5b:d5:9d:f6:72:26:2e:ce:9c:e0:1c:42:04:9d:1d:d7:
ee:bc:d8:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oMxe9ZDH0/K5Suyn/11NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYjgyZmM4ZWQ4OGY5OWNhYjU3ZDc2ODAzMTc2ZWIyN2E5
ZjBiZmEwHhcNMjUwNjI4MTMwMTIwWhcNMjUwNjI5MTMwMTIwWjAzMTEwLwYDVQQD
EyhmNTFhOTcyMzhiMDZiMTRhZjJmOWY1MWY4YjVkMDE5NmFmYzMzZDYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9XIxOb/SPMHniwD45hMxTBZdzSKr
j2h5q74fQRb0TMQbtmETabHH2/Vu1mr18hYSo6rVWcvDYXZw1YRCm5URRAe4faaC
+l5OFyAF4VWEOkX3Wzm4s/oizhJLJogFahQIQyKEG9CKS8yP0XqcK9Hpkx2Rqv9V
D+DgGhK/Osgvs+heNDdkrCWSwUtylz2CecaqVewoysxONTnNZm4t6EUsGcSJBxQO
5EGvexHBjenFoKQjDrauT3xgfeHsFyzWNcqFEnGmi9Dp2gF84mRZ/DrLWF1g6YKc
AwYmdnKRyAnAC852Y1LOLFFQ5/KeAY0GFYneikwitcQn1ZXIFDwtUGaR1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPUalyOLBrFK8vn1H4tdAZavwz1gMB8GA1UdIwQY
MBaAFCG4L8jtiPmcq1fXaAMXbrJ6nwv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9hYjY1ZjYtMzFiZS00MTQ5LWE2ZTMt
YWU1ZmE1M2I5M2IyLzEvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9hYjY1ZjYtMzFiZS00MTQ5LWE2ZTMtYWU1ZmE1M2I5M2Iy
LzEvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOuO5N3Ht
Dx2tI2/ttMQr6NNwgONAgslGEUn6KWdSq7f3qt+/XW3/CdmUiHRZFLSl10wIBOcj
LcNNDquCtYoxz6fYSQ3P9Yr7DOhwt8uV9pf7sE4bWMMVmpPCQvC2FM5XPLYDVSxQ
s+94oVF7uv3+k5e7h7eQqMducukklpssb+cSJta5AHo7U8fG0C6fL1njwbbLv7cf
5pZFnYvl518Yj0SVqPT3qD22L1wt+0Cdga84WcKz4m09lhUGE8thMWmce1swMm1c
aUk6Jbv14Ht7dWKswS9s6+LiqmZa9Yz2GHBs2qsQVT4WkMrLL7Vb1Z32ciYuzpzg
HEIEnR3X7rzYCw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:46:20 2025 by rpki-client