Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
File: IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft (raw, json)
Hash identifier: BFU8V1YaaM+0UcsDjKqJJ1LTRTtLBNr8jRmGdRO9rtU=
Subject key identifier: 34:B9:DF:64:AC:AA:6D:45:13:2B:6F:E4:57:FC:28:44:6C:9A:A9:42
Authority key identifier: 22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
Certificate issuer: /CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Certificate serial: 0198D583C2722B6A10EDCAB849CE19CB02C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
Manifest number: 1430
Signing time: Sat 23 Aug 2025 06:00:38 +0000
Manifest this update: Sat 23 Aug 2025 06:00:38 +0000
Manifest next update: Sun 24 Aug 2025 06:00:38 +0000
Files and hashes: 1: 6LkNfXDGOHhf8gBsIaO1gA2Q-VM.roa (hash: NThSJkZPm+DD4/mAcNhw9miEjuzZudxLC0TeMXxTy6I=)
2: IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl (hash: YY1jQsf+CXrvcyQvvJF1eIzuWR649kHSpKEzgonSNDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:c2:72:2b:6a:10:ed:ca:b8:49:ce:19:cb:02:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Validity
Not Before: Aug 23 06:00:38 2025 GMT
Not After : Aug 24 06:00:38 2025 GMT
Subject: CN=34b9df64acaa6d45132b6fe457fc28446c9aa942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e2:fb:c6:97:78:4f:23:5f:e2:06:b7:79:dc:
6b:24:07:a0:66:f5:db:56:79:e8:eb:c9:85:fb:da:
ae:b4:4b:ad:49:23:1b:30:94:d7:c2:4a:35:f6:a0:
51:54:e5:48:ce:ab:bf:1e:e0:11:00:7c:c1:df:e5:
ee:fa:0e:e3:88:85:71:f7:a6:dc:d5:b6:b9:01:14:
87:c2:57:44:d3:b4:02:3d:ed:03:03:c0:59:2a:c8:
31:3b:53:d7:4e:ad:94:d5:19:72:7a:14:21:74:1e:
f2:d1:7c:93:bc:83:6c:fa:45:90:f0:ad:f8:93:2d:
b2:c5:23:62:7b:ea:8f:40:00:14:86:f2:4b:13:d8:
05:8c:bd:be:23:c0:07:ba:c4:16:d3:1f:1b:f7:19:
b6:a6:af:29:7e:81:6a:53:ac:f3:10:51:31:dc:99:
73:4e:96:e9:93:3c:aa:aa:65:17:1b:29:80:35:62:
b1:7c:74:ba:7e:68:3e:dc:6f:97:70:aa:1d:3b:e4:
a3:16:9c:de:ed:38:dd:f2:40:fe:f6:26:3f:47:6b:
b8:93:41:d3:a8:e7:78:9d:31:1a:0a:14:20:bc:0b:
15:61:87:d9:51:38:06:84:15:99:30:cb:8a:df:3a:
d7:48:c4:bd:94:52:0b:8b:89:2c:f9:61:f3:46:83:
00:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B9:DF:64:AC:AA:6D:45:13:2B:6F:E4:57:FC:28:44:6C:9A:A9:42
X509v3 Authority Key Identifier:
keyid:22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:0c:78:ae:96:c5:68:a1:4d:04:25:f4:00:e5:a3:9e:e2:64:
47:d5:a5:8f:6b:58:a2:a2:ef:69:76:3c:a1:30:f1:f4:7b:f6:
c0:1d:59:6e:f9:68:58:93:3d:2b:ed:9c:1c:bb:68:1c:c3:4a:
79:6f:37:5b:7d:b0:a3:cf:10:88:f2:b1:ba:76:67:0b:6e:da:
56:38:fe:6b:e4:ee:d0:e1:c2:61:94:f8:4a:aa:ad:93:57:83:
e5:4c:f3:8c:01:27:12:27:08:d8:9e:29:63:f5:be:30:21:67:
ac:0f:49:23:9e:0a:a4:dc:79:d7:70:03:fa:2d:79:6f:03:ef:
15:71:c5:60:25:9a:50:fa:be:a6:7c:2e:30:cd:8e:36:8b:64:
d6:cc:3d:58:83:81:1f:0b:e8:c7:38:c5:e3:70:59:a0:9a:56:
3c:bb:4a:5c:05:8c:e0:2e:3b:c0:aa:21:61:ec:fe:44:d6:5e:
e9:27:b5:c1:be:59:ae:40:5e:fd:ac:fd:02:e2:10:bc:fc:87:
5d:7f:87:6c:16:94:e7:88:6c:b0:82:87:ac:8b:ef:66:7d:72:
ed:28:c1:80:de:8c:a4:c7:05:82:80:1a:4b:f8:c2:dd:c4:23:
da:c0:02:92:65:d9:42:aa:8a:f4:c0:3c:06:67:4e:31:9c:96:
1c:1b:95:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg8JyK2oQ7cq4Sc4ZywLAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYTcyZjNlZDIzZTIyOTRmOWJiNmJhNjYwMjQ2MTY2YzEz
ZjgzMjQwHhcNMjUwODIzMDYwMDM4WhcNMjUwODI0MDYwMDM4WjAzMTEwLwYDVQQD
EygzNGI5ZGY2NGFjYWE2ZDQ1MTMyYjZmZTQ1N2ZjMjg0NDZjOWFhOTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkuL7xpd4TyNf4ga3edxrJAegZvXb
Vnno68mF+9qutEutSSMbMJTXwko19qBRVOVIzqu/HuARAHzB3+Xu+g7jiIVx96bc
1ba5ARSHwldE07QCPe0DA8BZKsgxO1PXTq2U1RlyehQhdB7y0XyTvINs+kWQ8K34
ky2yxSNie+qPQAAUhvJLE9gFjL2+I8AHusQW0x8b9xm2pq8pfoFqU6zzEFEx3Jlz
TpbpkzyqqmUXGymANWKxfHS6fmg+3G+XcKodO+SjFpze7Tjd8kD+9iY/R2u4k0HT
qOd4nTEaChQgvAsVYYfZUTgGhBWZMMuK3zrXSMS9lFILi4ks+WHzRoMAlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDS532Ssqm1FEytv5Ff8KERsmqlCMB8GA1UdIwQY
MBaAFCKnLz7SPiKU+btrpmAkYWbBP4MkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80Nzk2NzMtOTY2Ny00ZWRhLWJiYmQt
YjBiMmVhYWVlZDYxLzEvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC80Nzk2NzMtOTY2Ny00ZWRhLWJiYmQtYjBiMmVhYWVlZDYx
LzEvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALwx4rpbF
aKFNBCX0AOWjnuJkR9Wlj2tYoqLvaXY8oTDx9Hv2wB1ZbvloWJM9K+2cHLtoHMNK
eW83W32wo88QiPKxunZnC27aVjj+a+Tu0OHCYZT4Sqqtk1eD5UzzjAEnEicI2J4p
Y/W+MCFnrA9JI54KpNx513AD+i15bwPvFXHFYCWaUPq+pnwuMM2ONotk1sw9WIOB
HwvoxzjF43BZoJpWPLtKXAWM4C47wKohYez+RNZe6Se1wb5ZrkBe/az9AuIQvPyH
XX+HbBaU54hssIKHrIvvZn1y7SjBgN6MpMcFgoAaS/jC3cQj2sACkmXZQqqK9MA8
BmdOMZyWHBuVjA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:31:36 2025 by rpki-client