Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
File: IaqfF_jMpH37krSQLSwrMgPb7aY.mft (raw, json)
Hash identifier: Bptp0dwcToWJRv+hmD0BMmQhRIWfX8RzRZmgTFy15/Y=
Subject key identifier: 1A:E5:61:E3:EF:76:ED:24:D9:55:13:C7:7E:A0:E6:79:AF:CC:94:67
Authority key identifier: 21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
Certificate issuer: /CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Certificate serial: 0198D6610EE2C4DD9E563CDA4EA9C8CCED8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
Manifest number: 06E6
Signing time: Sat 23 Aug 2025 10:02:21 +0000
Manifest this update: Sat 23 Aug 2025 10:02:21 +0000
Manifest next update: Sun 24 Aug 2025 10:02:21 +0000
Files and hashes: 1: IaqfF_jMpH37krSQLSwrMgPb7aY.crl (hash: 1jogyWfDjshyj4IMfDOcUGrPmC3gu7tgkMcOe4Isoe0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:0e:e2:c4:dd:9e:56:3c:da:4e:a9:c8:cc:ed:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Validity
Not Before: Aug 23 10:02:21 2025 GMT
Not After : Aug 24 10:02:21 2025 GMT
Subject: CN=1ae561e3ef76ed24d95513c77ea0e679afcc9467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6d:9e:5d:f3:aa:29:8a:7a:fe:37:1d:1a:5d:
d9:59:f5:6f:c3:52:ea:ab:85:d1:0d:0d:1e:a0:eb:
7a:e2:5a:df:ff:89:02:a4:44:9c:64:38:96:1a:0e:
3a:e1:e1:ca:d0:2e:de:93:27:ab:d5:22:8f:f9:b1:
16:98:a8:55:f7:12:3e:e6:e5:8b:ee:7e:1b:a3:df:
0e:74:f2:8c:eb:03:5a:87:00:f9:2e:ef:3d:0a:b4:
df:29:b6:7b:2c:84:b8:a4:03:f6:00:8b:ff:bc:e1:
49:18:46:50:36:a4:0a:e1:7c:a7:a1:59:e2:1e:78:
16:a6:e7:a8:4e:2d:8a:24:3c:82:f9:ed:4a:e1:f7:
48:24:a9:b8:a7:29:8a:9c:6a:b6:89:17:18:6d:c1:
bd:ff:9e:8b:87:90:59:a8:a0:60:fe:9a:5b:32:f9:
04:07:61:ca:a1:32:d4:f5:9c:60:5e:98:6a:5c:43:
1a:f4:b1:b2:c0:e0:ac:41:e3:7a:ca:9c:1f:1b:6d:
64:d0:12:f5:ea:8c:9d:95:36:a3:05:9e:31:53:04:
3b:c6:3d:b9:fc:1e:58:98:39:f4:14:39:bc:54:a3:
e1:99:3d:c6:59:2b:54:9e:46:85:a7:89:8a:fb:72:
91:e5:f4:05:dc:48:c0:09:5e:78:5c:38:05:36:d8:
ac:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E5:61:E3:EF:76:ED:24:D9:55:13:C7:7E:A0:E6:79:AF:CC:94:67
X509v3 Authority Key Identifier:
keyid:21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:75:54:67:24:6e:56:12:ba:e2:c8:2c:6c:93:c3:7b:dd:04:
c5:3c:2d:63:b3:7b:18:24:8d:4f:db:bb:e4:9a:ad:cc:39:46:
ac:df:b9:c9:4e:ee:73:54:a3:91:b1:a6:bf:fa:1b:2b:64:f2:
5a:c0:44:7c:44:11:3a:64:d9:23:f3:3e:87:b6:1a:dd:de:75:
da:b4:d0:ad:f0:49:ef:09:67:2c:d3:66:20:f2:3e:85:4a:87:
a8:ca:e5:d2:57:75:87:b2:f6:81:ef:df:c9:a0:51:fd:0c:73:
5b:67:95:6e:58:ce:bc:15:4e:76:7d:66:47:5d:7d:43:af:c7:
5c:c5:38:7b:c9:7a:61:d8:fc:e6:30:13:86:a2:0d:83:23:b8:
05:23:5e:71:a3:66:47:2c:72:50:d7:08:f6:8a:63:36:0e:10:
88:5c:1a:5f:fe:67:d5:51:bc:75:17:85:b0:ff:9c:bd:fe:58:
f1:6d:b7:9a:45:d2:ca:d8:6a:03:66:09:ed:db:b1:dd:41:f9:
d9:0c:71:75:b0:e4:3e:55:34:78:5f:df:46:f8:09:ee:ac:93:
8c:27:c2:11:19:f3:e0:56:69:28:8c:77:14:95:66:73:69:67:
5a:35:58:38:ea:2b:47:a9:ab:47:b4:b1:60:86:6e:d4:0a:2b:
c1:ef:ec:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYQ7ixN2eVjzaTqnIzO2NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYWE5ZjE3ZjhjY2E0N2RmYjkyYjQ5MDJkMmMyYjMyMDNk
YmVkYTYwHhcNMjUwODIzMTAwMjIxWhcNMjUwODI0MTAwMjIxWjAzMTEwLwYDVQQD
EygxYWU1NjFlM2VmNzZlZDI0ZDk1NTEzYzc3ZWEwZTY3OWFmY2M5NDY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5G2eXfOqKYp6/jcdGl3ZWfVvw1Lq
q4XRDQ0eoOt64lrf/4kCpEScZDiWGg464eHK0C7ekyer1SKP+bEWmKhV9xI+5uWL
7n4bo98OdPKM6wNahwD5Lu89CrTfKbZ7LIS4pAP2AIv/vOFJGEZQNqQK4XynoVni
HngWpueoTi2KJDyC+e1K4fdIJKm4pymKnGq2iRcYbcG9/56Lh5BZqKBg/ppbMvkE
B2HKoTLU9ZxgXphqXEMa9LGywOCsQeN6ypwfG21k0BL16oydlTajBZ4xUwQ7xj25
/B5YmDn0FDm8VKPhmT3GWStUnkaFp4mK+3KR5fQF3EjACV54XDgFNtiskwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBrlYePvdu0k2VUTx36g5nmvzJRnMB8GA1UdIwQY
MBaAFCGqnxf4zKR9+5K0kC0sKzID2+2mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWFxZkZfak1wSDM3a3JTUUxTd3JNZ1BiN2FZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9kNjhkZmYtOTVlMS00YzkwLTllYzYt
NTUwMjkyODBmZWMxLzEvSWFxZkZfak1wSDM3a3JTUUxTd3JNZ1BiN2FZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi9kNjhkZmYtOTVlMS00YzkwLTllYzYtNTUwMjkyODBmZWMx
LzEvSWFxZkZfak1wSDM3a3JTUUxTd3JNZ1BiN2FZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADXVUZyRu
VhK64sgsbJPDe90ExTwtY7N7GCSNT9u75JqtzDlGrN+5yU7uc1SjkbGmv/obK2Ty
WsBEfEQROmTZI/M+h7Ya3d512rTQrfBJ7wlnLNNmIPI+hUqHqMrl0ld1h7L2ge/f
yaBR/QxzW2eVbljOvBVOdn1mR119Q6/HXMU4e8l6Ydj85jAThqINgyO4BSNecaNm
RyxyUNcI9opjNg4QiFwaX/5n1VG8dReFsP+cvf5Y8W23mkXSythqA2YJ7dux3UH5
2QxxdbDkPlU0eF/fRvgJ7qyTjCfCERnz4FZpKIx3FJVmc2lnWjVYOOorR6mrR7Sx
YIZu1Aorwe/shg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:24:15 2025 by rpki-client