Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: oHZHiF0mE9Yon0FYAwfron4sMLc3ktRC76o+ljnmReY=
Subject key identifier: CE:EC:79:78:D1:17:BC:A1:01:CD:33:63:CA:62:CC:1F:5A:0D:14:DE
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 0197B8FCC1E1013B945B3C9BCB5C8CEBD5C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 1257
Signing time: Sun 29 Jun 2025 00:01:01 +0000
Manifest this update: Sun 29 Jun 2025 00:01:01 +0000
Manifest next update: Mon 30 Jun 2025 00:01:01 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: a8lenriepxatWSxPmntUwUs0JLEm2no44dMNzi4fKdw=)
2: aEJUX-P3iWzm8iZ2YmNhX1BUm-w.roa (hash: UCW6fp2JBu8X3L8wVEatff2uZp8yn3edNh91K1NyH88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fc:c1:e1:01:3b:94:5b:3c:9b:cb:5c:8c:eb:d5:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Jun 29 00:01:01 2025 GMT
Not After : Jun 30 00:01:01 2025 GMT
Subject: CN=ceec7978d117bca101cd3363ca62cc1f5a0d14de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:06:e7:56:45:21:1d:16:a7:28:63:b5:a4:0a:
53:4d:e1:eb:2a:24:8f:76:6e:46:5c:ec:2d:1e:70:
ab:e0:2b:58:27:fb:5f:8e:5e:58:9e:fd:51:bb:01:
98:c2:fd:71:5f:2b:45:a5:81:72:fa:5b:ea:6e:a5:
c0:1f:20:61:81:06:29:5d:4a:07:c9:a4:1f:da:bf:
5b:f5:32:61:5f:0a:15:72:9f:3f:1a:7b:ac:08:b2:
b2:96:26:81:4b:76:17:b7:d8:c0:a6:f0:48:9b:ce:
b6:17:24:61:69:52:4c:b5:43:cc:90:01:03:55:64:
e1:a4:a7:fb:49:d9:8f:b4:15:2f:44:4a:a9:9e:b6:
06:4b:02:6c:f8:1a:37:2e:26:50:4e:1e:4c:fa:49:
8f:35:f8:0f:38:e2:f0:4a:67:80:8d:ad:2b:29:68:
ce:16:22:8e:9a:3d:f5:29:6f:7f:6f:3f:ec:5a:4f:
b0:f7:57:45:70:a0:5a:ae:31:a4:4e:ce:0e:7d:53:
83:45:71:ab:ff:68:96:74:5a:17:5d:8c:91:f2:9c:
96:10:d5:a0:83:27:e5:0a:ce:de:2f:0b:67:c5:62:
dd:c1:ba:df:36:2e:97:00:29:c6:2c:99:a8:a4:26:
47:2a:56:80:81:51:2f:38:40:e1:2e:a7:65:d9:a2:
1f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:EC:79:78:D1:17:BC:A1:01:CD:33:63:CA:62:CC:1F:5A:0D:14:DE
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:bf:5e:cd:a6:ab:30:91:b0:ea:dc:a3:4f:07:48:96:41:68:
1e:38:1c:a4:7d:ce:b4:7b:a4:d4:b8:f7:78:19:c4:6e:a9:02:
7b:a4:16:7f:c6:f2:d4:a3:fb:3d:2b:60:8e:17:10:86:74:5d:
b8:f7:e1:cd:3e:43:3b:9e:6b:7d:80:81:34:00:b8:39:c4:82:
2c:67:7f:37:e1:c0:d9:83:8e:fb:e7:ed:7a:57:6d:7f:47:09:
f7:33:4e:3a:f2:33:4a:5c:9e:5c:86:33:ca:ce:b6:fc:fb:c7:
ce:cd:b2:38:c1:bd:29:c5:e8:38:2f:02:4c:71:f0:58:06:82:
32:9b:51:16:ce:ba:76:60:44:f6:61:9a:58:c1:eb:aa:9a:e0:
da:45:9a:d4:f5:a6:40:d8:1d:9d:45:ac:7e:cc:cf:51:62:a1:
74:18:32:12:41:80:0f:fc:91:12:81:aa:72:c5:26:5a:49:7a:
f7:6d:a1:07:2c:9b:f4:c2:35:eb:3c:92:40:28:a3:c0:d6:3e:
53:62:a6:69:3b:46:4b:82:89:72:7e:00:30:2f:fd:c3:f3:b4:
aa:98:65:28:3e:2c:6a:4d:71:d9:bf:25:2f:15:3e:ec:b0:83:
2f:08:1e:8c:e8:e4:38:f0:54:9a:82:8c:71:0f:3f:36:54:da:
a7:c4:49:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4/MHhATuUWzyby1yM69XGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMDRkNjI5MzI3NDM5NmY1YThkNjkxNDg1ZDY4NzZhMGEy
MDcxZDkwHhcNMjUwNjI5MDAwMTAxWhcNMjUwNjMwMDAwMTAxWjAzMTEwLwYDVQQD
EyhjZWVjNzk3OGQxMTdiY2ExMDFjZDMzNjNjYTYyY2MxZjVhMGQxNGRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQbnVkUhHRanKGO1pApTTeHrKiSP
dm5GXOwtHnCr4CtYJ/tfjl5Ynv1RuwGYwv1xXytFpYFy+lvqbqXAHyBhgQYpXUoH
yaQf2r9b9TJhXwoVcp8/GnusCLKyliaBS3YXt9jApvBIm862FyRhaVJMtUPMkAED
VWThpKf7SdmPtBUvREqpnrYGSwJs+Bo3LiZQTh5M+kmPNfgPOOLwSmeAja0rKWjO
FiKOmj31KW9/bz/sWk+w91dFcKBarjGkTs4OfVODRXGr/2iWdFoXXYyR8pyWENWg
gyflCs7eLwtnxWLdwbrfNi6XACnGLJmopCZHKlaAgVEvOEDhLqdl2aIfFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM7seXjRF7yhAc0zY8pizB9aDRTeMB8GA1UdIwQY
MBaAFCAE1ikydDlvWo1pFIXWh2oKIHHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzIt
NGVmOWNjNzUxNTE3LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzItNGVmOWNjNzUxNTE3
LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH79ezaar
MJGw6tyjTwdIlkFoHjgcpH3OtHuk1Lj3eBnEbqkCe6QWf8by1KP7PStgjhcQhnRd
uPfhzT5DO55rfYCBNAC4OcSCLGd/N+HA2YOO++fteldtf0cJ9zNOOvIzSlyeXIYz
ys62/PvHzs2yOMG9KcXoOC8CTHHwWAaCMptRFs66dmBE9mGaWMHrqprg2kWa1PWm
QNgdnUWsfszPUWKhdBgyEkGAD/yREoGqcsUmWkl6922hByyb9MI16zySQCijwNY+
U2KmaTtGS4KJcn4AMC/9w/O0qphlKD4sak1x2b8lLxU+7LCDLwgejOjkOPBUmoKM
cQ8/NlTap8RJ6A==
-----END CERTIFICATE-----
Generated at Sun Jun 29 08:48:22 2025 by rpki-client