Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
File: iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft (raw, json)
Hash identifier: wnFT3WNZ4pIc+HviacxY2kG1OwG7fXYiHSX9pdkKfwc=
Subject key identifier: 30:55:96:73:61:27:EE:A7:53:4E:77:84:14:5F:EF:A7:D1:65:D9:9D
Authority key identifier: 89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
Certificate issuer: /CN=898825d2f064989b38c781f2a8535189a26928c3
Certificate serial: 0199FDD96638F1F163AFDCB66F11E0C6D9C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
Manifest number: 1565
Signing time: Sun 19 Oct 2025 19:01:47 +0000
Manifest this update: Sun 19 Oct 2025 19:01:47 +0000
Manifest next update: Mon 20 Oct 2025 19:01:47 +0000
Files and hashes: 1: iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl (hash: lphHIVxFxoLqLBSt6vIVXuIaq8EXT+H/F3hn4rmbuuY=)
2: zbnBRUeVPnEEwLI2vvj0r39FPtE.roa (hash: 4AvpkRySedv9+g3/SFfJUIRAayJwpWmaa1FdREtJu9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:66:38:f1:f1:63:af:dc:b6:6f:11:e0:c6:d9:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=898825d2f064989b38c781f2a8535189a26928c3
Validity
Not Before: Oct 19 19:01:47 2025 GMT
Not After : Oct 20 19:01:47 2025 GMT
Subject: CN=305596736127eea7534e7784145fefa7d165d99d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b9:ed:7c:f5:82:23:bb:b7:65:02:3f:b0:5a:
a6:b4:22:a9:66:fb:88:71:10:6c:a5:da:1f:cd:23:
d7:2e:8a:d1:6e:1a:93:c2:40:85:79:91:41:d9:2e:
22:c2:11:e8:da:8f:33:45:54:78:01:62:cf:78:a4:
dc:6d:0b:00:d1:da:fd:17:4d:15:5d:52:b2:a8:4f:
89:d1:81:0e:28:5c:eb:1c:ce:bb:3b:d3:aa:54:93:
a1:6b:5d:12:51:fb:67:97:d6:eb:55:cc:0a:7d:2e:
7f:5e:73:f3:fa:cd:cb:c5:a8:4b:13:52:7c:ed:ab:
7a:dd:76:5d:c7:2d:29:50:99:70:db:30:75:4b:a8:
52:11:9e:e0:a1:c3:b8:ee:41:13:73:da:4e:b6:b5:
dd:a2:be:62:c8:e8:39:41:ac:f1:93:6b:d3:e4:85:
ac:f6:ff:64:e1:d6:ac:c7:ca:76:d2:50:33:15:f1:
7f:b2:8d:af:1d:d3:48:d8:60:5d:53:b7:e4:41:3e:
63:15:18:b5:d0:6a:dc:d4:82:ba:04:a8:56:95:5a:
de:f1:0f:12:33:4c:0c:a9:7b:8a:5d:cd:7f:e0:f5:
80:d9:59:fb:a0:59:88:6c:9e:83:cb:9a:67:25:32:
d4:0c:25:40:42:a1:f9:c0:f0:27:58:34:6f:28:2e:
70:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:55:96:73:61:27:EE:A7:53:4E:77:84:14:5F:EF:A7:D1:65:D9:9D
X509v3 Authority Key Identifier:
keyid:89:88:25:D2:F0:64:98:9B:38:C7:81:F2:A8:53:51:89:A2:69:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYgl0vBkmJs4x4HyqFNRiaJpKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0aa4d0-05e4-4802-99d8-ecae41446b77/1/iYgl0vBkmJs4x4HyqFNRiaJpKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:4c:cc:dd:9a:a9:d1:8c:e5:e8:71:43:73:da:8f:71:dd:17:
f0:45:6e:06:9d:5a:0f:00:2b:55:1e:d6:cf:32:ee:8e:48:85:
01:94:ad:82:09:b1:be:d1:be:b2:31:44:44:a1:de:30:70:15:
6a:4c:c5:fb:17:0d:aa:e5:98:22:96:bf:c7:d6:c9:59:de:3c:
54:85:62:d6:4e:cc:a7:b5:08:d7:73:72:d6:c5:25:d1:16:c3:
ec:8e:05:b2:c2:4c:48:7e:50:5c:27:fd:a1:99:c7:36:8c:1f:
3d:16:91:50:24:7b:4c:07:c1:e8:2b:26:75:5c:65:b0:cb:c6:
b5:0b:e7:f2:c1:35:cb:d4:96:79:43:52:bb:33:e9:e2:56:e6:
90:59:49:c5:25:60:fe:61:a2:f3:2a:42:4c:4f:da:1f:8d:ac:
62:dd:cb:87:1c:14:a4:fb:57:29:b3:23:58:9b:45:a1:f7:97:
c9:55:9d:ed:91:1c:61:00:b8:9f:e4:34:3a:35:9d:5b:82:78:
93:ed:bb:c5:6a:28:ea:88:ab:ce:30:68:d3:26:60:96:9f:e2:
62:35:87:3a:9d:a8:e2:02:e7:74:70:ed:2e:ca:dc:04:07:69:
e6:06:8f:06:3f:21:74:8c:da:a5:25:d2:d5:19:96:f8:ec:85:
3a:d4:b3:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92WY48fFjr9y2bxHgxtnGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5ODgyNWQyZjA2NDk4OWIzOGM3ODFmMmE4NTM1MTg5YTI2
OTI4YzMwHhcNMjUxMDE5MTkwMTQ3WhcNMjUxMDIwMTkwMTQ3WjAzMTEwLwYDVQQD
EygzMDU1OTY3MzYxMjdlZWE3NTM0ZTc3ODQxNDVmZWZhN2QxNjVkOTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLntfPWCI7u3ZQI/sFqmtCKpZvuI
cRBspdofzSPXLorRbhqTwkCFeZFB2S4iwhHo2o8zRVR4AWLPeKTcbQsA0dr9F00V
XVKyqE+J0YEOKFzrHM67O9OqVJOha10SUftnl9brVcwKfS5/XnPz+s3LxahLE1J8
7at63XZdxy0pUJlw2zB1S6hSEZ7gocO47kETc9pOtrXdor5iyOg5Qazxk2vT5IWs
9v9k4dasx8p20lAzFfF/so2vHdNI2GBdU7fkQT5jFRi10Grc1IK6BKhWlVre8Q8S
M0wMqXuKXc1/4PWA2Vn7oFmIbJ6Dy5pnJTLUDCVAQqH5wPAnWDRvKC5wWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDBVlnNhJ+6nU053hBRf76fRZdmdMB8GA1UdIwQY
MBaAFImIJdLwZJibOMeB8qhTUYmiaSjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVlnbDB2QmttSnM0eDRIeXFGTlJpYUpwS01NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8wYWE0ZDAtMDVlNC00ODAyLTk5ZDgt
ZWNhZTQxNDQ2Yjc3LzEvaVlnbDB2QmttSnM0eDRIeXFGTlJpYUpwS01NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8wYWE0ZDAtMDVlNC00ODAyLTk5ZDgtZWNhZTQxNDQ2Yjc3
LzEvaVlnbDB2QmttSnM0eDRIeXFGTlJpYUpwS01NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG0zM3Zqp
0Yzl6HFDc9qPcd0X8EVuBp1aDwArVR7WzzLujkiFAZStggmxvtG+sjFERKHeMHAV
akzF+xcNquWYIpa/x9bJWd48VIVi1k7Mp7UI13Ny1sUl0RbD7I4FssJMSH5QXCf9
oZnHNowfPRaRUCR7TAfB6CsmdVxlsMvGtQvn8sE1y9SWeUNSuzPp4lbmkFlJxSVg
/mGi8ypCTE/aH42sYt3LhxwUpPtXKbMjWJtFofeXyVWd7ZEcYQC4n+Q0OjWdW4J4
k+27xWoo6oirzjBo0yZglp/iYjWHOp2o4gLndHDtLsrcBAdp5gaPBj8hdIzapSXS
1RmW+OyFOtSz0Q==
-----END CERTIFICATE-----
Generated at Mon Oct 20 05:28:22 2025 by rpki-client