Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft
File: IlS8wDKT460OGaej_Rsc-9NMCZA.mft (raw, json)
Hash identifier: ZD1xLaxM13x2vWw1wCZor6G18h5mqBZwMBuYQA8oSDk=
Subject key identifier: 17:9B:AD:B3:AC:70:10:73:F5:5E:E9:D4:A2:53:88:CF:87:35:75:65
Authority key identifier: 22:54:BC:C0:32:93:E3:AD:0E:19:A7:A3:FD:1B:1C:FB:D3:4C:09:90
Certificate issuer: /CN=2254bcc03293e3ad0e19a7a3fd1b1cfbd34c0990
Certificate serial: 0199FB0F17569540990F9B15C73A8C935973
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft
Manifest number: 1483
Signing time: Sun 19 Oct 2025 06:01:34 +0000
Manifest this update: Sun 19 Oct 2025 06:01:34 +0000
Manifest next update: Mon 20 Oct 2025 06:01:34 +0000
Files and hashes: 1: IlS8wDKT460OGaej_Rsc-9NMCZA.crl (hash: Z3F5U2e4VNWeWvKGpmiRFVur8beyYOIr5Wyxpavu7+k=)
2: iYAJK9Z1vSabwblAeb2bbovBgWQ.roa (hash: UwR7QsThfF3C52K+v8ctdTEGP4PnZH+tKi6tWCBxuy4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:17:56:95:40:99:0f:9b:15:c7:3a:8c:93:59:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2254bcc03293e3ad0e19a7a3fd1b1cfbd34c0990
Validity
Not Before: Oct 19 06:01:34 2025 GMT
Not After : Oct 20 06:01:34 2025 GMT
Subject: CN=179badb3ac701073f55ee9d4a25388cf87357565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3e:13:ee:e0:ec:bc:b9:a1:25:a6:d7:4d:6f:
50:85:2d:93:9e:a4:e8:6a:08:85:f3:0f:e6:b3:a2:
55:b0:33:86:82:8e:f3:f1:75:5e:5d:c9:1d:9f:c2:
ea:f6:6d:9f:59:e1:ba:b4:bd:fe:89:e4:94:8c:42:
91:38:76:20:21:92:fe:5a:fa:85:88:4d:23:b4:5b:
b2:6a:ff:3b:a9:5b:81:ce:9b:41:5b:fd:7d:88:75:
bf:2d:aa:d5:5a:26:d3:76:b9:6c:05:7a:f4:ec:df:
ea:4b:78:a3:6a:55:6a:d0:c3:8f:c7:67:ec:3c:cf:
63:1c:97:f8:6e:48:8a:86:58:69:2a:ce:1b:0b:6b:
cb:6b:db:7d:c0:e4:c4:d2:a7:70:a5:06:8e:29:b2:
18:a7:ce:29:3f:e5:de:6a:d7:5b:cb:84:e5:05:ff:
ad:94:6f:d7:4c:aa:48:e0:63:be:a9:3e:b2:81:ae:
c6:39:df:1e:98:79:5e:5e:ee:0f:40:a5:8d:f1:8c:
20:81:df:08:ec:0a:9c:6b:b1:46:fb:5a:00:7e:86:
15:41:79:50:de:d7:db:35:c3:82:e8:4d:ca:0e:13:
7e:34:17:8a:b0:6a:59:e6:44:e8:4c:e8:47:9d:82:
46:63:d2:05:bc:9a:29:a3:69:b2:00:12:2d:10:20:
fd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:9B:AD:B3:AC:70:10:73:F5:5E:E9:D4:A2:53:88:CF:87:35:75:65
X509v3 Authority Key Identifier:
keyid:22:54:BC:C0:32:93:E3:AD:0E:19:A7:A3:FD:1B:1C:FB:D3:4C:09:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IlS8wDKT460OGaej_Rsc-9NMCZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/a3a530-25aa-4023-9a80-4e347d551c3f/1/IlS8wDKT460OGaej_Rsc-9NMCZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:fb:bd:ee:d8:b4:e9:00:e3:13:05:39:d0:29:17:2f:b4:9e:
7e:a1:4f:73:56:5f:d9:66:0b:78:6c:21:cc:fd:60:c0:72:87:
e8:ab:b8:cb:c2:83:18:80:3a:35:d6:1b:f8:2b:a5:db:22:3d:
3f:e6:fc:9d:d8:fc:9d:fa:c1:f1:b8:81:e7:a7:54:e8:9e:b3:
9a:ed:ae:2c:9a:71:05:1c:25:22:2d:a1:fc:d3:c8:9f:14:02:
4f:48:c2:cc:40:5c:fb:46:ec:c3:e3:45:6f:3d:db:fd:11:b2:
5f:34:2f:bf:70:c2:48:a3:ef:ef:6e:60:9f:1a:1f:da:c0:a9:
a2:c0:08:95:3c:b2:89:31:d6:a4:91:90:b4:21:f6:bf:72:29:
e1:ab:e1:8a:d8:9c:79:bd:33:ba:58:5e:b5:a6:66:70:15:7e:
c1:70:27:6b:a0:08:0b:57:b9:2a:7d:ee:48:d0:e5:52:e9:0a:
ee:08:e7:af:16:57:e6:27:3f:00:52:2a:2f:4c:a5:1b:3a:a4:
b2:4f:67:f8:e1:0a:6e:da:32:0f:13:76:97:f8:a0:34:4a:95:
ff:9c:61:d2:9a:0a:32:2e:c4:f7:12:07:4d:08:f9:05:b6:53:
f7:ec:02:ae:60:3d:30:ef:0b:6d:46:4a:3e:40:86:ee:d8:80:
db:21:19:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7DxdWlUCZD5sVxzqMk1lzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNTRiY2MwMzI5M2UzYWQwZTE5YTdhM2ZkMWIxY2ZiZDM0
YzA5OTAwHhcNMjUxMDE5MDYwMTM0WhcNMjUxMDIwMDYwMTM0WjAzMTEwLwYDVQQD
EygxNzliYWRiM2FjNzAxMDczZjU1ZWU5ZDRhMjUzODhjZjg3MzU3NTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApT4T7uDsvLmhJabXTW9QhS2TnqTo
agiF8w/ms6JVsDOGgo7z8XVeXckdn8Lq9m2fWeG6tL3+ieSUjEKROHYgIZL+WvqF
iE0jtFuyav87qVuBzptBW/19iHW/LarVWibTdrlsBXr07N/qS3ijalVq0MOPx2fs
PM9jHJf4bkiKhlhpKs4bC2vLa9t9wOTE0qdwpQaOKbIYp84pP+Xeatdby4TlBf+t
lG/XTKpI4GO+qT6yga7GOd8emHleXu4PQKWN8Ywggd8I7Aqca7FG+1oAfoYVQXlQ
3tfbNcOC6E3KDhN+NBeKsGpZ5kToTOhHnYJGY9IFvJopo2myABItECD9UQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBebrbOscBBz9V7p1KJTiM+HNXVlMB8GA1UdIwQY
MBaAFCJUvMAyk+OtDhmno/0bHPvTTAmQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWxTOHdES1Q0NjBPR2Flal9Sc2MtOU5NQ1pBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9hM2E1MzAtMjVhYS00MDIzLTlhODAt
NGUzNDdkNTUxYzNmLzEvSWxTOHdES1Q0NjBPR2Flal9Sc2MtOU5NQ1pBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni9hM2E1MzAtMjVhYS00MDIzLTlhODAtNGUzNDdkNTUxYzNm
LzEvSWxTOHdES1Q0NjBPR2Flal9Sc2MtOU5NQ1pBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASfu97ti0
6QDjEwU50CkXL7SefqFPc1Zf2WYLeGwhzP1gwHKH6Ku4y8KDGIA6NdYb+Cul2yI9
P+b8ndj8nfrB8biB56dU6J6zmu2uLJpxBRwlIi2h/NPInxQCT0jCzEBc+0bsw+NF
bz3b/RGyXzQvv3DCSKPv725gnxof2sCposAIlTyyiTHWpJGQtCH2v3Ip4avhitic
eb0zulhetaZmcBV+wXAna6AIC1e5Kn3uSNDlUukK7gjnrxZX5ic/AFIqL0ylGzqk
sk9n+OEKbtoyDxN2l/igNEqV/5xh0poKMi7E9xIHTQj5BbZT9+wCrmA9MO8LbUZK
PkCG7tiA2yEZ6A==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:42:36 2025 by rpki-client