Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
File: I7KazNTA1fX4N36n9GNDt2Brq3w.mft (raw, json)
Hash identifier: CyMp5P9eZfnZFcxeSJHX9QJBk8jOqivv1FXiI0ymbdw=
Subject key identifier: 8F:E2:D9:FA:B4:1D:A1:3C:D2:4B:62:7F:25:07:EC:C3:26:48:7D:8C
Authority key identifier: 23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
Certificate issuer: /CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Certificate serial: 0198D4E0769EC13230C14C771711C3AF7283
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
Manifest number: 0CC4
Signing time: Sat 23 Aug 2025 03:02:16 +0000
Manifest this update: Sat 23 Aug 2025 03:02:16 +0000
Manifest next update: Sun 24 Aug 2025 03:02:16 +0000
Files and hashes: 1: BY3gmYE2jAUAzVYgNkSF1kzgx38.roa (hash: o+T/NGOLnxz7Wv8sLagAUwobjqcsqFCif9O5RgNrbi4=)
2: I7KazNTA1fX4N36n9GNDt2Brq3w.crl (hash: g3C8/9G0MsbQb/u2/h9eIfkl/C6UguTv01hg2scYbW4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:76:9e:c1:32:30:c1:4c:77:17:11:c3:af:72:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b29accd4c0d5f5f8377ea7f46343b7606bab7c
Validity
Not Before: Aug 23 03:02:16 2025 GMT
Not After : Aug 24 03:02:16 2025 GMT
Subject: CN=8fe2d9fab41da13cd24b627f2507ecc326487d8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:95:bb:be:b0:e2:4e:f1:4f:1a:19:e9:44:e5:
a6:d8:a0:c7:aa:6e:4d:1e:43:1f:8a:2c:97:14:07:
8a:33:7a:bd:5b:69:b0:d7:6c:7f:55:f7:b2:06:47:
da:12:75:c3:19:ac:08:9e:7c:4a:0d:c9:9e:51:e3:
fb:85:8a:93:42:bd:b8:6a:99:d4:ea:2d:eb:3f:82:
fb:92:79:48:1e:9f:39:ac:35:ff:6e:75:3d:06:58:
82:78:8f:d1:ef:f7:22:36:4e:ec:bb:f0:61:de:0a:
61:c7:eb:23:e9:36:34:fe:00:82:2d:0d:e1:4e:e9:
5f:f3:a6:98:d0:63:60:f0:aa:ba:4c:39:0f:d8:8b:
07:09:0f:b1:44:3d:0b:de:ef:9d:6f:35:73:06:da:
59:b7:9a:4b:3b:b4:c7:11:a8:da:cc:f2:e3:90:5e:
39:94:59:c8:d2:78:13:dc:5f:f3:8b:af:ec:4c:a6:
4a:6c:fe:b3:06:c7:71:2a:f5:12:13:a5:65:33:b5:
42:98:ae:71:3c:aa:9c:37:aa:ea:35:14:ee:9b:82:
3b:4a:66:7b:e7:61:18:e6:6e:a4:2a:e1:17:7d:96:
cb:36:0d:86:5d:77:18:ad:74:a6:f2:2f:8c:f3:59:
47:e4:f3:ff:82:0f:31:68:d4:32:d1:9d:c4:0b:87:
e5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:E2:D9:FA:B4:1D:A1:3C:D2:4B:62:7F:25:07:EC:C3:26:48:7D:8C
X509v3 Authority Key Identifier:
keyid:23:B2:9A:CC:D4:C0:D5:F5:F8:37:7E:A7:F4:63:43:B7:60:6B:AB:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I7KazNTA1fX4N36n9GNDt2Brq3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/811db9-cbe0-4a89-a220-1174a428036b/1/I7KazNTA1fX4N36n9GNDt2Brq3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:d2:5f:20:3d:9d:f4:63:f2:33:ec:f0:f3:b1:7a:33:47:7a:
9c:04:c8:21:0a:83:af:fa:3b:f1:c3:40:64:0b:06:ce:aa:a3:
a2:97:24:3d:26:c7:ac:d5:b9:82:e0:79:f1:d7:7d:4e:d5:42:
1b:15:e8:72:47:73:b2:b0:dc:ec:b1:eb:6d:b4:1b:e7:b5:f0:
97:7c:ec:6d:12:05:9c:b3:d6:e5:5f:7a:51:be:21:b7:e6:f4:
18:7a:70:dc:47:be:d5:c5:c8:67:50:f0:91:cd:0f:cc:fd:f5:
10:8b:ca:89:4d:c7:fa:e0:a8:6f:01:e5:33:74:dd:20:fc:65:
0c:45:35:6f:7f:84:dd:97:e5:e1:03:d5:8e:ad:8f:2f:5c:6b:
82:80:f7:76:02:6f:1e:aa:e4:a7:e2:59:e4:c3:00:8b:7c:1a:
45:d6:81:d9:64:44:ac:4f:b0:2b:89:91:48:d2:2d:3d:28:32:
b7:b4:45:bb:db:8d:12:1a:01:3a:aa:b7:bc:4e:69:5f:70:6c:
a6:34:f4:e6:06:05:79:2c:6d:86:6c:9a:c4:c2:5a:32:46:0d:
d4:f7:67:93:6f:a9:1a:92:79:5f:7e:82:b4:9a:2b:38:e4:ae:
e3:89:90:14:15:4f:c0:b9:91:02:98:dd:a8:37:91:93:19:ae:
f8:b5:88:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4HaewTIwwUx3FxHDr3KDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzYjI5YWNjZDRjMGQ1ZjVmODM3N2VhN2Y0NjM0M2I3NjA2
YmFiN2MwHhcNMjUwODIzMDMwMjE2WhcNMjUwODI0MDMwMjE2WjAzMTEwLwYDVQQD
Eyg4ZmUyZDlmYWI0MWRhMTNjZDI0YjYyN2YyNTA3ZWNjMzI2NDg3ZDhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspW7vrDiTvFPGhnpROWm2KDHqm5N
HkMfiiyXFAeKM3q9W2mw12x/VfeyBkfaEnXDGawInnxKDcmeUeP7hYqTQr24apnU
6i3rP4L7knlIHp85rDX/bnU9BliCeI/R7/ciNk7su/Bh3gphx+sj6TY0/gCCLQ3h
Tulf86aY0GNg8Kq6TDkP2IsHCQ+xRD0L3u+dbzVzBtpZt5pLO7THEajazPLjkF45
lFnI0ngT3F/zi6/sTKZKbP6zBsdxKvUSE6VlM7VCmK5xPKqcN6rqNRTum4I7SmZ7
52EY5m6kKuEXfZbLNg2GXXcYrXSm8i+M81lH5PP/gg8xaNQy0Z3EC4fl8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI/i2fq0HaE80ktifyUH7MMmSH2MMB8GA1UdIwQY
MBaAFCOymszUwNX1+Dd+p/RjQ7dga6t8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84MTFkYjktY2JlMC00YTg5LWEyMjAt
MTE3NGE0MjgwMzZiLzEvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS84MTFkYjktY2JlMC00YTg5LWEyMjAtMTE3NGE0MjgwMzZi
LzEvSTdLYXpOVEExZlg0TjM2bjlHTkR0MkJycTN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFtJfID2d
9GPyM+zw87F6M0d6nATIIQqDr/o78cNAZAsGzqqjopckPSbHrNW5guB58dd9TtVC
GxXockdzsrDc7LHrbbQb57Xwl3zsbRIFnLPW5V96Ub4ht+b0GHpw3Ee+1cXIZ1Dw
kc0PzP31EIvKiU3H+uCobwHlM3TdIPxlDEU1b3+E3Zfl4QPVjq2PL1xrgoD3dgJv
Hqrkp+JZ5MMAi3waRdaB2WRErE+wK4mRSNItPSgyt7RFu9uNEhoBOqq3vE5pX3Bs
pjT05gYFeSxthmyaxMJaMkYN1Pdnk2+pGpJ5X36CtJorOOSu44mQFBVPwLmRApjd
qDeRkxmu+LWI5A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:40:17 2025 by rpki-client