Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
File: IZUnwiTwCiiy9MtOExLXSNXKUWk.mft (raw, json)
Hash identifier: ab0LLWj1Hhy4vyNu2fYUC8S6ybjyWs0R0/x4OKnHu4M=
Subject key identifier: 5F:DD:53:C5:D4:A9:DC:E7:58:08:9D:84:4E:92:3C:BE:67:58:5E:C5
Authority key identifier: 21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
Certificate issuer: /CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Certificate serial: 0198D4DFEA2B099C1605005FDEB3355A60A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 03:01:40 +0000
Manifest this update: Sat 23 Aug 2025 03:01:40 +0000
Manifest next update: Sun 24 Aug 2025 03:01:40 +0000
Files and hashes: 1: IZUnwiTwCiiy9MtOExLXSNXKUWk.crl (hash: +7ij89sQ9zZNsx4e8L3NIB+b4sJGobhKrimXxMJTY30=)
2: l8INnv3QTRexkISN97lg6HuKeCY.roa (hash: pDEsYARUuEJK1pYQPfyythtLkxkCfRaxj9c1qzwCEIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:ea:2b:09:9c:16:05:00:5f:de:b3:35:5a:60:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Validity
Not Before: Aug 23 03:01:40 2025 GMT
Not After : Aug 24 03:01:40 2025 GMT
Subject: CN=5fdd53c5d4a9dce758089d844e923cbe67585ec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5a:3e:6e:0b:82:bf:56:25:34:9b:99:38:d4:
0f:88:94:cb:83:49:06:43:c0:66:da:73:20:31:bf:
c4:8a:d7:be:a0:37:3c:30:85:08:70:01:0a:73:59:
25:82:6a:73:f2:da:62:a9:66:b0:7a:86:de:47:67:
2e:98:b8:0c:2e:24:e1:68:3e:64:63:b6:9c:a2:80:
82:40:7d:02:7a:f6:e0:d1:e4:fb:f8:eb:d1:c3:13:
57:bb:35:8d:59:79:e2:f5:2c:ec:14:d6:e2:d5:b7:
4b:8c:b5:0e:ae:6b:38:e4:64:7f:15:4b:42:5c:59:
e2:c9:61:a8:51:ce:ba:e0:e6:52:d4:35:12:d5:b1:
74:eb:14:64:5c:0e:67:8e:13:82:9c:83:4d:c9:d6:
91:64:84:e3:02:01:59:d8:d4:a2:c2:27:97:b4:be:
de:1d:68:52:3f:e5:3f:0d:c8:5c:87:ee:a0:f7:5c:
af:c4:b3:7e:99:b4:35:2b:3a:0d:1d:fb:66:c3:9d:
b6:e8:79:06:1c:bc:b2:5a:23:2a:32:82:4e:0c:e3:
55:92:18:75:ca:54:90:18:3f:93:06:6c:33:9c:33:
02:e5:17:d9:ac:f6:7b:4e:e6:b9:2b:f9:bd:f9:74:
a0:f7:2a:6d:fd:27:51:37:76:e4:9d:7a:2a:ee:93:
a8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:DD:53:C5:D4:A9:DC:E7:58:08:9D:84:4E:92:3C:BE:67:58:5E:C5
X509v3 Authority Key Identifier:
keyid:21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:17:05:2c:a0:d1:61:2a:d8:08:3c:37:ff:60:8c:f6:30:50:
b7:18:af:e0:26:19:d1:64:1a:9a:c4:ef:e0:ea:2a:9a:08:33:
62:71:e3:31:11:db:0c:21:32:e4:8f:bc:fe:9e:90:49:ad:96:
e7:75:1f:5e:0d:1f:b0:3a:26:ae:0f:53:30:e1:a4:a3:84:b0:
70:63:7f:5d:7f:fc:c3:3f:e2:52:ae:b0:6b:78:26:2e:48:c6:
fb:36:72:8b:40:46:9b:69:d0:63:28:47:9c:89:17:49:be:c0:
94:a0:f1:b2:39:48:2a:cf:e7:b5:4c:54:54:ce:c8:47:69:00:
44:05:fe:4c:79:6c:51:4f:2d:d7:b0:38:ef:9b:6a:9b:3f:83:
fe:48:62:dd:fc:e6:a9:6b:86:25:44:64:c9:04:60:95:15:17:
61:ad:d3:f9:68:f8:0c:e0:9a:b3:55:ff:6b:54:0e:e1:43:cc:
07:00:06:6d:64:34:37:08:75:68:a0:75:b3:96:3f:df:c2:74:
be:2f:f5:8c:0c:ae:7b:40:90:4a:4f:50:c8:22:6d:42:2b:9b:
13:f5:68:7e:01:da:49:96:87:16:84:65:e4:d0:69:a2:1f:8c:
04:f8:fd:b7:78:56:5f:80:4f:63:03:81:84:92:4e:e6:e1:3a:
dd:13:16:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU3+orCZwWBQBf3rM1WmCoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOTUyN2MyMjRmMDBhMjhiMmY0Y2I0ZTEzMTJkNzQ4ZDVj
YTUxNjkwHhcNMjUwODIzMDMwMTQwWhcNMjUwODI0MDMwMTQwWjAzMTEwLwYDVQQD
Eyg1ZmRkNTNjNWQ0YTlkY2U3NTgwODlkODQ0ZTkyM2NiZTY3NTg1ZWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFo+bguCv1YlNJuZONQPiJTLg0kG
Q8Bm2nMgMb/Eite+oDc8MIUIcAEKc1klgmpz8tpiqWaweobeR2cumLgMLiThaD5k
Y7acooCCQH0Cevbg0eT7+OvRwxNXuzWNWXni9SzsFNbi1bdLjLUOrms45GR/FUtC
XFniyWGoUc664OZS1DUS1bF06xRkXA5njhOCnINNydaRZITjAgFZ2NSiwieXtL7e
HWhSP+U/Dchch+6g91yvxLN+mbQ1KzoNHftmw5226HkGHLyyWiMqMoJODONVkhh1
ylSQGD+TBmwznDMC5RfZrPZ7Tua5K/m9+XSg9ypt/SdRN3bknXoq7pOotQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF/dU8XUqdznWAidhE6SPL5nWF7FMB8GA1UdIwQY
MBaAFCGVJ8Ik8AoosvTLThMS10jVylFpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVpVbndpVHdDaWl5OU10T0V4TFhTTlhLVVdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi84NTQwZGItZjkwMS00MzNiLTgxYmIt
OTdkNTVmMzkxNTYxLzEvSVpVbndpVHdDaWl5OU10T0V4TFhTTlhLVVdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi84NTQwZGItZjkwMS00MzNiLTgxYmItOTdkNTVmMzkxNTYx
LzEvSVpVbndpVHdDaWl5OU10T0V4TFhTTlhLVVdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcRcFLKDR
YSrYCDw3/2CM9jBQtxiv4CYZ0WQamsTv4OoqmggzYnHjMRHbDCEy5I+8/p6QSa2W
53UfXg0fsDomrg9TMOGko4SwcGN/XX/8wz/iUq6wa3gmLkjG+zZyi0BGm2nQYyhH
nIkXSb7AlKDxsjlIKs/ntUxUVM7IR2kARAX+THlsUU8t17A475tqmz+D/khi3fzm
qWuGJURkyQRglRUXYa3T+Wj4DOCas1X/a1QO4UPMBwAGbWQ0Nwh1aKB1s5Y/38J0
vi/1jAyue0CQSk9QyCJtQiubE/VofgHaSZaHFoRl5NBpoh+MBPj9t3hWX4BPYwOB
hJJO5uE63RMWaA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:04 2025 by rpki-client