Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
File: iKlKQUDhmzIGP8bnefWTFKdKDFE.mft (raw, json)
Hash identifier: tRa18erJh9EagO/+VxqNcNfxJa5nLIbNMF9+QbTq7jM=
Subject key identifier: B7:3E:7E:81:AC:D9:F5:7E:A9:C4:AD:D1:EE:B2:2D:FB:5F:44:1E:45
Authority key identifier: 88:A9:4A:41:40:E1:9B:32:06:3F:C6:E7:79:F5:93:14:A7:4A:0C:51
Certificate issuer: /CN=88a94a4140e19b32063fc6e779f59314a74a0c51
Certificate serial: 0197B70E6DE6E5C23186BD532211544EFC13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 15:01:05 +0000
Manifest this update: Sat 28 Jun 2025 15:01:05 +0000
Manifest next update: Sun 29 Jun 2025 15:01:05 +0000
Files and hashes: 1: S1kW1dWYYAUdp34Ffvr3hqq6tx4.roa (hash: HPlJ0x+8hEc9+twnaORN/j75RT2RjTnSkW49RshA3cE=)
2: iKlKQUDhmzIGP8bnefWTFKdKDFE.crl (hash: 3jdB4RH62H8ULA8runES9afezfIjArt1IuyZ9IuZD9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:6d:e6:e5:c2:31:86:bd:53:22:11:54:4e:fc:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a94a4140e19b32063fc6e779f59314a74a0c51
Validity
Not Before: Jun 28 15:01:05 2025 GMT
Not After : Jun 29 15:01:05 2025 GMT
Subject: CN=b73e7e81acd9f57ea9c4add1eeb22dfb5f441e45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3a:b3:a8:35:c9:ca:dc:16:a8:65:cb:c8:63:
e5:be:82:43:5d:15:d9:a6:40:4f:b6:e2:e9:ef:0b:
2a:b3:69:2d:ea:47:7e:62:38:8e:3b:08:45:35:1a:
43:86:fe:9f:5a:7f:8a:b8:fa:ce:39:7b:f4:42:79:
77:61:88:11:66:1f:97:75:13:87:a9:0d:a6:1e:2d:
56:4a:83:1e:f2:e1:cc:d5:4c:44:4f:af:eb:e8:19:
ac:dc:4d:18:8a:af:70:de:d8:35:ec:18:ae:58:03:
00:a0:15:90:b4:1d:c5:4e:e9:de:fb:e2:95:95:34:
ca:f6:24:f9:27:1e:0a:12:90:ca:18:25:ec:fd:17:
0b:ae:aa:9b:a5:0b:58:89:f8:e8:fb:87:64:61:28:
97:88:d0:c3:32:5d:65:64:8b:fa:9c:30:ad:a0:03:
1f:cb:ed:b2:e2:70:40:5b:97:b8:d0:8a:4d:f0:a1:
84:2a:bf:12:b8:09:55:32:fd:38:23:d0:00:4e:bd:
0a:76:16:2f:d8:d4:71:5d:7d:4a:16:99:b8:ed:33:
97:9d:14:5e:cb:2f:4a:ae:0d:cd:e3:b8:8f:09:a1:
7e:93:c9:20:b5:63:90:72:ae:b5:15:5a:f8:01:7c:
4d:15:04:23:01:98:b9:09:d5:c4:61:5a:3b:4e:f4:
a7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:3E:7E:81:AC:D9:F5:7E:A9:C4:AD:D1:EE:B2:2D:FB:5F:44:1E:45
X509v3 Authority Key Identifier:
keyid:88:A9:4A:41:40:E1:9B:32:06:3F:C6:E7:79:F5:93:14:A7:4A:0C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKlKQUDhmzIGP8bnefWTFKdKDFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/61ccd4-e053-45e0-b635-7fea066f0b96/1/iKlKQUDhmzIGP8bnefWTFKdKDFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:84:06:c5:7e:4e:0d:4f:ee:8d:e3:09:4a:25:f9:bb:d8:d6:
aa:f6:d2:89:b8:3e:55:44:17:8c:57:b0:22:9a:f6:a2:d4:37:
76:d3:c8:b8:b1:e1:0d:db:d6:d3:59:73:fb:8a:77:6d:cf:b4:
0b:d7:67:f4:05:eb:10:45:4e:45:85:9a:d8:da:09:cc:6c:f6:
a1:6a:08:41:1e:9a:0e:13:51:57:94:0d:8d:8d:c8:39:c1:7d:
a7:4e:aa:31:12:1e:21:69:18:fa:41:b1:3d:1b:60:6c:54:1b:
a8:7f:ba:af:bc:d6:a4:79:50:72:54:1c:3c:14:0b:e7:54:be:
b3:81:15:e1:49:bb:7a:56:c2:05:84:28:0a:d2:31:bb:c6:a2:
35:7d:58:28:f7:db:16:ea:f1:91:f1:f0:55:c0:99:73:d5:10:
00:ac:27:3a:c1:8a:21:21:cb:92:31:eb:ba:e8:9c:25:b8:93:
8b:f7:c2:cb:bc:d7:0d:12:e1:7c:0d:b3:f2:83:7e:65:23:8b:
82:5d:87:72:d4:a8:0d:68:37:c7:fd:bd:37:98:fa:64:7e:1f:
79:de:01:08:cf:24:d1:3e:ee:49:47:96:13:48:5b:8c:b5:95:
26:72:5a:74:3e:07:db:0e:97:f3:29:3a:8a:85:82:5b:9c:ad:
66:07:fc:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3Dm3m5cIxhr1TIhFUTvwTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YTk0YTQxNDBlMTliMzIwNjNmYzZlNzc5ZjU5MzE0YTc0
YTBjNTEwHhcNMjUwNjI4MTUwMTA1WhcNMjUwNjI5MTUwMTA1WjAzMTEwLwYDVQQD
EyhiNzNlN2U4MWFjZDlmNTdlYTljNGFkZDFlZWIyMmRmYjVmNDQxZTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjqzqDXJytwWqGXLyGPlvoJDXRXZ
pkBPtuLp7wsqs2kt6kd+YjiOOwhFNRpDhv6fWn+KuPrOOXv0Qnl3YYgRZh+XdROH
qQ2mHi1WSoMe8uHM1UxET6/r6Bms3E0Yiq9w3tg17BiuWAMAoBWQtB3FTune++KV
lTTK9iT5Jx4KEpDKGCXs/RcLrqqbpQtYifjo+4dkYSiXiNDDMl1lZIv6nDCtoAMf
y+2y4nBAW5e40IpN8KGEKr8SuAlVMv04I9AATr0KdhYv2NRxXX1KFpm47TOXnRRe
yy9Krg3N47iPCaF+k8kgtWOQcq61FVr4AXxNFQQjAZi5CdXEYVo7TvSnkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLc+foGs2fV+qcSt0e6yLftfRB5FMB8GA1UdIwQY
MBaAFIipSkFA4ZsyBj/G53n1kxSnSgxRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUtsS1FVRGhteklHUDhibmVmV1RGS2RLREZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS82MWNjZDQtZTA1My00NWUwLWI2MzUt
N2ZlYTA2NmYwYjk2LzEvaUtsS1FVRGhteklHUDhibmVmV1RGS2RLREZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS82MWNjZDQtZTA1My00NWUwLWI2MzUtN2ZlYTA2NmYwYjk2
LzEvaUtsS1FVRGhteklHUDhibmVmV1RGS2RLREZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABIQGxX5O
DU/ujeMJSiX5u9jWqvbSibg+VUQXjFewIpr2otQ3dtPIuLHhDdvW01lz+4p3bc+0
C9dn9AXrEEVORYWa2NoJzGz2oWoIQR6aDhNRV5QNjY3IOcF9p06qMRIeIWkY+kGx
PRtgbFQbqH+6r7zWpHlQclQcPBQL51S+s4EV4Um7elbCBYQoCtIxu8aiNX1YKPfb
FurxkfHwVcCZc9UQAKwnOsGKISHLkjHruuicJbiTi/fCy7zXDRLhfA2z8oN+ZSOL
gl2HctSoDWg3x/29N5j6ZH4fed4BCM8k0T7uSUeWE0hbjLWVJnJadD4H2w6X8yk6
ioWCW5ytZgf8AQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:25 2025 by rpki-client