Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.mft
File: iYDaJ6VQ15vmUa15rnGcz8vFo28.mft (raw, json)
Hash identifier: tZ/4Yl2kgRGHpSnnmoH/sj5fP/pTfH80hq9x9ZyN1Vg=
Subject key identifier: F3:4D:A2:87:B9:BF:AC:84:3D:88:DC:74:1C:00:D0:FD:BA:31:40:CA
Authority key identifier: 89:80:DA:27:A5:50:D7:9B:E6:51:AD:79:AE:71:9C:CF:CB:C5:A3:6F
Certificate issuer: /CN=8980da27a550d79be651ad79ae719ccfcbc5a36f
Certificate serial: 0197CC4C7B6C9EB6CB57AD91B5C1BF2B4793
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYDaJ6VQ15vmUa15rnGcz8vFo28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.mft
Manifest number: 032A
Signing time: Wed 02 Jul 2025 18:00:53 +0000
Manifest this update: Wed 02 Jul 2025 18:00:53 +0000
Manifest next update: Thu 03 Jul 2025 18:00:53 +0000
Files and hashes: 1: iYDaJ6VQ15vmUa15rnGcz8vFo28.crl (hash: 0wmfussnmX/UVOxFa7YCG71bsE/35ZaeSQEKIfWiNks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.mft
rsync://rpki.ripe.net/repository/DEFAULT/iYDaJ6VQ15vmUa15rnGcz8vFo28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 18:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:4c:7b:6c:9e:b6:cb:57:ad:91:b5:c1:bf:2b:47:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8980da27a550d79be651ad79ae719ccfcbc5a36f
Validity
Not Before: Jul 2 18:00:53 2025 GMT
Not After : Jul 3 18:00:53 2025 GMT
Subject: CN=f34da287b9bfac843d88dc741c00d0fdba3140ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:08:8b:f8:bb:e8:ef:49:69:33:7e:92:f0:1f:
7d:32:21:1f:be:f0:bc:1a:10:c5:44:25:a9:6f:15:
6f:e3:f7:2f:16:3e:72:18:a0:80:9d:56:5b:6d:71:
a0:24:66:4b:db:dd:a7:fe:6b:0e:4b:70:75:12:99:
3f:c2:6e:4e:88:c4:a4:88:2d:20:ff:5d:07:cc:62:
00:33:3c:e5:14:8d:ae:bd:90:e2:ea:36:fe:fd:dd:
30:5b:f2:91:8f:4f:fa:0f:cd:6a:79:e9:3d:f6:3c:
fa:5e:8b:e3:f3:e6:47:40:e5:b0:41:bc:6e:7a:03:
8f:a2:7b:3f:b9:90:cd:de:f8:63:bd:4b:db:95:c6:
d8:d2:41:8f:58:33:98:14:27:44:89:44:84:cb:d6:
8d:5a:43:9a:11:5e:82:d1:c5:4f:af:47:94:57:e2:
2b:28:2c:ff:01:0b:14:47:c0:61:d8:e1:0b:15:a5:
6c:39:59:43:de:32:5f:90:38:a8:81:9c:cd:de:9d:
0d:97:11:91:ed:c2:ee:c9:c1:6e:80:77:4d:5e:85:
4c:4f:57:81:37:8b:4a:fa:68:7e:79:b9:91:80:5a:
bc:46:ed:1d:23:d7:83:3b:cc:ec:3d:d9:a2:ae:9c:
3b:0d:9d:a4:9b:c3:bb:42:df:8c:e5:65:e6:c0:a1:
40:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:4D:A2:87:B9:BF:AC:84:3D:88:DC:74:1C:00:D0:FD:BA:31:40:CA
X509v3 Authority Key Identifier:
keyid:89:80:DA:27:A5:50:D7:9B:E6:51:AD:79:AE:71:9C:CF:CB:C5:A3:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYDaJ6VQ15vmUa15rnGcz8vFo28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bf4f41-2797-41b9-baf6-29762c1aaf65/1/iYDaJ6VQ15vmUa15rnGcz8vFo28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:30:82:0e:62:b2:e9:4a:e3:01:c9:03:39:e7:b3:3a:36:31:
b0:7a:5e:5c:41:56:81:db:67:75:cb:8e:52:b2:0f:2c:95:58:
10:f7:eb:1f:9a:d9:f1:3d:16:35:ac:ef:ba:71:1a:23:ee:45:
4d:1e:3e:49:f8:a2:93:d6:26:ff:7d:71:1e:b7:92:a1:ff:a9:
d3:2b:38:3d:e2:32:da:d1:c0:37:a3:d6:39:4a:13:14:33:ad:
91:de:1e:8e:ec:29:81:75:c1:05:5c:0e:08:d1:3b:03:d9:c1:
dd:7d:03:76:96:02:02:13:a5:5b:d3:01:27:6c:89:3f:48:d5:
e1:42:5a:d3:5b:cf:b2:60:a2:89:29:da:ff:ba:d9:b4:3c:da:
7b:90:18:e2:16:cc:41:6d:9c:55:14:78:80:26:27:03:96:64:
2e:70:6c:95:5c:18:d8:bb:9e:d8:5c:31:49:87:c1:09:87:75:
66:45:21:a5:6a:46:e1:af:6b:49:fd:85:49:8c:ab:86:1f:2f:
67:e9:56:9a:71:d9:f3:f3:88:fb:c8:a5:a3:d2:de:29:81:89:
77:ad:0f:b1:5d:3d:72:58:c6:14:c7:da:dc:13:65:6a:47:3c:
5d:08:cf:5e:f6:23:e5:80:0e:7d:9a:b6:b5:bf:ed:60:b4:98:
bc:ba:16:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfMTHtsnrbLV62RtcG/K0eTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5ODBkYTI3YTU1MGQ3OWJlNjUxYWQ3OWFlNzE5Y2NmY2Jj
NWEzNmYwHhcNMjUwNzAyMTgwMDUzWhcNMjUwNzAzMTgwMDUzWjAzMTEwLwYDVQQD
EyhmMzRkYTI4N2I5YmZhYzg0M2Q4OGRjNzQxYzAwZDBmZGJhMzE0MGNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAiL+Lvo70lpM36S8B99MiEfvvC8
GhDFRCWpbxVv4/cvFj5yGKCAnVZbbXGgJGZL292n/msOS3B1Epk/wm5OiMSkiC0g
/10HzGIAMzzlFI2uvZDi6jb+/d0wW/KRj0/6D81qeek99jz6Xovj8+ZHQOWwQbxu
egOPons/uZDN3vhjvUvblcbY0kGPWDOYFCdEiUSEy9aNWkOaEV6C0cVPr0eUV+Ir
KCz/AQsUR8Bh2OELFaVsOVlD3jJfkDiogZzN3p0NlxGR7cLuycFugHdNXoVMT1eB
N4tK+mh+ebmRgFq8Ru0dI9eDO8zsPdmirpw7DZ2km8O7Qt+M5WXmwKFAZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPNNooe5v6yEPYjcdBwA0P26MUDKMB8GA1UdIwQY
MBaAFImA2ielUNeb5lGtea5xnM/LxaNvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVlEYUo2VlExNXZtVWExNXJuR2N6OHZGbzI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iZjRmNDEtMjc5Ny00MWI5LWJhZjYt
Mjk3NjJjMWFhZjY1LzEvaVlEYUo2VlExNXZtVWExNXJuR2N6OHZGbzI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9iZjRmNDEtMjc5Ny00MWI5LWJhZjYtMjk3NjJjMWFhZjY1
LzEvaVlEYUo2VlExNXZtVWExNXJuR2N6OHZGbzI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARTCCDmKy
6UrjAckDOeezOjYxsHpeXEFWgdtndcuOUrIPLJVYEPfrH5rZ8T0WNazvunEaI+5F
TR4+Sfiik9Ym/31xHreSof+p0ys4PeIy2tHAN6PWOUoTFDOtkd4ejuwpgXXBBVwO
CNE7A9nB3X0DdpYCAhOlW9MBJ2yJP0jV4UJa01vPsmCiiSna/7rZtDzae5AY4hbM
QW2cVRR4gCYnA5ZkLnBslVwY2Lue2FwxSYfBCYd1ZkUhpWpG4a9rSf2FSYyrhh8v
Z+lWmnHZ8/OI+8ilo9LeKYGJd60PsV09cljGFMfa3BNlakc8XQjPXvYj5YAOfZq2
tb/tYLSYvLoWEw==
-----END CERTIFICATE-----
Generated at Wed Jul 2 21:23:03 2025 by rpki-client