Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
File: iZJ3h0cqfL3Zff209Tt077O7vFs.mft (raw, json)
Hash identifier: IdrtmMMp5Xv5uF7MDKmN3ZfQWuZ50TaMmETcsKMFZvc=
Subject key identifier: 14:96:74:17:62:F3:92:AD:26:A3:90:74:82:E0:B5:74:2B:25:CB:89
Authority key identifier: 89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
Certificate issuer: /CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Certificate serial: 0197B7EADE8910B0D7544153EF0C0BF0B7CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
Manifest number: 10E6
Signing time: Sat 28 Jun 2025 19:01:52 +0000
Manifest this update: Sat 28 Jun 2025 19:01:52 +0000
Manifest next update: Sun 29 Jun 2025 19:01:52 +0000
Files and hashes: 1: iZJ3h0cqfL3Zff209Tt077O7vFs.crl (hash: jyazI6aCga/JZ01sE+CXoGnaAw9Y10J9s2Qqe0yTPYM=)
2: k_0z9yImMkkx7Q7hZaLKVoTRO74.roa (hash: bY1XGYbefYoSOVyj59OiTxL9N9Rlyyr/sbaOhEye3EE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:de:89:10:b0:d7:54:41:53:ef:0c:0b:f0:b7:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89927787472a7cbdd97dfdb4f53b74efb3bbbc5b
Validity
Not Before: Jun 28 19:01:52 2025 GMT
Not After : Jun 29 19:01:52 2025 GMT
Subject: CN=1496741762f392ad26a3907482e0b5742b25cb89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:80:c3:78:be:77:c0:23:18:f7:89:c9:cb:8b:
43:70:88:7a:41:35:b4:d2:d1:4b:88:e3:88:de:39:
58:16:73:36:7b:6b:62:64:33:ec:e5:e3:30:94:ba:
62:20:7b:17:67:c8:e7:46:1a:9e:4f:9c:25:4a:fd:
30:d5:70:7f:d9:e2:c8:98:d3:ee:a8:06:fc:eb:7c:
48:2a:30:3f:38:4b:44:66:8d:2d:6f:6c:be:12:b4:
f7:01:09:90:78:85:e0:81:2e:e2:65:b4:2e:27:19:
3d:ba:40:47:27:1f:27:5c:99:7a:66:0c:ad:a2:53:
02:b8:65:1f:a2:f7:00:b9:ba:ca:cd:91:3f:01:15:
cf:c6:83:0b:40:34:a7:7c:c3:e0:0a:f2:2a:de:bd:
49:7c:d7:1b:76:9b:db:ba:1b:13:08:82:e3:7d:4d:
e3:f7:cb:b9:4d:7a:7c:08:b8:c8:a6:86:46:40:18:
aa:75:cb:61:8c:ef:90:11:a8:22:8d:6c:ed:1c:e8:
40:44:61:51:68:be:61:49:32:97:ed:42:be:21:e2:
04:b9:1c:10:86:15:c5:be:d5:e4:10:e5:34:05:b2:
c6:b4:c8:c4:1d:d6:c8:a2:16:86:60:93:46:b3:a3:
f7:d5:58:0a:fa:d3:cf:89:37:45:8e:7d:80:9f:9c:
07:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:96:74:17:62:F3:92:AD:26:A3:90:74:82:E0:B5:74:2B:25:CB:89
X509v3 Authority Key Identifier:
keyid:89:92:77:87:47:2A:7C:BD:D9:7D:FD:B4:F5:3B:74:EF:B3:BB:BC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZJ3h0cqfL3Zff209Tt077O7vFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d20b8c-9fac-41f7-9e79-c410062d4d52/1/iZJ3h0cqfL3Zff209Tt077O7vFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:fd:fe:9b:4b:92:d9:e7:b7:7b:b0:14:c9:ce:ce:62:8b:19:
6c:67:5e:df:a2:29:c6:30:07:04:43:f4:0e:da:dd:81:78:1c:
73:c2:55:77:32:f5:0e:88:c7:50:74:91:76:a2:d7:d3:bf:30:
51:40:05:ed:a5:dd:4c:40:7f:cc:e3:bd:96:1e:4f:66:d7:1e:
7e:1f:70:8c:de:39:84:bf:8e:5e:c0:e3:cd:fa:6f:aa:e5:08:
8b:33:8d:b2:16:91:0c:ac:49:a1:19:9d:7a:57:67:09:f0:4d:
96:a9:6c:4c:54:ea:01:3d:a6:26:14:00:34:9b:c7:0e:f8:44:
37:47:cb:1d:16:78:08:ec:b8:99:45:5f:59:3e:02:36:20:c0:
30:61:f2:12:05:23:60:8f:9a:d5:a4:eb:21:a5:cf:8a:70:33:
44:bd:57:88:f4:d7:01:86:82:e0:4b:5f:b5:5f:85:d8:bb:a5:
58:51:0a:1c:6a:a9:ba:7f:35:7a:38:9e:bd:18:52:63:d1:b8:
ca:1d:90:a4:eb:8a:4f:e3:3f:07:f6:15:06:fb:d8:45:5f:cb:
63:f3:a4:12:3e:70:ed:fd:21:7c:38:67:fc:b1:21:f5:9b:3a:
3b:00:07:87:7e:72:6d:bf:1f:2a:0e:28:c7:e8:2a:b9:81:68:
90:8e:ec:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36t6JELDXVEFT7wwL8LfNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5OTI3Nzg3NDcyYTdjYmRkOTdkZmRiNGY1M2I3NGVmYjNi
YmJjNWIwHhcNMjUwNjI4MTkwMTUyWhcNMjUwNjI5MTkwMTUyWjAzMTEwLwYDVQQD
EygxNDk2NzQxNzYyZjM5MmFkMjZhMzkwNzQ4MmUwYjU3NDJiMjVjYjg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4DDeL53wCMY94nJy4tDcIh6QTW0
0tFLiOOI3jlYFnM2e2tiZDPs5eMwlLpiIHsXZ8jnRhqeT5wlSv0w1XB/2eLImNPu
qAb863xIKjA/OEtEZo0tb2y+ErT3AQmQeIXggS7iZbQuJxk9ukBHJx8nXJl6Zgyt
olMCuGUfovcAubrKzZE/ARXPxoMLQDSnfMPgCvIq3r1JfNcbdpvbuhsTCILjfU3j
98u5TXp8CLjIpoZGQBiqdcthjO+QEagijWztHOhARGFRaL5hSTKX7UK+IeIEuRwQ
hhXFvtXkEOU0BbLGtMjEHdbIohaGYJNGs6P31VgK+tPPiTdFjn2An5wHLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBSWdBdi85KtJqOQdILgtXQrJcuJMB8GA1UdIwQY
MBaAFImSd4dHKny92X39tPU7dO+zu7xbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVpKM2gwY3FmTDNaZmYyMDlUdDA3N083dkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9kMjBiOGMtOWZhYy00MWY3LTllNzkt
YzQxMDA2MmQ0ZDUyLzEvaVpKM2gwY3FmTDNaZmYyMDlUdDA3N083dkZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9kMjBiOGMtOWZhYy00MWY3LTllNzktYzQxMDA2MmQ0ZDUy
LzEvaVpKM2gwY3FmTDNaZmYyMDlUdDA3N083dkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT/3+m0uS
2ee3e7AUyc7OYosZbGde36IpxjAHBEP0DtrdgXgcc8JVdzL1DojHUHSRdqLX078w
UUAF7aXdTEB/zOO9lh5PZtcefh9wjN45hL+OXsDjzfpvquUIizONshaRDKxJoRmd
eldnCfBNlqlsTFTqAT2mJhQANJvHDvhEN0fLHRZ4COy4mUVfWT4CNiDAMGHyEgUj
YI+a1aTrIaXPinAzRL1XiPTXAYaC4EtftV+F2LulWFEKHGqpun81ejievRhSY9G4
yh2QpOuKT+M/B/YVBvvYRV/LY/OkEj5w7f0hfDhn/LEh9Zs6OwAHh35ybb8fKg4o
x+gquYFokI7s+Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:51:43 2025 by rpki-client