Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
File: IkI4OfIQchYnZBrmtszqzujZBns.mft (raw, json)
Hash identifier: Loqu/wfGh7RrBNT/uIhJ+UcTaIOJM6uVAAS7aP3dkpE=
Subject key identifier: 8F:6D:87:26:00:AC:AE:20:C7:AC:79:A3:00:E6:BE:CC:10:31:7C:3B
Authority key identifier: 22:42:38:39:F2:10:72:16:27:64:1A:E6:B6:CC:EA:CE:E8:D9:06:7B
Certificate issuer: /CN=22423839f210721627641ae6b6cceacee8d9067b
Certificate serial: 0198D8F25A5A97CFA52DDE5FE9EF6154FEC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
Manifest number: 0B8E
Signing time: Sat 23 Aug 2025 22:00:18 +0000
Manifest this update: Sat 23 Aug 2025 22:00:18 +0000
Manifest next update: Sun 24 Aug 2025 22:00:18 +0000
Files and hashes: 1: IkI4OfIQchYnZBrmtszqzujZBns.crl (hash: WjLXIKUCmRBqgWk4oUa9RsxhgLT9hhIeaFwjhodotrM=)
2: Uyg4_Ozw9Ipj9uu784y9KAfEr7A.roa (hash: PWFMCOTkx94rFl6c7QVt2h1VgycYcWOsnSvIAK4MJo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 22:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:f2:5a:5a:97:cf:a5:2d:de:5f:e9:ef:61:54:fe:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22423839f210721627641ae6b6cceacee8d9067b
Validity
Not Before: Aug 23 22:00:18 2025 GMT
Not After : Aug 24 22:00:18 2025 GMT
Subject: CN=8f6d872600acae20c7ac79a300e6becc10317c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5b:6c:35:bc:ef:b0:39:15:fa:2a:1d:cd:6f:
5e:f5:08:4c:91:13:de:a3:44:94:23:3c:4f:49:57:
29:c3:b8:d0:a3:8a:90:bf:b6:4a:c6:b2:e3:a0:b7:
7e:63:4c:4e:33:2d:e0:38:28:a8:ec:b3:34:e2:b7:
b7:c2:15:d9:a4:e2:ba:b1:a8:81:ec:98:48:25:02:
68:db:3a:84:49:bc:00:39:3d:5b:9d:13:4f:65:6d:
71:28:a8:fa:0d:3b:1a:ea:ca:b9:18:0e:67:f6:2e:
2c:44:14:60:be:f2:0d:0f:a6:7f:55:a3:16:02:af:
32:72:10:16:be:57:6e:9a:d5:e2:8a:a5:a2:7e:b7:
f8:2e:16:ca:33:2e:99:5c:af:c3:06:76:38:b9:98:
e4:d1:d2:5c:64:3d:38:19:5b:88:27:09:a8:77:1b:
0f:bf:c3:d8:ac:59:c1:2c:ae:d4:ba:22:67:34:12:
f6:5b:82:1e:b3:93:2b:11:28:25:ec:2d:da:17:4a:
0a:6e:4d:00:08:33:b8:aa:a9:62:48:98:6e:a7:ee:
d6:3c:a1:ef:19:9a:7b:7c:12:ac:98:ba:33:2f:db:
86:7e:7b:ce:82:02:c4:b6:58:c4:5f:4d:39:fa:f6:
64:b3:0c:46:5b:09:47:73:c2:5c:eb:e1:75:27:ce:
69:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6D:87:26:00:AC:AE:20:C7:AC:79:A3:00:E6:BE:CC:10:31:7C:3B
X509v3 Authority Key Identifier:
keyid:22:42:38:39:F2:10:72:16:27:64:1A:E6:B6:CC:EA:CE:E8:D9:06:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IkI4OfIQchYnZBrmtszqzujZBns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/f8ab48-05d0-4f9c-8b0f-98c875ae35c9/1/IkI4OfIQchYnZBrmtszqzujZBns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:a7:5d:17:63:e0:95:d2:0b:bb:d1:86:fb:0d:fe:0b:59:ee:
5a:9d:68:c0:5a:af:14:50:14:a3:57:9e:a0:69:cc:0b:1b:07:
41:ee:fb:a5:2d:5e:ed:8e:54:8e:37:fe:5e:de:77:ca:02:86:
2d:53:15:c9:04:6b:50:7e:c4:48:40:a9:d1:0d:ee:f4:ab:5b:
6a:17:67:a7:f3:66:44:bd:c5:ff:8e:78:ff:54:a1:72:cc:70:
20:af:f6:bc:f5:a0:8f:9e:5f:09:5a:50:8b:b5:b5:87:d3:70:
c5:9e:73:dd:71:52:50:0e:00:d6:63:c6:6d:93:71:fe:b2:3c:
2a:a8:c2:f0:3e:a1:43:71:0b:b8:05:04:68:2a:97:7b:a3:a8:
84:61:99:2d:d9:fd:39:1b:e2:3c:cb:35:ab:ae:17:f6:f4:a6:
01:fa:dd:80:5c:e4:b7:fc:cf:bc:f8:2a:b2:43:44:f2:1e:87:
9a:4a:dd:b6:34:21:22:fc:b4:d1:1e:be:a2:5a:93:89:4d:63:
d7:1d:df:52:ca:4f:a1:10:54:ad:11:f7:7c:fd:7c:0f:13:61:
37:d8:89:1b:79:ad:ae:a7:76:2a:45:9f:c1:b3:67:a5:63:1b:
5b:48:0e:41:79:d8:f1:39:15:46:04:54:55:df:b5:6b:a9:d4:
06:23:9a:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjY8lpal8+lLd5f6e9hVP7IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNDIzODM5ZjIxMDcyMTYyNzY0MWFlNmI2Y2NlYWNlZThk
OTA2N2IwHhcNMjUwODIzMjIwMDE4WhcNMjUwODI0MjIwMDE4WjAzMTEwLwYDVQQD
Eyg4ZjZkODcyNjAwYWNhZTIwYzdhYzc5YTMwMGU2YmVjYzEwMzE3YzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVtsNbzvsDkV+iodzW9e9QhMkRPe
o0SUIzxPSVcpw7jQo4qQv7ZKxrLjoLd+Y0xOMy3gOCio7LM04re3whXZpOK6saiB
7JhIJQJo2zqESbwAOT1bnRNPZW1xKKj6DTsa6sq5GA5n9i4sRBRgvvIND6Z/VaMW
Aq8ychAWvldumtXiiqWifrf4LhbKMy6ZXK/DBnY4uZjk0dJcZD04GVuIJwmodxsP
v8PYrFnBLK7UuiJnNBL2W4Ies5MrESgl7C3aF0oKbk0ACDO4qqliSJhup+7WPKHv
GZp7fBKsmLozL9uGfnvOggLEtljEX005+vZkswxGWwlHc8Jc6+F1J85pgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI9thyYArK4gx6x5owDmvswQMXw7MB8GA1UdIwQY
MBaAFCJCODnyEHIWJ2Qa5rbM6s7o2QZ7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWtJNE9mSVFjaFluWkJybXRzenF6dWpaQm5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9mOGFiNDgtMDVkMC00ZjljLThiMGYt
OThjODc1YWUzNWM5LzEvSWtJNE9mSVFjaFluWkJybXRzenF6dWpaQm5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS9mOGFiNDgtMDVkMC00ZjljLThiMGYtOThjODc1YWUzNWM5
LzEvSWtJNE9mSVFjaFluWkJybXRzenF6dWpaQm5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq6ddF2Pg
ldILu9GG+w3+C1nuWp1owFqvFFAUo1eeoGnMCxsHQe77pS1e7Y5Ujjf+Xt53ygKG
LVMVyQRrUH7ESECp0Q3u9Ktbahdnp/NmRL3F/454/1ShcsxwIK/2vPWgj55fCVpQ
i7W1h9NwxZ5z3XFSUA4A1mPGbZNx/rI8KqjC8D6hQ3ELuAUEaCqXe6OohGGZLdn9
ORviPMs1q64X9vSmAfrdgFzkt/zPvPgqskNE8h6HmkrdtjQhIvy00R6+olqTiU1j
1x3fUspPoRBUrRH3fP18DxNhN9iJG3mtrqd2KkWfwbNnpWMbW0gOQXnY8TkVRgRU
Vd+1a6nUBiOaEA==
-----END CERTIFICATE-----
Generated at Sun Aug 24 05:37:32 2025 by rpki-client