Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft
File: ilUt2GldSD1Hzkz4RbkGsXUnalw.mft (raw, json)
Hash identifier: rofYM64UfZvSXbfhFjgQcFJCnaucvovUIG+6qC+WDfU=
Subject key identifier: 15:4D:44:2B:B0:E5:4E:F0:72:6A:87:15:F6:C4:76:47:C1:72:63:57
Authority key identifier: 8A:55:2D:D8:69:5D:48:3D:47:CE:4C:F8:45:B9:06:B1:75:27:6A:5C
Certificate issuer: /CN=8a552dd8695d483d47ce4cf845b906b175276a5c
Certificate serial: 0199FB45832CFE7B4FEC05977A18BE8BBAB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft
Manifest number: 7D
Signing time: Sun 19 Oct 2025 07:01:00 +0000
Manifest this update: Sun 19 Oct 2025 07:01:00 +0000
Manifest next update: Mon 20 Oct 2025 07:01:00 +0000
Files and hashes: 1: bvDQqROOqfcLitLUBX84FPsCs1c.roa (hash: 5rWrrkrkVV/HRYCs0+RexUArPHHbqW+EtH7f8xFEtLs=)
2: ilUt2GldSD1Hzkz4RbkGsXUnalw.crl (hash: 0HBW33p9oQCNN7qnAKSxmMQ4HQOf/EhriH079dqpMa8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:83:2c:fe:7b:4f:ec:05:97:7a:18:be:8b:ba:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a552dd8695d483d47ce4cf845b906b175276a5c
Validity
Not Before: Oct 19 07:01:00 2025 GMT
Not After : Oct 20 07:01:00 2025 GMT
Subject: CN=154d442bb0e54ef0726a8715f6c47647c1726357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7c:b8:f8:03:7e:2a:d4:4d:20:6b:45:54:0a:
75:ea:c6:e6:64:09:9d:ef:9c:e8:37:12:2c:3a:d8:
3c:27:39:88:f0:3d:55:dc:5b:0d:1e:85:5c:07:5c:
56:77:06:fe:1a:83:6a:28:1c:36:01:c5:71:ee:f0:
70:e1:62:f8:5e:98:aa:67:bb:91:51:ff:d6:9d:00:
c3:ec:f1:83:0f:df:e9:be:db:ee:29:cc:a4:b6:5b:
7a:c8:7a:07:f6:bc:48:f1:31:05:73:5c:86:9a:89:
d9:7f:51:90:92:6b:46:03:f2:51:64:9d:77:33:59:
0d:f9:4e:5f:98:34:e9:31:47:13:f8:cc:78:d7:99:
de:65:f2:61:ca:09:60:1d:b1:72:f0:31:8f:29:7d:
f0:ad:43:58:aa:da:5e:c6:45:17:87:76:5c:e6:98:
0a:12:14:1f:70:44:8a:ce:b7:05:54:3b:6f:24:3e:
65:a6:40:32:aa:35:c7:99:c2:45:f5:45:51:5f:41:
fd:61:c9:26:92:79:f8:60:a6:9b:47:88:d8:67:fc:
c8:a5:28:9f:30:f3:89:7f:3d:de:8e:16:b8:b1:8a:
0e:74:66:49:48:d8:04:0e:1e:5f:ed:12:a7:e4:9d:
86:de:26:56:c4:48:86:0b:e7:ae:34:e3:cc:3b:16:
d2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:4D:44:2B:B0:E5:4E:F0:72:6A:87:15:F6:C4:76:47:C1:72:63:57
X509v3 Authority Key Identifier:
keyid:8A:55:2D:D8:69:5D:48:3D:47:CE:4C:F8:45:B9:06:B1:75:27:6A:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilUt2GldSD1Hzkz4RbkGsXUnalw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/420621-98b9-4961-a230-29b3f0272b9f/1/ilUt2GldSD1Hzkz4RbkGsXUnalw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:0a:3d:8c:7d:12:ad:f5:6f:19:6d:50:d9:a6:fc:3a:1e:9c:
fd:5d:c6:71:4b:59:61:b3:19:cc:bd:8f:02:b5:73:7d:23:d7:
9e:43:22:9d:09:d6:26:e7:1e:eb:57:94:16:93:b2:ef:dc:7e:
98:5d:af:bf:d4:ca:cd:a3:7c:fa:44:5b:ac:b3:59:e5:bf:a3:
57:9f:cf:84:3d:b2:d4:ca:cb:d7:01:d1:5f:a6:48:b8:b0:2f:
3a:21:c7:06:ba:24:fc:e7:21:54:bb:c1:52:bd:d4:8a:18:4d:
65:b8:3a:0c:b3:0b:7c:82:73:fd:63:17:86:83:d0:1d:1e:89:
6f:d1:b5:44:43:31:09:a4:cb:ca:34:eb:0a:7f:1b:06:20:ab:
f7:86:2b:20:9d:c1:0a:d8:7c:2d:0d:8e:f7:db:cb:bd:ae:9d:
7c:5c:a9:61:50:e8:5f:ed:5f:5c:63:35:1a:7c:cf:42:e7:e7:
e3:45:57:48:7d:e9:5a:dc:d2:8b:2d:12:d8:2f:a0:cd:a9:f8:
71:d2:42:f7:2c:25:9e:99:b7:4d:78:ff:c8:cd:09:2c:7e:65:
0d:d1:82:25:45:65:d2:0e:d8:dc:37:85:4f:77:cb:83:0e:bd:
3b:f5:85:30:34:83:3e:1e:dc:12:93:6a:c0:67:c7:16:94:8b:
90:34:27:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7RYMs/ntP7AWXehi+i7q4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNTUyZGQ4Njk1ZDQ4M2Q0N2NlNGNmODQ1YjkwNmIxNzUy
NzZhNWMwHhcNMjUxMDE5MDcwMTAwWhcNMjUxMDIwMDcwMTAwWjAzMTEwLwYDVQQD
EygxNTRkNDQyYmIwZTU0ZWYwNzI2YTg3MTVmNmM0NzY0N2MxNzI2MzU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl3y4+AN+KtRNIGtFVAp16sbmZAmd
75zoNxIsOtg8JzmI8D1V3FsNHoVcB1xWdwb+GoNqKBw2AcVx7vBw4WL4XpiqZ7uR
Uf/WnQDD7PGDD9/pvtvuKcyktlt6yHoH9rxI8TEFc1yGmonZf1GQkmtGA/JRZJ13
M1kN+U5fmDTpMUcT+Mx415neZfJhyglgHbFy8DGPKX3wrUNYqtpexkUXh3Zc5pgK
EhQfcESKzrcFVDtvJD5lpkAyqjXHmcJF9UVRX0H9Yckmknn4YKabR4jYZ/zIpSif
MPOJfz3ejha4sYoOdGZJSNgEDh5f7RKn5J2G3iZWxEiGC+euNOPMOxbSWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBVNRCuw5U7wcmqHFfbEdkfBcmNXMB8GA1UdIwQY
MBaAFIpVLdhpXUg9R85M+EW5BrF1J2pcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS80MjA2MjEtOThiOS00OTYxLWEyMzAt
MjliM2YwMjcyYjlmLzEvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS80MjA2MjEtOThiOS00OTYxLWEyMzAtMjliM2YwMjcyYjlm
LzEvaWxVdDJHbGRTRDFIemt6NFJia0dzWFVuYWx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALAo9jH0S
rfVvGW1Q2ab8Oh6c/V3GcUtZYbMZzL2PArVzfSPXnkMinQnWJuce61eUFpOy79x+
mF2vv9TKzaN8+kRbrLNZ5b+jV5/PhD2y1MrL1wHRX6ZIuLAvOiHHBrok/OchVLvB
Ur3UihhNZbg6DLMLfIJz/WMXhoPQHR6Jb9G1REMxCaTLyjTrCn8bBiCr94YrIJ3B
Cth8LQ2O99vLva6dfFypYVDoX+1fXGM1GnzPQufn40VXSH3pWtzSiy0S2C+gzan4
cdJC9ywlnpm3TXj/yM0JLH5lDdGCJUVl0g7Y3DeFT3fLgw69O/WFMDSDPh7cEpNq
wGfHFpSLkDQnKQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:14 2025 by rpki-client