Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
File: IqXYQFPisMMTrx47pRAkZqX3lng.mft (raw, json)
Hash identifier: nY9vjQ4IFwvHbLU3Yn0gNMZ6u55At0q4XqLoHJ8Xksc=
Subject key identifier: 9E:C6:B5:2A:E3:85:4A:10:55:2E:AC:D7:87:44:3F:DD:E1:45:FA:F5
Authority key identifier: 22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
Certificate issuer: /CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Certificate serial: 019847E5313DAC685E181F0F6B57161FA5DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
Manifest number: 092D
Signing time: Sat 26 Jul 2025 18:00:59 +0000
Manifest this update: Sat 26 Jul 2025 18:00:59 +0000
Manifest next update: Sun 27 Jul 2025 18:00:59 +0000
Files and hashes: 1: 0aVULxHFqdDfNnT5CqmJEz5qebM.roa (hash: p1YUyJePrroRXqe7gzHmSFVR4nwW1EVYKUdr7JKm3tY=)
2: 1x2QkjrjfmH7457XFfnRPIPsvrU.roa (hash: hdLqZqotCS5NMzBAHyICUCVoucf1opCMX8HxfI3Xt9w=)
3: Dc1SxW96IAQ3f2snIBmens7GV0U.roa (hash: A68NloNFUVZ/1yLMaTnJ5sUcnw8LpIIqTLsAe9oPGuQ=)
4: Hclo7mgAV-Jk6Qp5sVlZMDADheQ.roa (hash: cVUhTfbeGPClCYhj8aCdhEzcQl8l864NJzclgxFTC+Y=)
5: IqXYQFPisMMTrx47pRAkZqX3lng.crl (hash: l+ddPZNFaCz5kqAwghOcEG+xd3v1arZyr9At5/wdWyQ=)
6: Ku4DjWMj_wrBqXvp8QwLCV7LvMQ.roa (hash: MiHDGBqhLXLE6nmzkue9evydNoK6FMJwJm/pNx6ZNnQ=)
7: ajmq5QdlQvXrCBRMjUs67yP9AmI.roa (hash: mQ5XjE5gzuzrTdkByBU3/meXRrw3VOANPbjnntSYJ74=)
8: iIyJKjInlinbrFoxMvyP7cHrL18.roa (hash: jppb7YCDugjMDFMLhWTY9NbjBHwSDw8mYabJJeuiwkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 18:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:e5:31:3d:ac:68:5e:18:1f:0f:6b:57:16:1f:a5:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Validity
Not Before: Jul 26 18:00:59 2025 GMT
Not After : Jul 27 18:00:59 2025 GMT
Subject: CN=9ec6b52ae3854a10552eacd787443fdde145faf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:72:fb:14:a9:be:ea:c3:51:c2:00:fd:28:2d:
06:ea:68:8b:fc:18:f7:aa:79:d2:4b:7b:b5:2f:be:
d4:96:51:f7:76:e1:7e:80:3a:8d:46:cb:08:1f:fc:
49:c5:4e:a1:c3:68:df:25:fe:79:bf:81:32:17:82:
84:cb:68:76:c9:3c:58:68:6c:3d:20:a8:2d:79:17:
ea:40:9b:df:7d:60:d2:e6:32:b2:1c:ae:fe:a1:1a:
59:51:21:e8:f9:f8:ca:46:2d:e0:52:cd:d0:d4:7a:
83:15:35:c8:7a:90:d7:ef:af:98:ac:d3:3d:ee:f1:
7c:28:f7:60:d5:4a:ac:f8:17:4a:56:51:32:57:29:
d1:c6:8a:5d:15:bc:d2:8d:1f:65:b4:8a:cc:96:7c:
91:7c:9a:05:17:6f:d7:10:63:b8:f8:07:d2:8a:a5:
fa:14:16:7e:a3:a0:18:e1:df:15:21:b8:8a:bc:29:
c5:81:45:89:8a:d7:36:80:74:2a:45:a8:bc:f4:c2:
62:a8:19:41:08:f7:70:81:88:74:18:76:48:2d:74:
44:54:5d:4e:4e:4c:30:a3:06:32:01:82:fb:f3:0d:
53:6b:14:5b:5f:59:9c:fd:3b:59:f3:e0:bf:ed:5d:
ae:fd:d1:07:7b:1f:d6:cd:ef:cc:d9:92:21:11:a9:
04:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C6:B5:2A:E3:85:4A:10:55:2E:AC:D7:87:44:3F:DD:E1:45:FA:F5
X509v3 Authority Key Identifier:
keyid:22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:a1:00:59:f6:cc:51:60:4e:a3:3e:c0:d9:11:f1:43:f1:ba:
95:91:68:2f:91:69:9d:ae:fd:93:6b:a4:13:8e:c3:e6:08:cd:
95:7c:e5:a9:b9:5f:9f:73:0e:2c:c7:44:8e:59:0e:ec:d3:60:
7b:59:09:42:a8:26:72:b5:7b:af:0b:72:37:40:0a:8f:d4:2e:
18:bd:0d:d3:4e:cf:3e:6a:65:25:f0:d2:7f:d6:9a:a7:67:50:
7b:56:c1:6c:af:67:7f:ef:c9:21:f4:e2:84:07:ed:1a:f7:f5:
b5:27:99:76:02:ca:c9:7d:16:0b:b0:0f:cd:46:2e:31:8b:b2:
fd:cf:cf:d0:c7:b7:8e:9e:ff:9f:91:93:cc:95:ff:15:ce:0e:
04:4c:15:26:0b:a8:00:c0:d8:ae:37:83:43:3a:c0:9c:8d:48:
e0:30:db:5a:a1:2d:a3:16:3f:01:8b:91:0a:56:e9:cd:43:d1:
ed:e5:16:c0:f8:c9:0e:03:d1:da:e6:bc:8e:d0:5a:41:51:dd:
c3:b5:84:71:88:ce:53:d3:6e:6f:3f:80:be:13:be:84:8e:14:
b2:23:e0:34:41:94:41:1e:3e:a4:97:a7:d7:19:17:5c:83:ad:
fe:d4:80:39:c8:e7:08:1f:24:02:37:9c:b1:a6:5d:e4:46:9f:
03:23:ec:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhH5TE9rGheGB8Pa1cWH6XdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYTVkODQwNTNlMmIwYzMxM2FmMWUzYmE1MTAyNDY2YTVm
Nzk2NzgwHhcNMjUwNzI2MTgwMDU5WhcNMjUwNzI3MTgwMDU5WjAzMTEwLwYDVQQD
Eyg5ZWM2YjUyYWUzODU0YTEwNTUyZWFjZDc4NzQ0M2ZkZGUxNDVmYWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnL7FKm+6sNRwgD9KC0G6miL/Bj3
qnnSS3u1L77UllH3duF+gDqNRssIH/xJxU6hw2jfJf55v4EyF4KEy2h2yTxYaGw9
IKgteRfqQJvffWDS5jKyHK7+oRpZUSHo+fjKRi3gUs3Q1HqDFTXIepDX76+YrNM9
7vF8KPdg1Uqs+BdKVlEyVynRxopdFbzSjR9ltIrMlnyRfJoFF2/XEGO4+AfSiqX6
FBZ+o6AY4d8VIbiKvCnFgUWJitc2gHQqRai89MJiqBlBCPdwgYh0GHZILXREVF1O
TkwwowYyAYL78w1TaxRbX1mc/TtZ8+C/7V2u/dEHex/Wze/M2ZIhEakEsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ7GtSrjhUoQVS6s14dEP93hRfr1MB8GA1UdIwQY
MBaAFCKl2EBT4rDDE68eO6UQJGal95Z4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUt
NTkxY2FmNTM2ZWNjLzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUtNTkxY2FmNTM2ZWNj
LzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPqEAWfbM
UWBOoz7A2RHxQ/G6lZFoL5Fpna79k2ukE47D5gjNlXzlqblfn3MOLMdEjlkO7NNg
e1kJQqgmcrV7rwtyN0AKj9QuGL0N007PPmplJfDSf9aap2dQe1bBbK9nf+/JIfTi
hAftGvf1tSeZdgLKyX0WC7APzUYuMYuy/c/P0Me3jp7/n5GTzJX/Fc4OBEwVJguo
AMDYrjeDQzrAnI1I4DDbWqEtoxY/AYuRClbpzUPR7eUWwPjJDgPR2ua8jtBaQVHd
w7WEcYjOU9Nubz+AvhO+hI4UsiPgNEGUQR4+pJen1xkXXIOt/tSAOcjnCB8kAjec
saZd5EafAyPsmQ==
-----END CERTIFICATE-----
Generated at Sun Jul 27 01:59:12 2025 by rpki-client