Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
File: iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft (raw, json)
Hash identifier: BiptIMtC9jAdiEFvn1tB6ZE7+VBEDQGpvW8x3HPYU38=
Subject key identifier: 4E:91:19:0E:52:96:D1:E9:86:38:8B:1E:BE:7E:4B:29:BC:AB:C4:3E
Authority key identifier: 89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
Certificate issuer: /CN=8916aaa5d252fd90145fedac683762d6e2074155
Certificate serial: 01995378FC5F82D9C9E76D99B17A81BED2A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
Manifest number: 168B
Signing time: Tue 16 Sep 2025 17:01:01 +0000
Manifest this update: Tue 16 Sep 2025 17:01:01 +0000
Manifest next update: Wed 17 Sep 2025 17:01:01 +0000
Files and hashes: 1: EJO9ljE1s0Q84FuNpxDY98O5gUs.roa (hash: MidhZCUKLP8FjCtsor/fdefcfGoS6d1va0RAyvBU+x4=)
2: iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl (hash: aCDeSI2kgqcUwYMZKRr4NKy6ZAiPo5IxTjNGkomskC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 17:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:53:78:fc:5f:82:d9:c9:e7:6d:99:b1:7a:81:be:d2:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8916aaa5d252fd90145fedac683762d6e2074155
Validity
Not Before: Sep 16 17:01:01 2025 GMT
Not After : Sep 17 17:01:01 2025 GMT
Subject: CN=4e91190e5296d1e986388b1ebe7e4b29bcabc43e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8f:1b:1c:33:1d:cb:ca:df:5c:f9:fb:e3:7b:
26:44:0c:33:b8:29:20:26:a3:f9:93:30:5f:fc:d4:
4f:54:a6:0b:24:06:20:86:a9:e9:19:59:4c:47:04:
d7:91:1a:22:7c:a7:85:cb:ca:11:4e:bf:d1:2f:ab:
88:21:0f:25:3c:f6:87:97:9c:2c:6b:c1:09:a7:20:
aa:b8:e4:0b:60:46:08:73:9c:6f:f0:9b:01:07:b9:
53:91:2e:c4:79:36:3d:f2:0a:b2:5b:85:f5:f4:12:
c8:f6:6f:f6:04:60:9a:3f:f3:f3:bc:03:d7:9e:40:
31:eb:e9:11:c8:6f:c0:88:26:97:bd:10:0f:f1:dd:
c2:d6:a2:2b:47:a4:b0:3d:9b:95:67:29:6f:11:72:
aa:ba:b9:79:d8:9b:f5:06:6a:57:19:e6:ed:f6:56:
19:c6:74:74:02:95:85:c0:6b:05:23:ff:29:28:a0:
ba:e8:e2:e3:76:1f:96:af:e4:b4:d1:c8:9f:f3:a6:
4b:4a:04:a1:3b:0b:06:29:eb:c3:ab:94:01:12:fd:
87:94:a5:74:b5:f1:fe:c5:ef:95:c5:4a:41:c1:48:
98:e5:50:e6:1d:47:7f:fc:79:a6:89:c3:39:be:45:
9e:ea:f9:08:de:b7:f6:26:cf:08:c4:7a:51:0b:1f:
64:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:91:19:0E:52:96:D1:E9:86:38:8B:1E:BE:7E:4B:29:BC:AB:C4:3E
X509v3 Authority Key Identifier:
keyid:89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:f6:f8:91:d0:4d:7d:b6:7b:37:70:11:b2:18:0c:c7:7b:b4:
9f:a5:18:92:86:8d:14:eb:00:3b:4d:b3:c5:e5:25:0f:0f:91:
e0:f1:ae:c8:66:7b:4f:2d:6c:2b:0e:70:52:43:25:61:7b:e8:
f6:96:18:9f:fc:69:46:3c:35:de:c5:29:50:8b:fb:81:94:43:
87:99:28:4b:29:bd:ed:70:3a:b1:4a:09:80:97:70:74:92:71:
eb:05:60:89:fd:3c:d6:5f:7a:61:11:86:f7:77:0c:64:24:95:
61:5d:91:32:d2:68:c0:e8:e0:4a:d9:57:00:dd:d7:12:bb:a5:
be:b2:96:df:0d:26:6a:24:01:c9:ce:38:11:ca:92:2b:b7:d4:
df:a5:c0:d8:50:38:f6:9a:df:20:d6:ca:4d:6e:dd:21:cd:e3:
a0:c2:d6:0b:2c:b3:dc:a2:a4:05:37:4e:2b:78:b7:41:08:32:
5f:3b:03:63:70:d2:67:f6:ff:8a:b3:f8:91:8f:b2:a4:ee:21:
e7:ba:0e:84:d2:b3:bc:b6:88:79:28:fd:eb:8e:88:b1:3f:87:
93:e1:d4:11:51:83:cd:a4:fd:ab:fa:7b:e5:0d:10:56:50:a2:
68:17:a3:58:be:24:de:11:78:43:0f:21:d8:5c:fa:ce:bf:32:
0d:ea:c0:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 23:28:37 2025 by rpki-client