Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
File: iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft (raw, json)
Hash identifier: Pxe2V1f85uc/xzQfCnrrBE5TlQxmZhpKvUdozYx7lC0=
Subject key identifier: 09:BD:F8:D0:D8:AB:7D:3D:41:92:13:27:BF:32:8A:DE:91:23:BD:34
Authority key identifier: 89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
Certificate issuer: /CN=8916aaa5d252fd90145fedac683762d6e2074155
Certificate serial: 019A582E9E619B82336044A529542A861B0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
Manifest number: 1712
Signing time: Thu 06 Nov 2025 08:00:41 +0000
Manifest this update: Thu 06 Nov 2025 08:00:41 +0000
Manifest next update: Fri 07 Nov 2025 08:00:41 +0000
Files and hashes: 1: EJO9ljE1s0Q84FuNpxDY98O5gUs.roa (hash: MidhZCUKLP8FjCtsor/fdefcfGoS6d1va0RAyvBU+x4=)
2: iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl (hash: iAN4PbAWKW76I7xHHMdJk4K3/RWTQgUjNYATFcVcsik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Nov 2025 06:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:58:2e:9e:61:9b:82:33:60:44:a5:29:54:2a:86:1b:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8916aaa5d252fd90145fedac683762d6e2074155
Validity
Not Before: Nov 6 08:00:41 2025 GMT
Not After : Nov 7 08:00:41 2025 GMT
Subject: CN=09bdf8d0d8ab7d3d41921327bf328ade9123bd34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a7:3a:7b:ae:ca:14:5d:38:fc:17:66:fa:6b:
04:35:29:ad:9d:11:e8:70:a1:bc:e8:7f:fc:59:f1:
c9:56:4c:9c:10:a6:9b:d8:50:f2:e8:64:63:5c:8d:
c8:c7:b4:25:06:c0:92:db:e0:6c:d1:11:72:08:c0:
99:cc:ff:b5:2b:a9:72:e3:b9:c0:55:c0:3c:26:5a:
5c:e4:11:e5:00:a4:4a:19:dc:ec:33:7f:0c:d1:d6:
0c:e5:b2:62:42:76:29:fa:76:25:82:cd:be:45:7f:
59:f4:71:2a:37:cf:8b:cc:3c:f8:bc:49:4f:cc:c8:
e1:db:1e:80:fd:6a:1f:88:d1:18:73:ca:87:80:c1:
16:bb:5a:f7:35:cc:17:c4:67:53:72:e2:e8:54:8d:
d9:3e:68:a6:eb:bb:f1:ad:88:c1:c8:29:ba:0e:8d:
25:e5:d9:7a:52:c4:c5:e0:f9:ab:98:70:65:2b:70:
83:62:3e:98:57:72:08:a1:cd:b5:d5:af:72:b3:db:
6f:4e:b8:b0:c5:e7:00:21:0d:74:61:7d:d6:98:ca:
ea:40:70:2d:75:98:2f:b4:8e:d4:d6:47:8a:71:be:
53:3d:0e:97:38:72:c4:29:ea:18:ed:87:72:b2:dc:
3c:d0:77:48:46:f6:fe:95:bf:b4:b2:28:f9:70:71:
ca:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BD:F8:D0:D8:AB:7D:3D:41:92:13:27:BF:32:8A:DE:91:23:BD:34
X509v3 Authority Key Identifier:
keyid:89:16:AA:A5:D2:52:FD:90:14:5F:ED:AC:68:37:62:D6:E2:07:41:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iRaqpdJS_ZAUX-2saDdi1uIHQVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/907409-5e61-4c66-94e6-d69ea93cbafb/1/iRaqpdJS_ZAUX-2saDdi1uIHQVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:2e:dd:14:c1:ce:2c:9d:f1:eb:6b:88:5a:b1:71:ff:92:b4:
e5:20:b2:e2:f3:72:1e:2d:2a:5c:4c:a7:d5:59:fb:e3:a2:c6:
fa:d7:8e:12:aa:34:87:63:9b:f8:d8:e0:39:2e:d1:93:1e:01:
7e:e5:bf:c6:85:b6:4a:a9:33:20:91:05:79:07:24:d6:0b:21:
be:ef:d9:09:ba:9d:ac:e9:35:10:79:74:d6:3b:7f:1f:e5:95:
66:5a:96:2b:7f:7d:e1:2f:5d:f8:45:a7:16:6c:a4:68:f3:15:
4e:f5:2c:83:c5:b6:7e:5f:b3:f6:e2:c7:c4:88:6c:55:ae:a8:
15:97:81:5c:f5:b4:6c:77:66:fe:60:3e:44:6f:00:09:73:30:
d9:62:98:12:70:b7:12:07:a9:b1:f1:5e:dc:4f:24:a6:7f:c6:
26:96:c2:e8:3b:6e:2c:ff:55:89:6a:2e:f2:24:10:e4:ea:7e:
b1:82:9a:19:10:75:96:a4:95:ac:b1:55:0d:8f:e3:7e:ce:80:
43:14:6a:71:aa:60:b7:71:77:25:bc:b4:fb:51:77:30:93:c2:
4c:e1:ee:37:43:81:ea:1e:9a:74:e3:8f:61:a9:7f:12:e8:f5:
b8:74:14:90:6f:82:6d:36:29:c9:3e:d5:90:50:f5:1a:79:24:
06:13:8b:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpYLp5hm4IzYESlKVQqhhsLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MTZhYWE1ZDI1MmZkOTAxNDVmZWRhYzY4Mzc2MmQ2ZTIw
NzQxNTUwHhcNMjUxMTA2MDgwMDQxWhcNMjUxMTA3MDgwMDQxWjAzMTEwLwYDVQQD
EygwOWJkZjhkMGQ4YWI3ZDNkNDE5MjEzMjdiZjMyOGFkZTkxMjNiZDM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6c6e67KFF04/Bdm+msENSmtnRHo
cKG86H/8WfHJVkycEKab2FDy6GRjXI3Ix7QlBsCS2+Bs0RFyCMCZzP+1K6ly47nA
VcA8Jlpc5BHlAKRKGdzsM38M0dYM5bJiQnYp+nYlgs2+RX9Z9HEqN8+LzDz4vElP
zMjh2x6A/WofiNEYc8qHgMEWu1r3NcwXxGdTcuLoVI3ZPmim67vxrYjByCm6Do0l
5dl6UsTF4PmrmHBlK3CDYj6YV3IIoc211a9ys9tvTriwxecAIQ10YX3WmMrqQHAt
dZgvtI7U1keKcb5TPQ6XOHLEKeoY7Ydystw80HdIRvb+lb+0sij5cHHKMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAm9+NDYq309QZITJ78yit6RI700MB8GA1UdIwQY
MBaAFIkWqqXSUv2QFF/trGg3YtbiB0FVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS85MDc0MDktNWU2MS00YzY2LTk0ZTYt
ZDY5ZWE5M2NiYWZiLzEvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS85MDc0MDktNWU2MS00YzY2LTk0ZTYtZDY5ZWE5M2NiYWZi
LzEvaVJhcXBkSlNfWkFVWC0yc2FEZGkxdUlIUVZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfi7dFMHO
LJ3x62uIWrFx/5K05SCy4vNyHi0qXEyn1Vn746LG+teOEqo0h2Ob+NjgOS7Rkx4B
fuW/xoW2SqkzIJEFeQck1gshvu/ZCbqdrOk1EHl01jt/H+WVZlqWK3994S9d+EWn
FmykaPMVTvUsg8W2fl+z9uLHxIhsVa6oFZeBXPW0bHdm/mA+RG8ACXMw2WKYEnC3
EgepsfFe3E8kpn/GJpbC6DtuLP9ViWou8iQQ5Op+sYKaGRB1lqSVrLFVDY/jfs6A
QxRqcapgt3F3Jby0+1F3MJPCTOHuN0OB6h6adOOPYal/Euj1uHQUkG+CbTYpyT7V
kFD1GnkkBhOLRw==
-----END CERTIFICATE-----
Generated at Thu Nov 6 12:25:03 2025 by rpki-client