Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
File: iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft (raw, json)
Hash identifier: mBm0Nlx3H0iZRXwDGSAVRQt1f2WB51TyBgp2ZsUQGXk=
Subject key identifier: 66:34:70:BC:6F:D8:F6:08:9A:6E:51:8A:95:40:DA:4A:6E:99:37:DF
Authority key identifier: 88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
Certificate issuer: /CN=88a780738b853acffbabdb23914c50e36421f773
Certificate serial: 019A236506341C2079F2940BC9DB31B5BD4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
Manifest number: 16F8
Signing time: Mon 27 Oct 2025 02:00:14 +0000
Manifest this update: Mon 27 Oct 2025 02:00:14 +0000
Manifest next update: Tue 28 Oct 2025 02:00:14 +0000
Files and hashes: 1: 0JBSKBByojNYZjOoZlphUB11hQs.roa (hash: 9bDpXvSUlNPWWMoYaJSQ0SO0EuZKnPkwfl5l8GKFytk=)
2: aKf7cpyzNQSyfw8b7-Pr38WCYnc.roa (hash: oRGD5ClevpyjAOYjV/aBq4YhQP42jPwVRjMhzooXQlg=)
3: iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl (hash: xLOJxwexkNyy750syzDLKdRQFGuvBqlnww2nTQ15onU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:65:06:34:1c:20:79:f2:94:0b:c9:db:31:b5:bd:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88a780738b853acffbabdb23914c50e36421f773
Validity
Not Before: Oct 27 02:00:14 2025 GMT
Not After : Oct 28 02:00:14 2025 GMT
Subject: CN=663470bc6fd8f6089a6e518a9540da4a6e9937df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:44:49:02:26:c6:b0:25:95:f5:0b:c5:1b:3f:
2a:eb:ee:11:21:3a:fa:fc:e5:bc:65:2a:22:ec:03:
f5:3b:f1:99:b0:27:43:47:03:e3:43:b2:d4:18:ac:
bb:1f:4f:c6:a3:be:79:64:43:9c:f5:71:4a:d2:45:
db:b2:7c:81:5f:23:53:96:b8:97:d9:d5:dd:29:ec:
6f:70:3b:63:f5:3d:c0:f9:78:af:7c:2a:26:e9:01:
f2:45:b2:0c:7e:f0:32:21:af:64:be:07:0b:6a:8f:
bf:0b:63:3f:ef:da:4b:c1:09:8a:be:62:7d:3d:4b:
11:32:43:bf:d6:a3:02:1b:8f:a4:33:ea:6a:db:e8:
be:42:bd:7d:6f:2f:5b:b2:86:13:92:69:67:f2:9c:
ca:fd:54:8a:4f:f6:d4:d0:41:4b:0f:8c:84:46:94:
74:4d:82:04:d2:af:3e:70:7b:22:94:a1:b2:5e:83:
a1:16:e5:fd:5b:8f:5a:6d:a2:52:fa:57:e7:ac:fa:
50:5b:bf:04:0e:83:98:a4:ea:c1:8f:78:c4:e3:8f:
c1:7d:a4:c9:28:6e:a0:da:f4:45:ab:9e:ab:80:07:
fb:d8:75:a9:4b:9b:d7:9e:d8:42:b2:b1:9a:92:db:
df:ec:1c:d5:0a:42:e4:9f:04:09:05:26:c2:61:1d:
c1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:34:70:BC:6F:D8:F6:08:9A:6E:51:8A:95:40:DA:4A:6E:99:37:DF
X509v3 Authority Key Identifier:
keyid:88:A7:80:73:8B:85:3A:CF:FB:AB:DB:23:91:4C:50:E3:64:21:F7:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iKeAc4uFOs_7q9sjkUxQ42Qh93M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b89704-4fd2-4e07-a039-66f56ef9ce26/1/iKeAc4uFOs_7q9sjkUxQ42Qh93M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:66:56:0f:f8:52:31:e8:5c:a5:92:6b:2c:34:6b:a3:89:c3:
58:60:3a:84:33:21:b5:d4:0e:f0:0a:2f:4c:b5:6f:74:14:39:
c9:1f:63:bc:ae:c4:74:bb:bf:de:7e:1a:96:a9:3d:37:e3:03:
b1:d8:e2:37:e1:d7:d9:67:cb:5c:63:30:7b:68:07:9f:fd:d6:
2d:70:af:cb:38:3a:6f:3b:d1:f7:32:c3:cb:a5:cf:23:3b:32:
31:66:a5:f2:25:ed:3f:71:d5:45:9b:a0:63:f8:68:74:d5:72:
cf:09:a9:8c:db:dc:4a:6b:ee:62:20:71:2b:65:65:8c:7c:05:
7d:0b:49:0f:a9:25:e8:71:51:73:49:6b:b4:57:f7:61:44:0f:
44:71:e3:d8:9f:75:8d:a6:c8:b0:5e:60:fe:2c:7d:64:32:de:
ee:33:e5:9d:5e:16:9f:56:3c:dd:f3:d9:f6:d6:3f:10:d5:7d:
11:6b:7a:32:33:1f:b7:13:85:28:3b:86:ef:36:13:4b:e3:21:
5f:49:4b:17:a2:0f:e6:98:9f:fe:6b:8d:35:2b:fc:b9:b0:0c:
1f:cf:76:22:07:5d:fe:b8:fc:31:94:ec:45:1e:b2:b3:3a:1f:
a1:5c:c3:c1:42:44:7d:a3:ea:15:52:df:b1:99:af:47:e1:85:
6a:93:61:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZojZQY0HCB58pQLydsxtb1OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YTc4MDczOGI4NTNhY2ZmYmFiZGIyMzkxNGM1MGUzNjQy
MWY3NzMwHhcNMjUxMDI3MDIwMDE0WhcNMjUxMDI4MDIwMDE0WjAzMTEwLwYDVQQD
Eyg2NjM0NzBiYzZmZDhmNjA4OWE2ZTUxOGE5NTQwZGE0YTZlOTkzN2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0RJAibGsCWV9QvFGz8q6+4RITr6
/OW8ZSoi7AP1O/GZsCdDRwPjQ7LUGKy7H0/Go755ZEOc9XFK0kXbsnyBXyNTlriX
2dXdKexvcDtj9T3A+XivfCom6QHyRbIMfvAyIa9kvgcLao+/C2M/79pLwQmKvmJ9
PUsRMkO/1qMCG4+kM+pq2+i+Qr19by9bsoYTkmln8pzK/VSKT/bU0EFLD4yERpR0
TYIE0q8+cHsilKGyXoOhFuX9W49abaJS+lfnrPpQW78EDoOYpOrBj3jE44/BfaTJ
KG6g2vRFq56rgAf72HWpS5vXnthCsrGaktvf7BzVCkLknwQJBSbCYR3BWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGY0cLxv2PYImm5RipVA2kpumTffMB8GA1UdIwQY
MBaAFIingHOLhTrP+6vbI5FMUONkIfdzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9iODk3MDQtNGZkMi00ZTA3LWEwMzkt
NjZmNTZlZjljZTI2LzEvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9iODk3MDQtNGZkMi00ZTA3LWEwMzktNjZmNTZlZjljZTI2
LzEvaUtlQWM0dUZPc183cTlzamtVeFE0MlFoOTNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxmZWD/hS
MehcpZJrLDRro4nDWGA6hDMhtdQO8AovTLVvdBQ5yR9jvK7EdLu/3n4alqk9N+MD
sdjiN+HX2WfLXGMwe2gHn/3WLXCvyzg6bzvR9zLDy6XPIzsyMWal8iXtP3HVRZug
Y/hodNVyzwmpjNvcSmvuYiBxK2VljHwFfQtJD6kl6HFRc0lrtFf3YUQPRHHj2J91
jabIsF5g/ix9ZDLe7jPlnV4Wn1Y83fPZ9tY/ENV9EWt6MjMftxOFKDuG7zYTS+Mh
X0lLF6IP5pif/muNNSv8ubAMH892Igdd/rj8MZTsRR6yszofoVzDwUJEfaPqFVLf
sZmvR+GFapNhLQ==
-----END CERTIFICATE-----
Generated at Mon Oct 27 06:01:44 2025 by rpki-client