Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
File: iIFmRjoaMByltuuYvd0H45cJGYY.mft (raw, json)
Hash identifier: zMclqVz+/I5kWQoQ1wtZle43hKyxqoVvTmTrtSRuX3c=
Subject key identifier: 45:EA:2C:2F:33:E4:99:85:5D:6E:9D:05:BF:38:F0:40:D4:71:52:72
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 019A240A445C8EECACB00A59A6A48E0E7AB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
Manifest number: 11D0
Signing time: Mon 27 Oct 2025 05:00:43 +0000
Manifest this update: Mon 27 Oct 2025 05:00:43 +0000
Manifest next update: Tue 28 Oct 2025 05:00:43 +0000
Files and hashes: 1: iIFmRjoaMByltuuYvd0H45cJGYY.crl (hash: Joht8sOZ0FbDuUFOXDwVAaDIPhhOjHUtuKBRzPC5+g4=)
2: rw7mvGsBN1ywLg0aU0WOnuWPa30.roa (hash: Kkop8VBeWFXHnSavZNOMJQZHo1FfDtxgbSsG84Nc5jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:0a:44:5c:8e:ec:ac:b0:0a:59:a6:a4:8e:0e:7a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Oct 27 05:00:43 2025 GMT
Not After : Oct 28 05:00:43 2025 GMT
Subject: CN=45ea2c2f33e499855d6e9d05bf38f040d4715272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d4:b7:c2:99:d7:c9:13:c2:70:d6:69:c3:1d:
2b:a3:64:0e:3b:ee:31:1a:a7:ed:eb:30:8f:31:5d:
97:21:3c:79:85:92:eb:e2:33:19:65:b0:a8:bc:65:
fc:b1:07:a2:fd:a4:a0:79:0b:f8:2a:67:c1:93:85:
ac:6b:07:9d:25:20:98:ba:f6:9a:45:66:a4:25:d9:
68:55:6d:a5:01:8a:b6:57:6e:df:7d:51:a9:5b:f0:
05:00:07:76:7f:37:5c:73:ac:4e:73:7e:a2:5e:3f:
65:f5:a2:e3:22:de:d7:ac:fc:af:2f:f7:5d:0f:77:
02:49:22:f4:f2:09:ac:f9:8e:42:c9:17:ea:1a:e0:
df:ad:62:22:7b:7b:be:ed:88:a4:f8:84:f5:8e:ca:
75:e1:19:4a:f7:25:08:78:3b:0a:32:fe:c2:b6:bd:
3b:60:e3:c9:c9:b1:ed:3f:86:6e:6a:26:91:1a:e7:
c2:7f:75:55:e3:a2:ef:e5:34:7f:ac:10:04:06:a3:
67:8f:66:e3:89:f5:13:0b:2f:0d:08:f2:f5:43:35:
35:f7:01:b2:74:5e:68:73:33:0b:4d:6d:4a:25:91:
46:2d:0d:0d:87:a0:0d:64:5c:47:bb:ad:14:c1:76:
d0:f1:75:a6:05:cb:29:03:cf:a4:8e:a9:4f:b6:cf:
61:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EA:2C:2F:33:E4:99:85:5D:6E:9D:05:BF:38:F0:40:D4:71:52:72
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:b7:0b:a3:48:4c:47:64:5b:ba:1f:2f:3f:74:79:84:fa:8b:
20:ed:66:90:17:d2:cc:07:11:54:86:20:01:2c:cf:0a:a8:f6:
14:bd:1d:58:e2:a6:4b:d7:84:98:e1:68:1f:83:2e:5b:73:d0:
f8:07:33:a8:4a:c8:3e:c1:92:ab:19:11:99:8d:47:59:3c:81:
72:c8:40:5c:b5:0c:63:1c:a9:99:ca:d5:bc:f1:78:1d:5e:e4:
b9:3d:65:e6:45:fd:c6:70:0b:2a:0f:94:45:e2:59:cf:69:8e:
13:e4:4c:74:3b:ac:23:d0:fb:19:04:4c:a1:49:e7:2a:eb:7a:
cc:2c:b4:7f:dc:84:6a:7f:6a:4e:95:c5:9c:dc:cb:c2:0a:8b:
dc:c1:56:54:58:c8:04:9a:e1:27:5d:96:39:a8:98:a4:5a:07:
16:81:f3:bf:84:44:38:df:b7:11:01:28:22:50:4f:78:c8:bf:
a0:4a:c7:db:5e:89:92:23:d2:d9:ba:71:9c:48:5d:0e:6a:41:
61:e2:4c:aa:22:72:0b:34:39:2e:0c:d0:40:63:0b:d3:a6:d4:
9a:9b:fb:c7:ba:2c:d0:19:76:d9:49:a8:37:08:1b:3c:61:20:
53:3b:9f:65:58:18:14:65:52:68:e7:b3:72:f0:d8:21:dd:6c:
d2:ee:03:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZokCkRcjuyssApZpqSODnqyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ODE2NjQ2M2ExYTMwMWNhNWI2ZWI5OGJkZGQwN2UzOTcw
OTE5ODYwHhcNMjUxMDI3MDUwMDQzWhcNMjUxMDI4MDUwMDQzWjAzMTEwLwYDVQQD
Eyg0NWVhMmMyZjMzZTQ5OTg1NWQ2ZTlkMDViZjM4ZjA0MGQ0NzE1MjcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1dS3wpnXyRPCcNZpwx0ro2QOO+4x
Gqft6zCPMV2XITx5hZLr4jMZZbCovGX8sQei/aSgeQv4KmfBk4WsawedJSCYuvaa
RWakJdloVW2lAYq2V27ffVGpW/AFAAd2fzdcc6xOc36iXj9l9aLjIt7XrPyvL/dd
D3cCSSL08gms+Y5CyRfqGuDfrWIie3u+7Yik+IT1jsp14RlK9yUIeDsKMv7Ctr07
YOPJybHtP4ZuaiaRGufCf3VV46Lv5TR/rBAEBqNnj2bjifUTCy8NCPL1QzU19wGy
dF5oczMLTW1KJZFGLQ0Nh6ANZFxHu60UwXbQ8XWmBcspA8+kjqlPts9h5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEXqLC8z5JmFXW6dBb848EDUcVJyMB8GA1UdIwQY
MBaAFIiBZkY6GjAcpbbrmL3dB+OXCRmGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUt
MzhjMmMyYTc5YzM1LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi80NzZmZDAtYjhhNi00NjFmLWI0YzUtMzhjMmMyYTc5YzM1
LzEvaUlGbVJqb2FNQnlsdHV1WXZkMEg0NWNKR1lZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD7cLo0hM
R2Rbuh8vP3R5hPqLIO1mkBfSzAcRVIYgASzPCqj2FL0dWOKmS9eEmOFoH4MuW3PQ
+AczqErIPsGSqxkRmY1HWTyBcshAXLUMYxypmcrVvPF4HV7kuT1l5kX9xnALKg+U
ReJZz2mOE+RMdDusI9D7GQRMoUnnKut6zCy0f9yEan9qTpXFnNzLwgqL3MFWVFjI
BJrhJ12WOaiYpFoHFoHzv4REON+3EQEoIlBPeMi/oErH216JkiPS2bpxnEhdDmpB
YeJMqiJyCzQ5LgzQQGML06bUmpv7x7os0Bl22UmoNwgbPGEgUzufZVgYFGVSaOez
cvDYId1s0u4D2g==
-----END CERTIFICATE-----
Generated at Mon Oct 27 12:31:39 2025 by rpki-client