Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
File: IodymNrl1aO-q8oW6S0aFB6Uhic.mft (raw, json)
Hash identifier: 1JojWkydVPTu1APEn7E/XxFgtrjH4/Iwc7+4CLdRnDI=
Subject key identifier: 65:CF:79:FA:78:71:4D:91:F3:FD:FA:9F:7B:D2:4C:11:DB:9C:8F:06
Authority key identifier: 22:87:72:98:DA:E5:D5:A3:BE:AB:CA:16:E9:2D:1A:14:1E:94:86:27
Certificate issuer: /CN=22877298dae5d5a3beabca16e92d1a141e948627
Certificate serial: 019932367D58F4898B46F706537E7CF05B2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
Manifest number: 04A2
Signing time: Wed 10 Sep 2025 06:00:55 +0000
Manifest this update: Wed 10 Sep 2025 06:00:55 +0000
Manifest next update: Thu 11 Sep 2025 06:00:55 +0000
Files and hashes: 1: 4qvZpbHlQrEVGaculmgT9y6fbp0.roa (hash: tCJqK90XfNlOzC+CJIY2YiVu1YRsdGe0qc+sYvxZZ4k=)
2: GCeJWQXp53i0_T9Els2HFdD580c.roa (hash: F4jM2A6o7cg7dalyRSsXPRHMxAUn8dJXwNlkzBZKjRk=)
3: Gx7WZJ-NdyF04pUk4gdMYoHuQzk.roa (hash: t6M0KFjILBRmG74F5TahE0UmVDYYLhcbj+iOGjxmViM=)
4: IodymNrl1aO-q8oW6S0aFB6Uhic.crl (hash: 1Cdvcl0VRULAIwrVb04KWNOqFZ21TYC/UF6X3CbvcJQ=)
5: P8uTVptxd-UGzkymXhOkvbitcEU.roa (hash: 61AnrtiCoFhbr8PK6p0Fhr8c0CNn0nd06ZAGuQwz1l8=)
6: PuJtE5_KWvLzwKg-Mgv8nDiZBNg.roa (hash: 8P5RiewFjkqd/eRXG3pkKovd5qsr2E75hTvmlDKbDK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 06:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:36:7d:58:f4:89:8b:46:f7:06:53:7e:7c:f0:5b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22877298dae5d5a3beabca16e92d1a141e948627
Validity
Not Before: Sep 10 06:00:55 2025 GMT
Not After : Sep 11 06:00:55 2025 GMT
Subject: CN=65cf79fa78714d91f3fdfa9f7bd24c11db9c8f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:49:a0:9e:a9:33:b2:aa:6d:2a:5d:7c:a7:cf:
ad:36:7a:c8:2c:90:0d:c3:fc:12:86:cd:b0:78:27:
f7:e8:6f:db:36:ef:5c:9c:36:be:c4:08:49:46:9d:
20:5e:5f:69:6e:a3:51:95:cd:24:01:b2:d9:fd:d8:
51:17:47:b3:ac:8c:33:c5:80:90:3f:e7:95:ef:c4:
38:65:dc:b2:dc:9c:c3:98:da:ed:24:93:0d:36:49:
0f:86:0e:5c:54:a1:c8:72:26:31:0b:ad:4b:5d:ee:
95:35:a7:8a:17:73:52:88:1c:f5:af:a2:9a:69:6e:
0b:03:5f:e8:cc:35:3b:51:d6:e0:45:bd:97:0b:5e:
aa:22:21:49:9f:03:ed:87:c8:3f:fe:8d:4c:bb:4f:
27:50:74:06:10:cd:da:6b:97:bf:af:54:79:9a:ba:
e7:a5:84:3d:ba:3a:f0:50:ce:49:31:7b:6e:f3:f9:
16:c1:92:6f:65:86:7c:58:3c:1a:71:fe:5a:6c:6c:
35:c0:88:08:c5:18:3e:e1:77:7a:ae:54:a0:bc:c1:
19:62:47:2e:61:2e:b8:13:5b:d1:8b:86:33:8f:44:
4f:4a:2d:aa:02:13:95:81:e4:f4:61:07:56:9b:bb:
e4:c0:31:fe:09:7d:ae:92:a6:07:76:f0:04:96:ba:
14:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:CF:79:FA:78:71:4D:91:F3:FD:FA:9F:7B:D2:4C:11:DB:9C:8F:06
X509v3 Authority Key Identifier:
keyid:22:87:72:98:DA:E5:D5:A3:BE:AB:CA:16:E9:2D:1A:14:1E:94:86:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IodymNrl1aO-q8oW6S0aFB6Uhic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8651c5-bd77-460d-83bf-5933a09f72d1/1/IodymNrl1aO-q8oW6S0aFB6Uhic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:20:8a:b8:0a:b7:66:ec:6f:94:10:bd:90:e6:ec:85:af:94:
54:5d:3c:69:f0:53:25:8e:32:26:a6:86:f1:fe:fd:37:bc:44:
94:b9:65:76:60:71:73:2d:35:b3:fb:1d:15:c5:86:a2:09:69:
75:61:be:a0:75:01:bc:55:39:8e:fd:f1:18:d4:18:0d:6a:ad:
5b:f6:f1:a2:8e:7f:19:dc:48:d3:eb:84:0f:ef:94:3e:c3:4e:
4d:c0:01:84:56:83:c0:43:02:5e:f3:c0:87:e8:2a:d5:28:47:
03:b0:de:ad:12:6b:af:94:6d:2e:77:4f:b3:6e:2c:e5:d7:06:
b7:d9:b7:6c:58:92:ec:6b:e0:72:47:90:1a:f0:03:c0:d7:6e:
83:35:57:2b:f7:1b:40:b3:b8:94:9c:16:89:89:09:b9:f6:6f:
5d:9a:12:53:f1:12:63:6e:59:3d:60:17:c0:d6:5e:90:46:2c:
09:63:46:a3:3e:f9:83:d4:22:73:a3:2a:ad:7d:66:cb:32:1b:
8d:62:e7:94:0a:51:ea:24:fd:c5:26:05:50:e9:e3:a6:ee:56:
1d:38:dc:80:1e:98:82:69:0c:9b:74:ef:b5:1d:60:26:e6:c2:
ef:39:7c:d6:bd:c7:a6:be:02:db:b7:6d:9b:6a:f7:db:a9:50:
5e:30:b3:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkyNn1Y9ImLRvcGU3588FsvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyODc3Mjk4ZGFlNWQ1YTNiZWFiY2ExNmU5MmQxYTE0MWU5
NDg2MjcwHhcNMjUwOTEwMDYwMDU1WhcNMjUwOTExMDYwMDU1WjAzMTEwLwYDVQQD
Eyg2NWNmNzlmYTc4NzE0ZDkxZjNmZGZhOWY3YmQyNGMxMWRiOWM4ZjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUmgnqkzsqptKl18p8+tNnrILJAN
w/wShs2weCf36G/bNu9cnDa+xAhJRp0gXl9pbqNRlc0kAbLZ/dhRF0ezrIwzxYCQ
P+eV78Q4Zdyy3JzDmNrtJJMNNkkPhg5cVKHIciYxC61LXe6VNaeKF3NSiBz1r6Ka
aW4LA1/ozDU7UdbgRb2XC16qIiFJnwPth8g//o1Mu08nUHQGEM3aa5e/r1R5mrrn
pYQ9ujrwUM5JMXtu8/kWwZJvZYZ8WDwacf5abGw1wIgIxRg+4Xd6rlSgvMEZYkcu
YS64E1vRi4Yzj0RPSi2qAhOVgeT0YQdWm7vkwDH+CX2ukqYHdvAElroUWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGXPefp4cU2R8/36n3vSTBHbnI8GMB8GA1UdIwQY
MBaAFCKHcpja5dWjvqvKFuktGhQelIYnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS84NjUxYzUtYmQ3Ny00NjBkLTgzYmYt
NTkzM2EwOWY3MmQxLzEvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS84NjUxYzUtYmQ3Ny00NjBkLTgzYmYtNTkzM2EwOWY3MmQx
LzEvSW9keW1OcmwxYU8tcThvVzZTMGFGQjZVaGljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwyCKuAq3
ZuxvlBC9kObsha+UVF08afBTJY4yJqaG8f79N7xElLlldmBxcy01s/sdFcWGoglp
dWG+oHUBvFU5jv3xGNQYDWqtW/bxoo5/GdxI0+uED++UPsNOTcABhFaDwEMCXvPA
h+gq1ShHA7DerRJrr5RtLndPs24s5dcGt9m3bFiS7GvgckeQGvADwNdugzVXK/cb
QLO4lJwWiYkJufZvXZoSU/ESY25ZPWAXwNZekEYsCWNGoz75g9Qic6MqrX1myzIb
jWLnlApR6iT9xSYFUOnjpu5WHTjcgB6YgmkMm3TvtR1gJubC7zl81r3Hpr4C27dt
m2r326lQXjCzxA==
-----END CERTIFICATE-----
Generated at Wed Sep 10 14:17:21 2025 by rpki-client