Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
File: IqXYQFPisMMTrx47pRAkZqX3lng.mft (raw, json)
Hash identifier: ri0pO6iOtQ9CHNDIwIcqebmdW+F7czTYUh4bsTEyZnA=
Subject key identifier: 0A:D6:67:96:C1:EE:5B:AD:A5:BC:13:2D:59:DA:6A:27:77:F6:78:86
Authority key identifier: 22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
Certificate issuer: /CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Certificate serial: 019A23D2E60EB874C5152F09681F562F85BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
Manifest number: 0A27
Signing time: Mon 27 Oct 2025 04:00:15 +0000
Manifest this update: Mon 27 Oct 2025 04:00:15 +0000
Manifest next update: Tue 28 Oct 2025 04:00:15 +0000
Files and hashes: 1: Dc1SxW96IAQ3f2snIBmens7GV0U.roa (hash: A68NloNFUVZ/1yLMaTnJ5sUcnw8LpIIqTLsAe9oPGuQ=)
2: Hclo7mgAV-Jk6Qp5sVlZMDADheQ.roa (hash: cVUhTfbeGPClCYhj8aCdhEzcQl8l864NJzclgxFTC+Y=)
3: IqXYQFPisMMTrx47pRAkZqX3lng.crl (hash: qzYaNgx9aU+xhOANXZ4glhV3iYxNwMviijvg7lF4DLo=)
4: Ku4DjWMj_wrBqXvp8QwLCV7LvMQ.roa (hash: MiHDGBqhLXLE6nmzkue9evydNoK6FMJwJm/pNx6ZNnQ=)
5: _bqJOppJMYlhCqHfIAJ6Sh83vHA.roa (hash: 1f0aFmNhmLx4lKQjnS1bd4RzjmzmwwV3y7zrSykmheM=)
6: ajmq5QdlQvXrCBRMjUs67yP9AmI.roa (hash: mQ5XjE5gzuzrTdkByBU3/meXRrw3VOANPbjnntSYJ74=)
7: cwh3r4eWlWrhqTwyia3Y6IkQ-I4.roa (hash: EAtSuVfxmrmE7PUep+zevWjbxh//ARj59/51XZyWbTI=)
8: iIyJKjInlinbrFoxMvyP7cHrL18.roa (hash: jppb7YCDugjMDFMLhWTY9NbjBHwSDw8mYabJJeuiwkQ=)
9: xmgEeMB7WvkvTgZR5WIp3Cku-OQ.roa (hash: DB/674zCoFtnashikqEwhqolbIZIshtp2JBUcqe8xB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 04:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:d2:e6:0e:b8:74:c5:15:2f:09:68:1f:56:2f:85:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Validity
Not Before: Oct 27 04:00:15 2025 GMT
Not After : Oct 28 04:00:15 2025 GMT
Subject: CN=0ad66796c1ee5bada5bc132d59da6a2777f67886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:33:a8:56:f3:dd:9d:d2:7d:86:f9:80:74:5b:
64:9e:99:1a:ba:a4:c4:24:54:09:35:4f:0f:ba:59:
88:54:f0:77:fb:6d:b7:30:cc:f4:ab:7a:48:7c:08:
81:90:fd:ea:98:6a:12:54:50:e5:01:40:fe:e4:38:
7e:97:9c:40:eb:00:ce:21:c8:e0:b8:97:e5:ed:6c:
96:14:3c:ae:2d:ef:8e:84:9f:3a:ef:84:da:07:84:
98:6c:01:19:6c:a9:df:2d:3b:81:73:c9:ac:0f:61:
68:02:d3:47:54:8f:59:32:ad:1e:76:45:b8:2a:cd:
2d:9e:0f:19:53:4e:b0:22:51:e9:e7:a9:3f:74:cc:
ce:32:8e:bb:4e:df:c8:92:87:66:26:95:8b:51:2c:
e5:80:57:81:d6:01:23:45:8b:df:76:b7:de:5d:94:
58:5b:65:74:f9:3e:78:52:d1:0f:85:04:e5:8c:71:
8c:dd:df:04:f9:f4:9d:96:a0:a0:6a:e0:01:2a:f6:
25:cb:a4:ea:4b:f3:fa:99:61:f7:00:08:bd:17:0f:
9f:72:e8:ba:05:13:be:d4:33:51:d9:9f:ab:1e:34:
66:7e:ad:1a:19:8b:6f:ac:4f:c8:89:cf:cd:1f:b1:
3c:4f:e6:e4:c8:86:bb:9f:39:57:75:04:45:80:6f:
6f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D6:67:96:C1:EE:5B:AD:A5:BC:13:2D:59:DA:6A:27:77:F6:78:86
X509v3 Authority Key Identifier:
keyid:22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:ab:04:82:59:b2:5d:67:ab:f5:25:69:2e:96:ec:fe:a9:f1:
5b:d7:47:12:48:60:e8:76:1c:00:a3:2f:65:66:34:48:52:08:
01:b5:37:33:3b:5b:4d:e2:47:78:ee:c0:56:92:ae:b8:61:9a:
6d:c2:76:e3:9f:12:e3:eb:fd:32:fe:b5:d0:f1:5d:70:12:73:
eb:89:cc:af:bf:ab:63:42:11:60:5f:3d:de:fd:0f:32:9d:ae:
69:22:4a:58:90:d8:1f:ad:f1:00:b2:0f:75:bb:73:dd:95:3c:
6a:66:07:04:56:a5:9f:13:d5:5b:7a:ce:be:1d:09:a3:dc:f1:
6a:d9:31:a5:48:93:50:94:73:8e:3b:50:63:e2:67:56:53:4a:
c3:53:ad:84:09:90:0c:70:ec:60:f8:2b:f4:50:17:2b:b6:63:
c6:b7:4b:62:b7:ef:e0:75:d1:33:dd:f3:69:47:62:e2:59:46:
76:33:8d:78:00:19:d1:25:90:26:93:37:c8:55:c8:6b:63:38:
4f:ee:fc:30:af:84:42:82:a3:fe:29:bf:75:b5:1b:ab:04:ef:
22:03:c8:1c:05:57:55:f0:85:44:35:d5:5e:4c:16:97:ae:b2:
a7:45:35:57:68:13:5c:d5:09:61:0d:85:8f:9b:f9:50:e3:5a:
c1:34:64:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoj0uYOuHTFFS8JaB9WL4W+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYTVkODQwNTNlMmIwYzMxM2FmMWUzYmE1MTAyNDY2YTVm
Nzk2NzgwHhcNMjUxMDI3MDQwMDE1WhcNMjUxMDI4MDQwMDE1WjAzMTEwLwYDVQQD
EygwYWQ2Njc5NmMxZWU1YmFkYTViYzEzMmQ1OWRhNmEyNzc3ZjY3ODg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzOoVvPdndJ9hvmAdFtknpkauqTE
JFQJNU8PulmIVPB3+223MMz0q3pIfAiBkP3qmGoSVFDlAUD+5Dh+l5xA6wDOIcjg
uJfl7WyWFDyuLe+OhJ8674TaB4SYbAEZbKnfLTuBc8msD2FoAtNHVI9ZMq0edkW4
Ks0tng8ZU06wIlHp56k/dMzOMo67Tt/IkodmJpWLUSzlgFeB1gEjRYvfdrfeXZRY
W2V0+T54UtEPhQTljHGM3d8E+fSdlqCgauABKvYly6TqS/P6mWH3AAi9Fw+fcui6
BRO+1DNR2Z+rHjRmfq0aGYtvrE/Iic/NH7E8T+bkyIa7nzlXdQRFgG9vFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFArWZ5bB7lutpbwTLVnaaid39niGMB8GA1UdIwQY
MBaAFCKl2EBT4rDDE68eO6UQJGal95Z4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUt
NTkxY2FmNTM2ZWNjLzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUtNTkxY2FmNTM2ZWNj
LzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALKsEglmy
XWer9SVpLpbs/qnxW9dHEkhg6HYcAKMvZWY0SFIIAbU3MztbTeJHeO7AVpKuuGGa
bcJ2458S4+v9Mv610PFdcBJz64nMr7+rY0IRYF893v0PMp2uaSJKWJDYH63xALIP
dbtz3ZU8amYHBFalnxPVW3rOvh0Jo9zxatkxpUiTUJRzjjtQY+JnVlNKw1OthAmQ
DHDsYPgr9FAXK7ZjxrdLYrfv4HXRM93zaUdi4llGdjONeAAZ0SWQJpM3yFXIa2M4
T+78MK+EQoKj/im/dbUbqwTvIgPIHAVXVfCFRDXVXkwWl66yp0U1V2gTXNUJYQ2F
j5v5UONawTRkAQ==
-----END CERTIFICATE-----
Generated at Mon Oct 27 12:07:35 2025 by rpki-client