Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
File: IqXYQFPisMMTrx47pRAkZqX3lng.mft (raw, json)
Hash identifier: /Xc+2TtY46n9RMPWWHCLgg7CmoCcEoFLFj9ITHzDcdU=
Subject key identifier: 4D:DF:89:79:37:82:40:6C:1A:5C:49:63:FC:96:A3:9F:35:17:8B:CD
Authority key identifier: 22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
Certificate issuer: /CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Certificate serial: 0199326D2654D575C28D7FA2DFA5E5C18885
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
Manifest number: 09AA
Signing time: Wed 10 Sep 2025 07:00:38 +0000
Manifest this update: Wed 10 Sep 2025 07:00:38 +0000
Manifest next update: Thu 11 Sep 2025 07:00:38 +0000
Files and hashes: 1: Dc1SxW96IAQ3f2snIBmens7GV0U.roa (hash: A68NloNFUVZ/1yLMaTnJ5sUcnw8LpIIqTLsAe9oPGuQ=)
2: Hclo7mgAV-Jk6Qp5sVlZMDADheQ.roa (hash: cVUhTfbeGPClCYhj8aCdhEzcQl8l864NJzclgxFTC+Y=)
3: IqXYQFPisMMTrx47pRAkZqX3lng.crl (hash: OYiVZIjEOxMqfbIyKCkh1BROvMaQmhfMHD42RjYXUGQ=)
4: Ku4DjWMj_wrBqXvp8QwLCV7LvMQ.roa (hash: MiHDGBqhLXLE6nmzkue9evydNoK6FMJwJm/pNx6ZNnQ=)
5: _bqJOppJMYlhCqHfIAJ6Sh83vHA.roa (hash: 1f0aFmNhmLx4lKQjnS1bd4RzjmzmwwV3y7zrSykmheM=)
6: ajmq5QdlQvXrCBRMjUs67yP9AmI.roa (hash: mQ5XjE5gzuzrTdkByBU3/meXRrw3VOANPbjnntSYJ74=)
7: cwh3r4eWlWrhqTwyia3Y6IkQ-I4.roa (hash: EAtSuVfxmrmE7PUep+zevWjbxh//ARj59/51XZyWbTI=)
8: iIyJKjInlinbrFoxMvyP7cHrL18.roa (hash: jppb7YCDugjMDFMLhWTY9NbjBHwSDw8mYabJJeuiwkQ=)
9: xmgEeMB7WvkvTgZR5WIp3Cku-OQ.roa (hash: DB/674zCoFtnashikqEwhqolbIZIshtp2JBUcqe8xB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 07:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:6d:26:54:d5:75:c2:8d:7f:a2:df:a5:e5:c1:88:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a5d84053e2b0c313af1e3ba5102466a5f79678
Validity
Not Before: Sep 10 07:00:38 2025 GMT
Not After : Sep 11 07:00:38 2025 GMT
Subject: CN=4ddf89793782406c1a5c4963fc96a39f35178bcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:99:4d:50:86:69:13:f8:79:3c:ff:67:78:97:
23:7f:68:74:e3:b8:5c:fa:28:85:e2:99:00:fc:b3:
78:04:76:62:ee:24:31:26:93:a4:dc:33:5f:02:48:
07:ee:46:08:ec:d9:f6:d1:0e:f4:f4:70:43:e6:69:
30:4c:76:6e:5b:10:0a:0e:bb:ec:2d:fe:59:8d:03:
25:ef:64:81:f2:b7:06:b0:6e:bf:af:d3:71:89:40:
ce:70:86:f3:26:0f:36:e6:33:b3:54:f0:f6:37:37:
93:50:c2:8a:6c:a6:f8:9b:21:8f:55:4a:4c:d0:ed:
61:2c:b4:e6:92:f5:05:43:ca:16:4c:9c:5d:cd:f3:
63:39:f6:ba:bd:45:d1:5d:32:bb:c3:c1:45:0f:0f:
b6:f7:8b:31:9b:24:fb:63:61:c8:25:d1:21:6c:26:
36:35:b2:62:75:ab:e1:32:1c:91:33:78:3b:6d:25:
c3:e3:01:e1:ba:de:93:4b:1d:a1:dd:ee:13:3c:ee:
07:52:c5:7e:22:0a:ee:99:25:f8:32:95:7f:1a:b8:
57:25:9f:1a:2b:91:ea:5f:58:5b:10:06:a6:3a:3d:
c2:da:23:b4:92:96:78:cf:75:93:ee:60:31:c7:9c:
1c:70:a7:81:e6:45:10:f3:99:72:79:d7:ef:79:5a:
44:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:DF:89:79:37:82:40:6C:1A:5C:49:63:FC:96:A3:9F:35:17:8B:CD
X509v3 Authority Key Identifier:
keyid:22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:d3:00:a9:70:f2:1e:94:61:27:ab:5c:5f:80:8c:d0:3e:1f:
76:c4:8b:60:9b:aa:d3:d1:d6:8b:16:76:18:1c:ec:08:e7:e6:
11:86:f3:58:f4:f6:31:ad:1c:a1:38:c8:84:d9:19:78:f2:df:
35:2f:aa:1c:9e:75:5c:01:1f:6f:b7:09:3a:9c:2f:da:3a:eb:
fc:37:71:9e:46:d4:6d:b1:84:54:51:96:2b:b4:b3:e7:77:94:
0d:9f:13:94:1a:6c:83:9c:83:6a:48:ac:59:62:d4:18:4a:84:
e7:99:39:da:3b:5f:82:53:14:0e:dc:68:ed:06:cc:c4:85:f4:
8f:8d:ec:2c:cf:50:47:4b:51:3c:4a:20:3b:5e:23:8f:70:fc:
4a:be:54:30:cb:40:bd:43:42:2d:88:c8:37:60:90:17:09:89:
e3:4c:55:ff:e4:e2:cc:8f:2a:e8:48:76:b4:0f:1e:b4:74:83:
20:ab:a6:23:b0:cb:d1:3f:fa:11:75:8e:90:83:15:47:33:72:
52:be:32:c3:45:37:b5:d2:a8:23:49:32:95:a7:e2:bd:d1:b5:
21:d3:e4:5a:45:0d:12:76:cc:9e:b8:53:53:e5:07:ea:9e:e6:
57:c9:51:e8:c8:1e:e6:1f:b9:43:99:03:bb:75:c6:b2:1c:94:
e9:90:67:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 12:55:23 2025 by rpki-client