Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
File: iaWq49f3LuzoOWtBSSIIrdUhhDU.mft (raw, json)
Hash identifier: TrVJWmOXTMfxe9JI3vLr6BEAM7Xo43xCz0W3/8Q+oN4=
Subject key identifier: 60:A2:67:25:2F:2E:B7:08:5C:A2:57:0A:D9:99:E5:C8:6A:EA:DB:16
Authority key identifier: 89:A5:AA:E3:D7:F7:2E:EC:E8:39:6B:41:49:22:08:AD:D5:21:84:35
Certificate issuer: /CN=89a5aae3d7f72eece8396b41492208add5218435
Certificate serial: 019A70A54D41B23C342E08C6413E2C6929A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iaWq49f3LuzoOWtBSSIIrdUhhDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
Manifest number: 160F
Signing time: Tue 11 Nov 2025 02:01:12 +0000
Manifest this update: Tue 11 Nov 2025 02:01:12 +0000
Manifest next update: Wed 12 Nov 2025 02:01:12 +0000
Files and hashes: 1: iaWq49f3LuzoOWtBSSIIrdUhhDU.crl (hash: vXCavuscXKPeSILdgxpXVNTlH10jiPbqEZ37Bpk+cA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iaWq49f3LuzoOWtBSSIIrdUhhDU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:4d:41:b2:3c:34:2e:08:c6:41:3e:2c:69:29:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a5aae3d7f72eece8396b41492208add5218435
Validity
Not Before: Nov 11 02:01:12 2025 GMT
Not After : Nov 12 02:01:12 2025 GMT
Subject: CN=60a267252f2eb7085ca2570ad999e5c86aeadb16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:64:28:41:a2:c2:7d:b1:7f:e0:f2:e4:f1:17:
23:68:d4:46:5d:0f:de:a1:54:b6:b2:96:8c:8a:0b:
33:62:f8:6d:a3:96:de:b9:86:62:91:57:de:5c:85:
b7:12:bb:50:04:12:3e:1e:d8:2c:14:58:57:b0:6e:
29:e8:03:22:b3:5e:52:16:6f:3a:05:54:03:9d:97:
52:ee:df:a5:9b:d0:3d:df:ec:cc:1d:4a:b1:be:46:
0a:23:73:a3:78:dd:31:c9:72:fc:9b:1d:2c:87:92:
bc:1a:58:6c:0d:1d:1c:7e:1c:db:05:90:b1:07:f9:
c5:59:c2:0f:65:0b:bb:b8:b9:6a:07:b9:a3:ef:4f:
f0:de:35:ca:e0:8c:42:92:44:fc:49:d7:23:d0:9d:
a4:2b:9c:6a:e3:f3:8a:a5:d7:56:47:b2:ae:09:31:
c4:f8:36:56:a9:ce:5b:4f:43:64:02:96:1a:ba:0c:
bb:eb:24:8b:20:d3:36:aa:86:7c:ec:35:4a:a5:e7:
e2:a9:11:1f:af:cc:c5:97:a4:d9:f9:30:80:e3:b3:
78:a2:c7:0c:14:b5:27:07:2e:80:9b:04:09:6b:ba:
5a:9b:4f:02:02:85:04:d7:a7:2f:ff:07:e3:60:33:
2b:ea:22:1f:47:a8:3e:c7:b1:5c:15:70:ee:36:07:
27:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A2:67:25:2F:2E:B7:08:5C:A2:57:0A:D9:99:E5:C8:6A:EA:DB:16
X509v3 Authority Key Identifier:
keyid:89:A5:AA:E3:D7:F7:2E:EC:E8:39:6B:41:49:22:08:AD:D5:21:84:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaWq49f3LuzoOWtBSSIIrdUhhDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:89:2b:6f:ec:2d:07:c1:5b:ff:38:10:2c:ff:26:00:50:6a:
c0:57:7f:5e:76:11:10:1a:3c:30:6c:c7:35:67:42:13:86:20:
c9:27:08:f1:70:25:1d:40:f5:05:8e:0f:2f:d1:4d:9c:aa:df:
61:b1:76:56:be:00:65:13:26:7b:a9:43:70:a6:4b:ab:20:f9:
bb:5d:60:78:e3:bd:80:8f:92:d5:cf:0f:d3:f7:af:75:ec:bf:
9f:eb:e8:81:da:b2:8e:bc:7d:de:bf:af:b6:9c:fc:d6:32:8e:
7f:5e:4c:c5:43:4a:0b:8d:00:c3:da:3d:f5:45:33:10:78:5b:
bb:dc:c4:87:a7:b0:4a:03:4b:52:21:4b:ae:f9:4b:fb:7a:36:
38:e4:81:49:26:19:fc:b7:12:0a:90:ab:0d:21:9b:ea:42:fd:
e8:b5:c4:f8:35:f1:93:ca:09:df:8f:85:aa:06:17:54:b5:7a:
08:7d:5d:ec:ff:ec:46:28:ef:f7:c7:46:c8:aa:37:42:78:bd:
e1:a0:b0:e9:d9:85:97:1f:65:e3:ce:00:45:38:be:40:e7:af:
64:f8:c7:71:47:26:af:dc:6b:ad:8b:dc:56:47:30:95:c8:4d:
c9:e0:74:00:0d:dc:12:9f:3d:9a:e6:6c:68:a7:01:b9:d8:0f:
d0:ad:8c:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpwpU1Bsjw0LgjGQT4saSmpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YTVhYWUzZDdmNzJlZWNlODM5NmI0MTQ5MjIwOGFkZDUy
MTg0MzUwHhcNMjUxMTExMDIwMTEyWhcNMjUxMTEyMDIwMTEyWjAzMTEwLwYDVQQD
Eyg2MGEyNjcyNTJmMmViNzA4NWNhMjU3MGFkOTk5ZTVjODZhZWFkYjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGQoQaLCfbF/4PLk8RcjaNRGXQ/e
oVS2spaMigszYvhto5beuYZikVfeXIW3ErtQBBI+HtgsFFhXsG4p6AMis15SFm86
BVQDnZdS7t+lm9A93+zMHUqxvkYKI3OjeN0xyXL8mx0sh5K8GlhsDR0cfhzbBZCx
B/nFWcIPZQu7uLlqB7mj70/w3jXK4IxCkkT8Sdcj0J2kK5xq4/OKpddWR7KuCTHE
+DZWqc5bT0NkApYaugy76ySLINM2qoZ87DVKpefiqREfr8zFl6TZ+TCA47N4oscM
FLUnBy6AmwQJa7pam08CAoUE16cv/wfjYDMr6iIfR6g+x7FcFXDuNgcndwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGCiZyUvLrcIXKJXCtmZ5chq6tsWMB8GA1UdIwQY
MBaAFImlquPX9y7s6DlrQUkiCK3VIYQ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWFXcTQ5ZjNMdXpvT1d0QlNTSUlyZFVoaERVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy85MTQ1Y2ItMDJiZC00N2U2LWIwNGIt
MDg3MTE1MmExYWEzLzEvaWFXcTQ5ZjNMdXpvT1d0QlNTSUlyZFVoaERVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy85MTQ1Y2ItMDJiZC00N2U2LWIwNGItMDg3MTE1MmExYWEz
LzEvaWFXcTQ5ZjNMdXpvT1d0QlNTSUlyZFVoaERVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiYkrb+wt
B8Fb/zgQLP8mAFBqwFd/XnYREBo8MGzHNWdCE4YgyScI8XAlHUD1BY4PL9FNnKrf
YbF2Vr4AZRMme6lDcKZLqyD5u11geOO9gI+S1c8P0/evdey/n+vogdqyjrx93r+v
tpz81jKOf15MxUNKC40Aw9o99UUzEHhbu9zEh6ewSgNLUiFLrvlL+3o2OOSBSSYZ
/LcSCpCrDSGb6kL96LXE+DXxk8oJ34+FqgYXVLV6CH1d7P/sRijv98dGyKo3Qni9
4aCw6dmFlx9l484ARTi+QOevZPjHcUcmr9xrrYvcVkcwlchNyeB0AA3cEp89muZs
aKcBudgP0K2M/Q==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:42:59 2025 by rpki-client