Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
File: IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft (raw, json)
Hash identifier: EDKse0rKTEHMhQIzQ8VbaT3cXlVJ8U80EovU6WPA998=
Subject key identifier: C3:04:9E:F2:A2:B2:5A:C9:8B:EA:1F:26:73:26:2A:6D:5E:0A:5C:BE
Authority key identifier: 21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
Certificate issuer: /CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Certificate serial: 019A21E4EC15FD7FEAD88FF785503987FD23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
Manifest number: 82
Signing time: Sun 26 Oct 2025 19:00:41 +0000
Manifest this update: Sun 26 Oct 2025 19:00:41 +0000
Manifest next update: Mon 27 Oct 2025 19:00:41 +0000
Files and hashes: 1: IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl (hash: i26vEBzoUSdehrCoWjufXbWuvkVig7LQPWIrAvXhUlc=)
2: Tq4R9IdG22N3vnBq8Qo-UFuJbpQ.roa (hash: af3sYHdNbdlvdprU3qi9kp0Nrk2mSxcsF15s0Xd+YhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:e4:ec:15:fd:7f:ea:d8:8f:f7:85:50:39:87:fd:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6
Validity
Not Before: Oct 26 19:00:41 2025 GMT
Not After : Oct 27 19:00:41 2025 GMT
Subject: CN=c3049ef2a2b25ac98bea1f2673262a6d5e0a5cbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:19:27:a0:c2:f3:77:99:ca:07:90:0c:1c:d6:
83:72:0b:03:8c:63:e1:2f:d6:a8:a2:38:02:ad:76:
32:fe:33:1b:d4:29:6d:74:aa:bf:7a:39:c0:8f:77:
3e:cc:8e:a7:0a:b7:d1:78:2a:d5:b0:e5:89:b1:e5:
f0:d3:07:68:16:aa:07:c9:26:e0:08:32:a1:ac:bc:
74:b2:55:78:07:2a:65:07:09:54:18:90:08:85:6f:
22:36:cb:ae:73:c1:41:51:53:82:b3:9e:7a:07:4f:
d2:26:a0:c8:34:93:fa:51:9a:5f:2e:3f:73:cb:1e:
61:fa:b5:51:87:29:22:2f:c7:12:34:40:58:32:dd:
41:96:74:d1:fc:e9:97:ee:3d:55:68:99:56:ee:6c:
0f:4a:f4:ac:d9:83:fd:90:cb:fe:24:1a:99:5e:4e:
ef:ba:2b:f8:29:37:d3:a8:a9:6c:1d:75:cd:3d:84:
11:34:b6:b0:24:f9:91:d8:27:47:7a:1f:d8:20:5e:
7a:2a:8d:25:b3:a9:a9:47:e6:6a:1a:5e:3a:d9:31:
27:de:0a:27:0e:d6:e1:fa:95:6a:a5:74:37:fa:b9:
f8:1c:f1:bb:6a:25:00:7d:af:42:0c:09:c6:02:ee:
40:e9:6c:14:07:d0:cc:c0:ac:8a:6a:57:14:7a:d7:
60:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:04:9E:F2:A2:B2:5A:C9:8B:EA:1F:26:73:26:2A:6D:5E:0A:5C:BE
X509v3 Authority Key Identifier:
keyid:21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:2d:6b:95:78:3e:be:8b:a9:76:39:96:c3:94:83:b9:48:64:
fb:80:69:5c:af:1a:3a:b5:8a:94:af:98:06:be:c4:ae:ef:45:
1c:5e:13:6e:43:58:a6:d2:6e:95:65:a0:61:1c:5b:1e:3a:d9:
5a:62:71:f5:71:6d:ad:60:dd:c8:dd:4d:05:49:a9:e4:85:06:
c2:54:3f:62:2c:73:77:e2:a3:c6:0f:63:8d:04:43:3e:ea:b5:
71:d1:fc:fa:29:38:df:72:5a:b4:33:05:e4:27:6e:45:90:b6:
76:3e:08:6f:9f:f2:7d:11:ea:3f:1e:56:3f:99:93:3f:a9:2a:
60:9f:75:ae:14:88:61:7e:aa:09:4d:e4:42:f7:91:db:28:71:
4f:39:f7:ef:ed:ff:ef:ee:d5:09:19:76:33:ea:94:4c:95:d4:
f5:8c:67:df:c4:dd:19:94:8e:35:57:36:55:39:49:da:9f:85:
cc:ad:d6:ed:67:f9:41:91:b4:e6:48:68:f5:cf:75:d4:6e:5f:
66:b2:9a:f8:0d:d9:71:aa:12:87:d6:f9:b8:c0:04:50:15:b7:
49:b9:76:9b:78:8c:fd:e9:51:b5:d9:9d:57:a9:26:c2:7d:5f:
44:b9:d4:c2:b5:1f:09:61:cd:04:e6:09:6d:48:fa:a5:40:eb:
29:7b:2f:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoh5OwV/X/q2I/3hVA5h/0jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxODFjNWIzY2I3ZWViMWU0OTU4MjE1NWExOTE4ZWM2MTJm
OTVhYzYwHhcNMjUxMDI2MTkwMDQxWhcNMjUxMDI3MTkwMDQxWjAzMTEwLwYDVQQD
EyhjMzA0OWVmMmEyYjI1YWM5OGJlYTFmMjY3MzI2MmE2ZDVlMGE1Y2JlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthknoMLzd5nKB5AMHNaDcgsDjGPh
L9aoojgCrXYy/jMb1CltdKq/ejnAj3c+zI6nCrfReCrVsOWJseXw0wdoFqoHySbg
CDKhrLx0slV4ByplBwlUGJAIhW8iNsuuc8FBUVOCs556B0/SJqDINJP6UZpfLj9z
yx5h+rVRhykiL8cSNEBYMt1BlnTR/OmX7j1VaJlW7mwPSvSs2YP9kMv+JBqZXk7v
uiv4KTfTqKlsHXXNPYQRNLawJPmR2CdHeh/YIF56Ko0ls6mpR+ZqGl462TEn3gon
Dtbh+pVqpXQ3+rn4HPG7aiUAfa9CDAnGAu5A6WwUB9DMwKyKalcUetdguwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMMEnvKislrJi+ofJnMmKm1eCly+MB8GA1UdIwQY
MBaAFCGBxbPLfuseSVghVaGRjsYS+VrGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9kY2QxNWUtZWIxMi00NjMxLWIyMjAt
MDIyNmQ0NWE3NTMyLzEvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9kY2QxNWUtZWIxMi00NjMxLWIyMjAtMDIyNmQ0NWE3NTMy
LzEvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmS1rlXg+
voupdjmWw5SDuUhk+4BpXK8aOrWKlK+YBr7Eru9FHF4TbkNYptJulWWgYRxbHjrZ
WmJx9XFtrWDdyN1NBUmp5IUGwlQ/Yixzd+Kjxg9jjQRDPuq1cdH8+ik433JatDMF
5CduRZC2dj4Ib5/yfRHqPx5WP5mTP6kqYJ91rhSIYX6qCU3kQveR2yhxTzn37+3/
7+7VCRl2M+qUTJXU9Yxn38TdGZSONVc2VTlJ2p+FzK3W7Wf5QZG05kho9c911G5f
ZrKa+A3ZcaoSh9b5uMAEUBW3Sbl2m3iM/elRtdmdV6kmwn1fRLnUwrUfCWHNBOYJ
bUj6pUDrKXsvGw==
-----END CERTIFICATE-----
Generated at Mon Oct 27 05:53:37 2025 by rpki-client