Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: y2s+2b/EMws2pZl9d4EevMb+gTZcUWhOuebyTSOH2ps=
Subject key identifier: 64:DC:B4:A1:9E:7A:82:BF:78:6A:4E:CD:AA:92:59:56:90:82:26:8B
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 019A28F973EE76FFF7CF7A01AE916F148C6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 0804
Signing time: Tue 28 Oct 2025 04:00:27 +0000
Manifest this update: Tue 28 Oct 2025 04:00:27 +0000
Manifest next update: Wed 29 Oct 2025 04:00:27 +0000
Files and hashes: 1: 7M8D3IxMWjzAgVSAuyFX2gLMxAs.roa (hash: MD3KP2LMgWTsm6lhsmms5WwgB8xDS3rVO74n7Xs0hs0=)
2: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: 7ASZczYaJBz/w77TSvAbtLExH5Q3zsi3Ltq4KOjppx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:28:f9:73:ee:76:ff:f7:cf:7a:01:ae:91:6f:14:8c:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Oct 28 04:00:27 2025 GMT
Not After : Oct 29 04:00:27 2025 GMT
Subject: CN=64dcb4a19e7a82bf786a4ecdaa9259569082268b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d6:fd:c4:c9:f6:d9:81:16:2e:9d:eb:a4:7f:
a4:7f:c5:75:39:8e:5c:b6:8d:25:37:fc:7f:8f:d3:
e7:2c:51:03:33:b5:15:17:53:83:b8:dc:c1:54:33:
e5:77:25:b7:2a:68:ca:bb:4a:9c:60:f2:20:ab:50:
f8:ce:cf:5f:c8:91:c8:f7:9c:28:13:d1:35:d0:ef:
33:44:cc:ab:c2:cf:52:b0:5d:d9:47:dc:95:a0:05:
11:e2:c9:f2:dd:5c:2c:23:8f:30:a5:01:b8:a2:07:
ce:73:c1:e2:c3:64:36:c6:9e:30:c1:ee:e6:ae:62:
33:45:01:56:ed:57:de:2b:b0:54:57:71:c8:7f:1f:
96:1e:3b:24:89:34:97:cc:09:0e:58:db:b7:a5:6c:
3b:00:ea:15:42:14:36:50:10:5b:48:b6:bd:dd:ea:
d6:d0:8a:5f:16:8a:e0:2e:ad:83:3a:16:d7:bd:1b:
cd:08:c4:ba:64:f2:b5:b3:c1:9c:ed:7c:e2:d0:0a:
de:b3:60:76:ce:c5:0d:54:2f:8e:bd:28:5f:98:69:
3a:3f:aa:9f:34:8d:f0:c0:9e:98:5d:d6:43:13:8b:
de:cd:a0:72:21:ac:89:66:2e:22:b3:88:f2:47:18:
34:fa:80:41:e4:3d:d2:bf:a1:32:12:6b:c4:f0:9f:
25:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:DC:B4:A1:9E:7A:82:BF:78:6A:4E:CD:AA:92:59:56:90:82:26:8B
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:ff:2c:8a:5b:c9:c8:39:34:db:68:6f:ef:60:cd:c4:8e:63:
2c:d0:e0:eb:cc:74:68:6c:9b:4c:89:80:3f:17:63:88:01:45:
11:5f:7f:bb:f1:86:58:61:3c:8a:1e:41:f6:22:30:fa:a5:84:
8e:7f:9a:eb:d8:69:69:6e:15:58:f8:12:87:c1:24:0b:28:17:
f2:2e:05:5c:eb:af:65:e1:ca:66:36:70:ea:4f:6b:d4:20:aa:
a2:e7:7f:20:0c:ec:71:b1:3e:e0:34:d7:98:f0:5c:9a:ed:f1:
6f:29:97:db:88:6a:79:71:a8:a4:26:1b:35:82:66:be:93:b0:
dd:81:42:99:64:0b:7f:ee:e0:b0:a9:12:f3:95:5c:73:2f:e4:
23:49:dd:70:d7:7c:66:8e:dc:58:de:af:f6:e1:d8:b5:c2:da:
e3:10:83:b0:b4:ec:1e:c5:61:31:9e:3f:e0:df:85:54:8b:8a:
70:42:1b:d1:5a:42:07:fb:0d:f3:cd:a5:1b:e3:4f:4f:25:d3:
ed:66:ce:15:df:92:e8:3f:f2:25:3f:0f:6d:0d:20:2f:f5:1f:
f8:6f:91:99:7e:b5:60:b9:df:39:f1:37:d9:b9:9f:d9:8c:1d:
f0:28:7f:e6:e3:ab:8d:5d:24:4c:50:b2:85:0c:83:57:49:ad:
6f:bc:8b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 06:51:43 2025 by rpki-client