Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
File: ia6mmISBzqS5W2UTHMSYhPPtDj8.mft (raw, json)
Hash identifier: 8dC+8iO7E8lL9+5v1g0D7RwdH2RPQWg6mueVJ/etPBk=
Subject key identifier: 1E:B2:05:DB:BC:64:99:0D:F4:B8:DD:F6:29:06:D9:76:3C:99:48:B7
Authority key identifier: 89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
Certificate issuer: /CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Certificate serial: 019A1B071D22CEE38CD8A6780CCB809EB53C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
Manifest number: 16F2
Signing time: Sat 25 Oct 2025 11:00:42 +0000
Manifest this update: Sat 25 Oct 2025 11:00:42 +0000
Manifest next update: Sun 26 Oct 2025 11:00:42 +0000
Files and hashes: 1: Fl6pOlPLU-YJzCc-HkB3wwedcd0.roa (hash: jlDQ+VkQoTEiq8ZQ7EeJUmtKUn70x3pUuA4q7simdPM=)
2: ia6mmISBzqS5W2UTHMSYhPPtDj8.crl (hash: TbAGiW5yVR0Y9gM8P3QnyT4el2UFGW/j2EReh+3ap6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 08:33:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:07:1d:22:ce:e3:8c:d8:a6:78:0c:cb:80:9e:b5:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89aea6988481cea4b95b65131cc49884f3ed0e3f
Validity
Not Before: Oct 25 11:00:42 2025 GMT
Not After : Oct 26 11:00:42 2025 GMT
Subject: CN=1eb205dbbc64990df4b8ddf62906d9763c9948b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:16:d6:6b:04:48:ae:f3:db:e3:35:00:a8:40:
9b:ff:5d:ec:41:38:b2:28:9e:55:38:19:e3:89:41:
ea:8f:5e:72:9a:4c:42:0a:27:48:d1:9b:c6:cb:db:
fa:54:80:d9:9e:42:d4:c2:a7:9a:aa:46:ca:fc:a0:
a8:8e:31:ed:6f:45:d5:ec:2d:11:f5:d9:61:2f:ac:
4d:51:93:fe:89:22:db:f3:41:0e:e4:70:b7:cc:b1:
ce:50:47:ba:b3:99:35:71:11:81:97:d0:59:cc:15:
91:64:24:ca:8b:d3:d8:66:a8:f5:f4:6e:65:dd:bc:
97:f6:6f:e9:de:65:62:89:e1:27:71:a6:a6:6b:14:
12:f9:9e:ef:d0:c5:e6:82:75:fe:e3:73:27:1a:81:
6f:eb:93:0b:31:7a:3d:14:c1:95:8c:70:96:be:aa:
57:a4:3c:23:9b:6f:32:33:7b:ef:32:cd:9a:a9:79:
4c:41:a0:e1:39:94:39:30:5e:67:36:95:67:14:ee:
b0:76:2c:bb:da:21:3c:28:cc:fb:f1:ed:1e:9e:b0:
79:91:d7:80:ef:e2:a9:7c:dc:b5:0a:c1:56:2a:2c:
28:62:4c:fd:cb:01:fd:ec:3b:aa:26:94:34:da:ba:
9c:54:a1:10:79:c5:e2:b7:8d:09:0d:c4:52:c5:37:
ee:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B2:05:DB:BC:64:99:0D:F4:B8:DD:F6:29:06:D9:76:3C:99:48:B7
X509v3 Authority Key Identifier:
keyid:89:AE:A6:98:84:81:CE:A4:B9:5B:65:13:1C:C4:98:84:F3:ED:0E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ia6mmISBzqS5W2UTHMSYhPPtDj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2a55a5-3304-4108-8d92-4d8e90e0333b/1/ia6mmISBzqS5W2UTHMSYhPPtDj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:06:9b:fa:40:fd:e1:3a:d9:6c:6c:c0:1a:ea:0f:51:74:ec:
f4:39:8e:6c:2f:01:6f:8b:7b:dc:21:77:28:e0:f0:0d:fe:61:
24:ad:6c:54:f6:74:a7:45:20:5a:be:e0:8c:97:02:a8:ee:4d:
18:10:57:a8:e0:69:e9:68:a4:0f:d0:83:f8:48:22:51:d3:95:
65:b9:67:8c:7f:8c:6d:c4:33:db:4a:6e:5e:c1:05:47:e1:5a:
ab:61:35:b1:f4:1c:5c:52:16:71:8c:ff:09:8c:48:51:cb:05:
d7:6a:5d:ad:d4:a7:64:34:44:c5:9a:f2:e5:aa:cd:0e:7d:0e:
9a:40:c4:f5:89:53:5e:17:87:65:b6:9b:18:25:56:09:33:e6:
da:40:9f:e7:c4:40:5d:5b:24:cf:3b:79:f7:c3:c5:11:72:f8:
6c:f8:7f:e2:f3:b5:3b:7e:25:aa:2b:10:eb:91:17:f9:5d:63:
e2:4f:1b:e4:54:4e:85:4b:fe:8c:01:1e:79:4b:7d:00:6f:a7:
d6:f4:01:74:fc:7f:ed:f7:7c:6d:7c:1b:45:7c:79:09:ae:78:
40:64:36:54:e5:b4:cc:84:55:d3:43:c1:78:96:0a:6c:d9:8d:
a1:3f:d5:18:cc:7e:73:23:16:e1:9d:19:56:56:2b:66:f0:6c:
41:c4:9d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 13:35:57 2025 by rpki-client