Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
File: IOI90FhJzIEyVauNG4U_ucRdhpQ.mft (raw, json)
Hash identifier: MSbENkznHDrRjY5L9Elo9EjmGzwvo95mFy4t+GgLh98=
Subject key identifier: AC:DF:E2:7A:DD:D1:09:0F:EA:42:3B:96:59:11:DA:C5:9F:E7:E0:3C
Authority key identifier: 20:E2:3D:D0:58:49:CC:81:32:55:AB:8D:1B:85:3F:B9:C4:5D:86:94
Certificate issuer: /CN=20e23dd05849cc813255ab8d1b853fb9c45d8694
Certificate serial: 019A706E8D5CDBFA1F20D63BE55B86852655
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
Manifest number: 011C
Signing time: Tue 11 Nov 2025 01:01:24 +0000
Manifest this update: Tue 11 Nov 2025 01:01:24 +0000
Manifest next update: Wed 12 Nov 2025 01:01:24 +0000
Files and hashes: 1: 1sean_EV9gz0RRAdSjhoVX8U59c.roa (hash: 7IzX2Oje7AVG7H1WaHSKbKj4BoZgEgCyLYyC1XwAE3w=)
2: IOI90FhJzIEyVauNG4U_ucRdhpQ.crl (hash: fmoEoJkxZObbeHUmfrVH3sLmKjt1ArIbKjX/dE5UuFA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 01:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:6e:8d:5c:db:fa:1f:20:d6:3b:e5:5b:86:85:26:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e23dd05849cc813255ab8d1b853fb9c45d8694
Validity
Not Before: Nov 11 01:01:24 2025 GMT
Not After : Nov 12 01:01:24 2025 GMT
Subject: CN=acdfe27addd1090fea423b965911dac59fe7e03c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:57:18:ad:69:96:d9:f7:9a:83:cc:ca:65:16:
f3:e4:1d:cf:97:fa:50:c8:eb:56:33:0b:78:2d:1e:
8c:8a:7e:28:8c:44:f9:82:df:de:05:8c:ab:c3:70:
07:42:d4:b4:f2:59:c7:8a:e1:1e:e8:c4:72:4c:a3:
f8:e0:c5:25:59:95:70:5f:6a:22:52:16:93:da:1c:
5f:6a:d6:a3:f2:d9:f2:2d:ff:99:77:71:5e:eb:56:
d8:b6:73:aa:db:9b:91:6d:a7:e5:51:70:6a:38:83:
ab:e5:c7:bc:ce:ba:82:e2:22:de:ce:0a:29:a9:44:
11:76:f2:8f:e6:b5:6d:30:c6:c7:a7:51:ec:80:50:
a1:bb:9a:13:5b:07:85:5c:01:b9:6e:4b:64:68:01:
21:8c:4d:0d:01:8d:b7:79:42:5c:ea:a4:11:04:b4:
27:a6:3d:bb:b6:ca:c9:a7:f1:c0:c3:c1:c1:84:8a:
1e:17:0a:b0:97:06:22:1a:dd:e9:53:bc:eb:e2:2b:
c1:8d:7b:3a:c6:3a:c5:a4:24:46:40:98:2c:42:ea:
24:96:d4:cd:72:5a:a7:3d:f2:99:27:41:d2:72:71:
e4:a3:0a:86:53:29:f0:0c:91:75:b9:00:56:53:50:
30:17:c7:02:93:dc:e1:21:dd:ff:64:fe:84:b6:d2:
59:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:DF:E2:7A:DD:D1:09:0F:EA:42:3B:96:59:11:DA:C5:9F:E7:E0:3C
X509v3 Authority Key Identifier:
keyid:20:E2:3D:D0:58:49:CC:81:32:55:AB:8D:1B:85:3F:B9:C4:5D:86:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOI90FhJzIEyVauNG4U_ucRdhpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c16717-855d-4391-b79f-b888a3124454/1/IOI90FhJzIEyVauNG4U_ucRdhpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:9a:fa:f4:2c:ee:ed:61:94:7a:4d:50:aa:c5:7f:c3:00:81:
58:c4:3a:51:d6:9e:c2:92:63:db:13:9b:df:46:39:40:8f:ed:
fd:39:d7:ab:dd:04:59:50:3f:d3:ac:4e:a0:86:45:ff:19:31:
f1:cb:21:bc:9e:13:1d:db:a1:e8:cd:cc:02:3f:4f:ba:8e:40:
f3:fc:49:63:a5:b9:39:cc:b5:d5:99:c2:ce:56:78:11:fe:e6:
36:43:be:fa:77:26:5c:ad:89:57:fd:6e:e0:f0:96:8a:82:f2:
25:e8:a8:65:49:18:17:60:0d:d3:b8:7c:04:aa:dd:7e:2f:9e:
94:4b:3c:af:b4:0b:09:1d:7b:a7:ae:b9:46:b0:0c:bd:46:a9:
e2:13:e3:4c:72:83:48:a9:c2:f1:7f:58:f6:7c:87:db:3f:73:
08:0c:46:14:c2:38:36:c8:32:2e:26:95:44:52:78:9f:80:1a:
cd:54:fb:7e:d3:e6:5a:67:11:f9:8d:ba:35:39:72:8c:ac:22:
b5:91:8f:ca:6f:51:5e:f1:3a:1a:9b:0a:4b:99:08:fc:a5:33:
60:d4:5e:53:74:74:4b:95:16:29:39:d0:81:70:dc:b2:83:a8:
b0:9c:d9:28:60:ba:fd:b4:e4:0e:13:3f:98:fb:b1:f9:78:b0:
3d:42:cb:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpwbo1c2/ofINY75VuGhSZVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZTIzZGQwNTg0OWNjODEzMjU1YWI4ZDFiODUzZmI5YzQ1
ZDg2OTQwHhcNMjUxMTExMDEwMTI0WhcNMjUxMTEyMDEwMTI0WjAzMTEwLwYDVQQD
EyhhY2RmZTI3YWRkZDEwOTBmZWE0MjNiOTY1OTExZGFjNTlmZTdlMDNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzFcYrWmW2feag8zKZRbz5B3Pl/pQ
yOtWMwt4LR6Min4ojET5gt/eBYyrw3AHQtS08lnHiuEe6MRyTKP44MUlWZVwX2oi
UhaT2hxfataj8tnyLf+Zd3Fe61bYtnOq25uRbaflUXBqOIOr5ce8zrqC4iLezgop
qUQRdvKP5rVtMMbHp1HsgFChu5oTWweFXAG5bktkaAEhjE0NAY23eUJc6qQRBLQn
pj27tsrJp/HAw8HBhIoeFwqwlwYiGt3pU7zr4ivBjXs6xjrFpCRGQJgsQuokltTN
clqnPfKZJ0HScnHkowqGUynwDJF1uQBWU1AwF8cCk9zhId3/ZP6EttJZ4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKzf4nrd0QkP6kI7llkR2sWf5+A8MB8GA1UdIwQY
MBaAFCDiPdBYScyBMlWrjRuFP7nEXYaUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jMTY3MTctODU1ZC00MzkxLWI3OWYt
Yjg4OGEzMTI0NDU0LzEvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9jMTY3MTctODU1ZC00MzkxLWI3OWYtYjg4OGEzMTI0NDU0
LzEvSU9JOTBGaEp6SUV5VmF1Tkc0VV91Y1JkaHBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJpr69Czu
7WGUek1QqsV/wwCBWMQ6UdaewpJj2xOb30Y5QI/t/TnXq90EWVA/06xOoIZF/xkx
8cshvJ4THduh6M3MAj9Puo5A8/xJY6W5Ocy11ZnCzlZ4Ef7mNkO++ncmXK2JV/1u
4PCWioLyJeioZUkYF2AN07h8BKrdfi+elEs8r7QLCR17p665RrAMvUap4hPjTHKD
SKnC8X9Y9nyH2z9zCAxGFMI4NsgyLiaVRFJ4n4AazVT7ftPmWmcR+Y26NTlyjKwi
tZGPym9RXvE6GpsKS5kI/KUzYNReU3R0S5UWKTnQgXDcsoOosJzZKGC6/bTkDhM/
mPux+XiwPULLQQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:30 2025 by rpki-client