Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
File: IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft (raw, json)
Hash identifier: vuAQtjLSw89V7ZPr0CvRSqrd/yVIr7QefWwN7QJn4DY=
Subject key identifier: D5:87:94:AD:8E:F4:1D:40:B3:2A:52:16:18:BA:8D:0C:7E:6E:87:8F
Authority key identifier: 22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
Certificate issuer: /CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Certificate serial: 0199FCFDA717F164255885F1ACB5D7B5CB31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
Manifest number: 14C9
Signing time: Sun 19 Oct 2025 15:01:45 +0000
Manifest this update: Sun 19 Oct 2025 15:01:45 +0000
Manifest next update: Mon 20 Oct 2025 15:01:45 +0000
Files and hashes: 1: 6LkNfXDGOHhf8gBsIaO1gA2Q-VM.roa (hash: NThSJkZPm+DD4/mAcNhw9miEjuzZudxLC0TeMXxTy6I=)
2: IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl (hash: 47znXXz2HE8VsAO4dFFaStI4+EAnvrDKtC85oLeTff4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:a7:17:f1:64:25:58:85:f1:ac:b5:d7:b5:cb:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Validity
Not Before: Oct 19 15:01:45 2025 GMT
Not After : Oct 20 15:01:45 2025 GMT
Subject: CN=d58794ad8ef41d40b32a521618ba8d0c7e6e878f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:89:29:68:64:b2:68:ec:ff:ba:36:c6:32:50:
98:ae:5c:80:dc:04:7f:f1:cc:62:6b:a6:39:ab:af:
a8:93:47:44:af:5c:27:90:51:f6:84:9c:68:96:66:
d3:33:b1:e7:9f:69:c4:6d:8f:9a:2e:48:25:ba:28:
8b:07:3f:2f:bd:43:b2:fc:38:35:bc:0a:ff:99:8e:
61:4e:e7:04:f6:ac:99:f2:50:e6:04:53:4f:5f:a9:
76:7b:82:55:34:2f:af:30:91:64:00:b7:70:3f:f1:
21:7c:d9:d5:6a:e8:e5:a1:af:9f:0e:f4:fa:6f:33:
20:b4:1d:c4:29:23:44:c8:38:a9:c9:28:f3:a8:7f:
e4:2f:f8:4c:41:f9:c8:37:94:e3:61:0b:65:0c:e3:
84:7b:e7:c6:08:1f:54:63:96:97:de:04:22:aa:93:
5f:d9:1d:a5:dc:ef:22:77:33:1f:d8:2b:88:b7:d8:
6d:ee:6e:e6:bf:27:39:f5:96:3d:b5:42:56:85:a4:
d7:f2:13:f7:73:e9:54:56:86:c4:23:99:4d:3a:2b:
56:5f:65:34:b7:34:07:fa:ac:eb:68:fe:b0:1d:f4:
20:40:9e:45:c3:9b:54:76:05:ea:91:81:3c:8e:7d:
e6:99:c7:55:80:0b:5d:06:a5:98:c6:42:bf:ca:b1:
78:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:87:94:AD:8E:F4:1D:40:B3:2A:52:16:18:BA:8D:0C:7E:6E:87:8F
X509v3 Authority Key Identifier:
keyid:22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:5a:44:a1:5a:48:86:05:45:cd:d2:c9:92:b9:34:64:a9:de:
1f:69:75:d4:0d:85:1b:ec:f6:c0:d8:6c:53:9d:86:55:14:40:
ee:de:56:39:15:33:11:f8:f8:bc:8c:d2:83:a4:0d:a3:1a:dd:
ea:f0:d2:6f:9f:d3:cc:dc:02:b1:97:ea:a7:9c:79:91:7d:1c:
3b:ce:fc:aa:7a:84:e5:db:8b:13:b8:c1:16:ed:9c:94:00:08:
0a:59:a5:73:8c:62:9c:8c:ca:62:8e:c3:9d:cd:8d:80:f9:ac:
04:1c:2b:b9:70:4a:aa:9e:41:18:51:17:fc:ae:c4:cd:5e:b4:
ac:5e:1c:8e:70:27:41:a5:18:95:c8:94:7a:4c:c5:45:04:ec:
bf:01:e0:a2:6c:57:99:31:b4:42:90:56:05:f6:2e:75:b1:fb:
2e:7c:68:d7:97:51:36:b7:f5:ca:e8:e9:69:9f:79:2c:10:4a:
69:0e:7b:bd:c9:2f:42:96:69:e2:66:78:59:60:0e:18:1a:01:
a5:f5:b6:ec:f0:16:96:a9:44:8b:96:e6:a8:2a:2c:f1:68:a0:
c4:04:6d:e8:1b:d4:46:e8:11:02:60:59:22:e3:d3:c1:7a:69:
0b:c6:ad:52:4e:2b:3e:76:78:f7:a3:31:b0:ac:d8:17:d5:e0:
0c:39:29:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/acX8WQlWIXxrLXXtcsxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYTcyZjNlZDIzZTIyOTRmOWJiNmJhNjYwMjQ2MTY2YzEz
ZjgzMjQwHhcNMjUxMDE5MTUwMTQ1WhcNMjUxMDIwMTUwMTQ1WjAzMTEwLwYDVQQD
EyhkNTg3OTRhZDhlZjQxZDQwYjMyYTUyMTYxOGJhOGQwYzdlNmU4NzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIkpaGSyaOz/ujbGMlCYrlyA3AR/
8cxia6Y5q6+ok0dEr1wnkFH2hJxolmbTM7Hnn2nEbY+aLkgluiiLBz8vvUOy/Dg1
vAr/mY5hTucE9qyZ8lDmBFNPX6l2e4JVNC+vMJFkALdwP/EhfNnVaujloa+fDvT6
bzMgtB3EKSNEyDipySjzqH/kL/hMQfnIN5TjYQtlDOOEe+fGCB9UY5aX3gQiqpNf
2R2l3O8idzMf2CuIt9ht7m7mvyc59ZY9tUJWhaTX8hP3c+lUVobEI5lNOitWX2U0
tzQH+qzraP6wHfQgQJ5Fw5tUdgXqkYE8jn3mmcdVgAtdBqWYxkK/yrF4IwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNWHlK2O9B1AsypSFhi6jQx+boePMB8GA1UdIwQY
MBaAFCKnLz7SPiKU+btrpmAkYWbBP4MkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80Nzk2NzMtOTY2Ny00ZWRhLWJiYmQt
YjBiMmVhYWVlZDYxLzEvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC80Nzk2NzMtOTY2Ny00ZWRhLWJiYmQtYjBiMmVhYWVlZDYx
LzEvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACFpEoVpI
hgVFzdLJkrk0ZKneH2l11A2FG+z2wNhsU52GVRRA7t5WORUzEfj4vIzSg6QNoxrd
6vDSb5/TzNwCsZfqp5x5kX0cO878qnqE5duLE7jBFu2clAAIClmlc4xinIzKYo7D
nc2NgPmsBBwruXBKqp5BGFEX/K7EzV60rF4cjnAnQaUYlciUekzFRQTsvwHgomxX
mTG0QpBWBfYudbH7Lnxo15dRNrf1yujpaZ95LBBKaQ57vckvQpZp4mZ4WWAOGBoB
pfW27PAWlqlEi5bmqCos8WigxARt6BvURugRAmBZIuPTwXppC8atUk4rPnZ496Mx
sKzYF9XgDDkpGw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:29:56 2025 by rpki-client