Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
File: IaqfF_jMpH37krSQLSwrMgPb7aY.mft (raw, json)
Hash identifier: E+PlaGNJK6n1nXtkUE5D+pzOSpIlB088uiQVK8Dp0Vc=
Subject key identifier: 80:AF:F8:12:17:3A:0D:84:9A:22:D6:4A:E6:D8:A7:ED:4E:72:A7:80
Authority key identifier: 21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
Certificate issuer: /CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Certificate serial: 0199FBEAE55D0CEE5B591288810B8C6736C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
Manifest number: 077E
Signing time: Sun 19 Oct 2025 10:01:39 +0000
Manifest this update: Sun 19 Oct 2025 10:01:39 +0000
Manifest next update: Mon 20 Oct 2025 10:01:39 +0000
Files and hashes: 1: IaqfF_jMpH37krSQLSwrMgPb7aY.crl (hash: /Ngy34HXgiZ15Jo/C3dIgD/fXyGl/bvo/4fOaSGMZhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:e5:5d:0c:ee:5b:59:12:88:81:0b:8c:67:36:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Validity
Not Before: Oct 19 10:01:39 2025 GMT
Not After : Oct 20 10:01:39 2025 GMT
Subject: CN=80aff812173a0d849a22d64ae6d8a7ed4e72a780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5f:4d:21:bb:91:2e:26:ba:50:c6:2d:88:49:
5d:56:4a:f4:3f:b9:5c:9a:ce:74:da:8b:4d:24:34:
9d:ba:cd:27:84:6f:b3:e4:da:5b:ea:e9:67:46:6c:
d8:94:67:1d:36:4c:6a:1c:b5:f2:af:e4:c0:32:bb:
08:e3:36:3f:d6:7d:2e:39:3c:42:48:79:6a:ab:54:
0f:56:cc:7d:58:2d:5b:e6:e7:5b:e2:4f:c9:3a:2d:
56:5c:c6:c9:93:1e:b7:8c:df:a8:25:12:37:9e:d3:
77:22:e9:98:0f:c8:3d:2b:85:49:be:57:6b:f8:32:
61:e0:f7:f8:eb:72:44:2c:a7:46:95:7d:0a:b6:89:
df:e9:7b:6b:3b:99:3a:73:09:d3:54:e7:0b:ad:9e:
4f:e6:cf:a9:29:7e:fc:cf:c7:c8:72:18:d5:c1:53:
98:6a:d5:9d:9d:01:c7:54:f7:aa:0a:9c:72:d5:d1:
bd:ea:19:32:81:1d:66:15:69:9c:03:49:df:5f:85:
d0:fe:6a:2d:39:da:80:22:27:02:54:aa:8a:ed:c0:
2e:d5:d1:32:db:ba:b7:78:aa:f2:07:4a:55:8a:83:
23:d1:19:82:a1:11:b3:47:fe:7a:09:f7:2a:dc:01:
27:ee:a8:6a:b2:aa:6c:f4:99:6f:d6:ad:d8:42:b4:
db:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AF:F8:12:17:3A:0D:84:9A:22:D6:4A:E6:D8:A7:ED:4E:72:A7:80
X509v3 Authority Key Identifier:
keyid:21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:6d:c7:5f:73:16:e8:af:eb:5c:be:9c:1e:db:c6:c0:d9:c8:
cb:b7:36:8b:c0:ac:cf:c8:45:40:0e:a1:fb:1d:ce:73:c2:d8:
b7:97:09:3b:e0:94:90:4f:98:0d:a6:67:e9:c5:b0:74:d6:5a:
81:e0:56:9c:4b:8f:f5:0f:ca:21:06:50:e3:38:8e:54:20:fa:
a6:59:bc:f3:96:eb:2f:8f:20:6f:00:b4:41:e5:85:7c:c7:89:
b5:25:a3:b3:61:ad:2d:65:89:d6:6f:31:18:00:f3:0d:d7:bc:
8a:2f:f5:18:11:8e:5d:b3:6e:bf:09:0a:a5:b6:4f:02:d3:a6:
4d:5e:5c:4c:ff:a0:41:32:87:c8:e1:09:e3:77:82:94:e7:d2:
21:5e:e3:f4:e1:b1:03:bb:da:58:5d:00:4c:54:cd:1e:6b:aa:
82:5a:5a:70:b9:fd:7b:fb:18:1e:ed:21:5b:4a:4a:8d:a3:8e:
9f:b3:28:1d:4f:d7:80:0b:c7:06:8a:e1:a7:a1:00:c3:4a:e3:
94:97:24:0e:b2:a4:c8:1b:de:c9:1b:5b:e1:49:94:1c:f6:04:
39:73:80:4c:f4:08:45:73:a4:e8:31:cb:3e:38:77:25:83:4e:
f8:f6:71:f8:c4:d1:c8:eb:14:92:38:85:49:c4:87:b6:12:9b:
c5:82:55:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76uVdDO5bWRKIgQuMZzbHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYWE5ZjE3ZjhjY2E0N2RmYjkyYjQ5MDJkMmMyYjMyMDNk
YmVkYTYwHhcNMjUxMDE5MTAwMTM5WhcNMjUxMDIwMTAwMTM5WjAzMTEwLwYDVQQD
Eyg4MGFmZjgxMjE3M2EwZDg0OWEyMmQ2NGFlNmQ4YTdlZDRlNzJhNzgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx19NIbuRLia6UMYtiEldVkr0P7lc
ms502otNJDSdus0nhG+z5Npb6ulnRmzYlGcdNkxqHLXyr+TAMrsI4zY/1n0uOTxC
SHlqq1QPVsx9WC1b5udb4k/JOi1WXMbJkx63jN+oJRI3ntN3IumYD8g9K4VJvldr
+DJh4Pf463JELKdGlX0Ktonf6XtrO5k6cwnTVOcLrZ5P5s+pKX78z8fIchjVwVOY
atWdnQHHVPeqCpxy1dG96hkygR1mFWmcA0nfX4XQ/motOdqAIicCVKqK7cAu1dEy
27q3eKryB0pVioMj0RmCoRGzR/56Cfcq3AEn7qhqsqps9Jlv1q3YQrTbJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFICv+BIXOg2EmiLWSubYp+1OcqeAMB8GA1UdIwQY
MBaAFCGqnxf4zKR9+5K0kC0sKzID2+2mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWFxZkZfak1wSDM3a3JTUUxTd3JNZ1BiN2FZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9kNjhkZmYtOTVlMS00YzkwLTllYzYt
NTUwMjkyODBmZWMxLzEvSWFxZkZfak1wSDM3a3JTUUxTd3JNZ1BiN2FZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi9kNjhkZmYtOTVlMS00YzkwLTllYzYtNTUwMjkyODBmZWMx
LzEvSWFxZkZfak1wSDM3a3JTUUxTd3JNZ1BiN2FZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnm3HX3MW
6K/rXL6cHtvGwNnIy7c2i8Csz8hFQA6h+x3Oc8LYt5cJO+CUkE+YDaZn6cWwdNZa
geBWnEuP9Q/KIQZQ4ziOVCD6plm885brL48gbwC0QeWFfMeJtSWjs2GtLWWJ1m8x
GADzDde8ii/1GBGOXbNuvwkKpbZPAtOmTV5cTP+gQTKHyOEJ43eClOfSIV7j9OGx
A7vaWF0ATFTNHmuqglpacLn9e/sYHu0hW0pKjaOOn7MoHU/XgAvHBorhp6EAw0rj
lJckDrKkyBveyRtb4UmUHPYEOXOATPQIRXOk6DHLPjh3JYNO+PZx+MTRyOsUkjiF
ScSHthKbxYJVTw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:07:28 2025 by rpki-client