Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
File: iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft (raw, json)
Hash identifier: V12FlISNvYC20Ju3njpExsygjZku8gx5HDy+GCPb0zc=
Subject key identifier: A5:91:2A:3E:E8:3A:F4:C4:38:8F:60:36:3D:54:8E:5D:6F:67:C0:59
Authority key identifier: 88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
Certificate issuer: /CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Certificate serial: 0198D404CA497478D42F21AD46DD523727FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
Manifest number: 159C
Signing time: Fri 22 Aug 2025 23:02:20 +0000
Manifest this update: Fri 22 Aug 2025 23:02:20 +0000
Manifest next update: Sat 23 Aug 2025 23:02:20 +0000
Files and hashes: 1: Qv6t4wP7j-uLsxcfTWHv2ZFQWD8.roa (hash: eR47NrGWjMdNEp9FBa07vBAWwdqKIDeSc8imYvJOwfI=)
2: iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl (hash: J6En7P7is2zuD4GYnZWWydzwjXW4Qgv6+VhRObpFqi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:ca:49:74:78:d4:2f:21:ad:46:dd:52:37:27:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Validity
Not Before: Aug 22 23:02:20 2025 GMT
Not After : Aug 23 23:02:20 2025 GMT
Subject: CN=a5912a3ee83af4c4388f60363d548e5d6f67c059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:99:1f:85:fc:49:da:d3:57:9b:93:89:7b:87:
02:db:fa:89:ce:7e:1c:8c:13:a4:6b:21:d3:96:f8:
29:83:2a:af:b9:07:05:0a:fe:a7:07:c6:6e:8e:35:
a8:7f:a6:e5:e3:8e:56:86:43:a7:02:0d:db:75:5d:
e5:0a:79:66:f4:7e:9f:09:ed:75:03:f2:c9:12:77:
2f:78:bc:58:39:08:50:ed:f2:44:78:2d:db:f2:bf:
1b:90:97:ef:f8:16:0a:e4:be:8f:94:f7:65:20:f1:
a3:6c:b6:f2:29:58:df:22:2d:de:8a:06:b0:0c:1f:
82:08:d0:99:2b:79:91:f0:4e:29:c2:98:91:ab:dc:
b1:5c:c1:ce:09:54:43:25:39:cd:6c:e5:53:74:66:
1f:bb:1d:88:11:6c:cf:6e:01:dc:ac:1c:f6:29:c5:
52:aa:c6:79:70:77:84:61:b5:1f:db:b5:8f:46:dc:
8d:89:a7:61:00:42:53:58:a8:73:9e:4c:ad:25:e9:
1c:b7:dc:b9:81:12:b1:c6:4d:12:0f:04:a9:c9:ba:
bc:7a:af:55:5d:0a:bf:2a:4a:02:88:58:25:de:d6:
c2:b9:e2:ac:71:da:f2:15:6e:13:b4:53:ee:30:11:
db:61:2a:f1:d9:89:14:b1:a1:0e:2d:04:31:bd:ee:
51:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:91:2A:3E:E8:3A:F4:C4:38:8F:60:36:3D:54:8E:5D:6F:67:C0:59
X509v3 Authority Key Identifier:
keyid:88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:98:e3:44:0b:ad:8c:4f:49:3a:d7:b1:55:df:f4:72:25:f0:
d9:d5:4f:2f:a4:37:55:e7:cb:0e:bb:ba:a7:dc:3d:8c:41:d4:
cb:9f:55:fe:58:53:4e:2f:1f:ab:f2:60:67:45:4e:df:a0:75:
5a:e2:be:30:58:22:94:7c:46:69:9d:e6:c0:ed:0d:cd:58:a0:
8f:f7:1f:a7:49:9a:df:2e:1f:85:96:b3:2a:f1:ca:1e:09:86:
29:b5:a0:9f:1a:21:65:e8:71:5d:15:27:e7:4f:09:d2:0b:cc:
e9:02:18:57:49:00:f4:30:b5:5b:09:16:3e:29:5b:12:5e:f5:
69:a2:5f:f2:ad:ca:4d:f2:b0:01:68:ee:01:ec:c0:67:7c:e2:
d6:c1:fa:6f:a9:37:0d:87:52:9d:47:e3:fa:1c:c4:01:0a:d3:
7b:0f:8b:96:3c:cb:aa:22:84:96:1a:da:c1:7b:74:76:cf:0c:
22:ae:1d:1c:4a:55:5c:20:56:af:4b:57:a3:56:52:46:f7:53:
d6:e4:0b:ad:72:4f:cb:8f:49:3c:2a:23:af:20:8b:94:a0:4b:
1f:93:67:1f:db:6d:8d:2c:d5:0e:c3:1f:98:a1:7e:9e:0f:76:
7b:9c:e1:92:fd:3b:41:35:84:fb:f7:18:43:5a:17:24:30:77:
93:fe:d4:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUBMpJdHjULyGtRt1SNyf/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4NDRmYzRhZTEwNjQ5OWUwNTc1ZmYzY2ExNTU2ZGJjMGQ5
YjQ2NTEwHhcNMjUwODIyMjMwMjIwWhcNMjUwODIzMjMwMjIwWjAzMTEwLwYDVQQD
EyhhNTkxMmEzZWU4M2FmNGM0Mzg4ZjYwMzYzZDU0OGU1ZDZmNjdjMDU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpkfhfxJ2tNXm5OJe4cC2/qJzn4c
jBOkayHTlvgpgyqvuQcFCv6nB8ZujjWof6bl445WhkOnAg3bdV3lCnlm9H6fCe11
A/LJEncveLxYOQhQ7fJEeC3b8r8bkJfv+BYK5L6PlPdlIPGjbLbyKVjfIi3eigaw
DB+CCNCZK3mR8E4pwpiRq9yxXMHOCVRDJTnNbOVTdGYfux2IEWzPbgHcrBz2KcVS
qsZ5cHeEYbUf27WPRtyNiadhAEJTWKhznkytJekct9y5gRKxxk0SDwSpybq8eq9V
XQq/KkoCiFgl3tbCueKscdryFW4TtFPuMBHbYSrx2YkUsaEOLQQxve5RIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKWRKj7oOvTEOI9gNj1Ujl1vZ8BZMB8GA1UdIwQY
MBaAFIhE/ErhBkmeBXX/PKFVbbwNm0ZRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUVUOFN1RUdTWjRGZGY4OG9WVnR2QTJiUmxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9kZDQyZDktZmY4OC00Y2EwLTg4M2Mt
MzE3NjQ1Y2Q3ODg1LzEvaUVUOFN1RUdTWjRGZGY4OG9WVnR2QTJiUmxFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi9kZDQyZDktZmY4OC00Y2EwLTg4M2MtMzE3NjQ1Y2Q3ODg1
LzEvaUVUOFN1RUdTWjRGZGY4OG9WVnR2QTJiUmxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbZjjRAut
jE9JOtexVd/0ciXw2dVPL6Q3VefLDru6p9w9jEHUy59V/lhTTi8fq/JgZ0VO36B1
WuK+MFgilHxGaZ3mwO0NzVigj/cfp0ma3y4fhZazKvHKHgmGKbWgnxohZehxXRUn
508J0gvM6QIYV0kA9DC1WwkWPilbEl71aaJf8q3KTfKwAWjuAezAZ3zi1sH6b6k3
DYdSnUfj+hzEAQrTew+LljzLqiKElhrawXt0ds8MIq4dHEpVXCBWr0tXo1ZSRvdT
1uQLrXJPy49JPCojryCLlKBLH5NnH9ttjSzVDsMfmKF+ng92e5zhkv07QTWE+/cY
Q1oXJDB3k/7UOA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:25:25 2025 by rpki-client