Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: H56SAC9v+nSKFHmimmgU5LVL6JAaB58iv1sSgx6Tgi4=
Subject key identifier: 98:C3:FE:E3:A4:CE:88:B1:51:D3:BB:89:F1:A4:2B:AE:5C:F9:EC:6E
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 0199FEB4C6C7260FCE98CCF85AD412A6392D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 0EDE
Signing time: Sun 19 Oct 2025 23:01:24 +0000
Manifest this update: Sun 19 Oct 2025 23:01:24 +0000
Manifest next update: Mon 20 Oct 2025 23:01:24 +0000
Files and hashes: 1: HaSDza_YVtRITzJIrQ3cs39clVI.roa (hash: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=)
2: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: LyTl4gYPSdN8eoHasyZoZqhDNufvf1rb1Xxw8696HNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:c6:c7:26:0f:ce:98:cc:f8:5a:d4:12:a6:39:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Oct 19 23:01:24 2025 GMT
Not After : Oct 20 23:01:24 2025 GMT
Subject: CN=98c3fee3a4ce88b151d3bb89f1a42bae5cf9ec6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b1:4b:1c:b7:ac:75:06:96:7f:e9:3e:99:ed:
9a:50:5c:3f:e6:22:8a:b7:1a:1c:d5:00:d3:78:1e:
36:b3:56:b2:fe:17:c6:f9:37:ce:98:4c:e3:ef:34:
9f:9c:4f:52:5e:b8:99:9b:78:67:e0:a9:c9:5b:10:
78:5f:b2:20:3d:0e:49:58:9e:9f:a4:4f:6a:8f:a0:
af:8c:9c:d2:45:6a:08:5e:1e:e5:fc:91:86:31:0f:
4b:08:12:c1:9d:03:b1:32:b6:db:b5:3a:e9:a9:9f:
4e:36:49:ef:db:2c:e9:a3:bd:b5:65:12:31:65:4e:
5b:48:36:97:14:11:f0:71:09:04:86:a5:c0:8d:af:
67:e9:33:03:81:9d:39:64:c2:ad:97:8a:68:fa:79:
f4:8e:1b:72:67:de:1c:04:41:17:f9:4d:8c:c9:01:
fa:91:9e:d5:e4:bf:fd:f9:8f:9e:ea:83:7f:e5:a4:
40:af:1a:95:3b:5e:36:f3:fa:b6:56:df:92:96:13:
b8:95:40:15:d5:92:7f:c2:7c:5f:43:6f:63:a2:36:
08:2c:65:f6:33:ce:5d:1e:46:5b:aa:3e:32:09:ba:
b9:43:56:bb:70:a1:7e:69:88:0d:88:4d:99:19:15:
26:86:ab:e8:23:a3:72:b5:f4:20:69:31:88:3d:fd:
6d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C3:FE:E3:A4:CE:88:B1:51:D3:BB:89:F1:A4:2B:AE:5C:F9:EC:6E
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:a0:92:0a:6a:21:5d:e3:18:6f:6c:b9:09:df:4e:27:ab:3e:
5d:d0:53:63:64:3a:28:f7:5c:58:b2:07:09:c8:c9:e2:d1:36:
11:1b:20:f7:29:3f:4c:da:08:39:22:ce:fb:b1:7f:e1:7c:85:
96:01:8d:c1:5d:7e:ad:33:de:43:cc:c9:e9:9f:d3:03:c2:5f:
a5:79:56:e7:80:e0:59:48:fe:68:44:29:b5:9b:f3:99:e5:e4:
9f:c9:47:84:eb:de:05:e8:70:b6:9b:51:69:9d:98:f1:09:4a:
59:0c:b3:96:40:a7:60:37:1d:92:54:73:cb:3e:02:05:33:92:
4a:0b:9c:5b:3a:74:eb:6d:8f:67:f4:f0:ae:c3:37:2e:ff:49:
93:ad:3f:d8:bb:83:2f:f0:07:1e:8a:67:f8:d5:ca:2d:8a:43:
e9:90:a0:34:99:c9:4c:55:cd:d9:a4:21:7b:b4:4b:82:57:d4:
f2:44:38:3d:e5:d0:bd:f9:b9:98:aa:2d:6f:ca:4a:cd:8e:3d:
b4:ae:06:19:1d:bb:1e:6a:32:e9:88:ad:0e:ed:ae:42:80:81:
35:5a:25:7c:3b:e2:47:4d:7d:5e:fe:19:68:27:88:8f:a4:06:
38:58:89:62:e8:89:e7:db:8e:7d:7a:13:12:2e:0b:39:d0:43:
3d:d0:09:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+tMbHJg/OmMz4WtQSpjktMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx
M2VhZjMwHhcNMjUxMDE5MjMwMTI0WhcNMjUxMDIwMjMwMTI0WjAzMTEwLwYDVQQD
Eyg5OGMzZmVlM2E0Y2U4OGIxNTFkM2JiODlmMWE0MmJhZTVjZjllYzZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA27FLHLesdQaWf+k+me2aUFw/5iKK
txoc1QDTeB42s1ay/hfG+TfOmEzj7zSfnE9SXriZm3hn4KnJWxB4X7IgPQ5JWJ6f
pE9qj6CvjJzSRWoIXh7l/JGGMQ9LCBLBnQOxMrbbtTrpqZ9ONknv2yzpo721ZRIx
ZU5bSDaXFBHwcQkEhqXAja9n6TMDgZ05ZMKtl4po+nn0jhtyZ94cBEEX+U2MyQH6
kZ7V5L/9+Y+e6oN/5aRArxqVO1428/q2Vt+SlhO4lUAV1ZJ/wnxfQ29jojYILGX2
M85dHkZbqj4yCbq5Q1a7cKF+aYgNiE2ZGRUmhqvoI6NytfQgaTGIPf1tXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJjD/uOkzoixUdO7ifGkK65c+exuMB8GA1UdIwQY
MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt
NzlkYzNkMGJiZWQ4LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4
LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxKCSCmoh
XeMYb2y5Cd9OJ6s+XdBTY2Q6KPdcWLIHCcjJ4tE2ERsg9yk/TNoIOSLO+7F/4XyF
lgGNwV1+rTPeQ8zJ6Z/TA8JfpXlW54DgWUj+aEQptZvzmeXkn8lHhOveBehwtptR
aZ2Y8QlKWQyzlkCnYDcdklRzyz4CBTOSSgucWzp0622PZ/TwrsM3Lv9Jk60/2LuD
L/AHHopn+NXKLYpD6ZCgNJnJTFXN2aQhe7RLglfU8kQ4PeXQvfm5mKotb8pKzY49
tK4GGR27Hmoy6YitDu2uQoCBNVolfDviR019Xv4ZaCeIj6QGOFiJYuiJ59uOfXoT
Ei4LOdBDPdAJGg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 01:16:16 2025 by rpki-client