Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json)
Hash identifier: VVT0BzC1+KDGqMFwPNoW0W+IK+Pc5m9gEviX7eGlTgQ=
Subject key identifier: 13:93:14:FE:83:82:E1:AB:01:40:33:62:DD:05:27:AD:55:5A:8F:89
Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Certificate serial: 0198D6CD8B86CDF00D43E1108389B9A429D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
Manifest number: 04F2
Signing time: Sat 23 Aug 2025 12:00:51 +0000
Manifest this update: Sat 23 Aug 2025 12:00:51 +0000
Manifest next update: Sun 24 Aug 2025 12:00:51 +0000
Files and hashes: 1: XBo1pVVrARNWOJzVGLIS7aXEyvs.roa (hash: LHmi+bbPW6X6RSAyxvQlIttnolx/pGqPJGLDRqAXVIU=)
2: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: z6LljbXnOYWmQbESQ/hX6tpasXx3bvbm4QQ0zebW31E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:8b:86:cd:f0:0d:43:e1:10:83:89:b9:a4:29:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Validity
Not Before: Aug 23 12:00:51 2025 GMT
Not After : Aug 24 12:00:51 2025 GMT
Subject: CN=139314fe8382e1ab01403362dd0527ad555a8f89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:20:e3:e4:b9:53:11:38:a9:47:7e:3e:2d:7b:
f5:f6:ad:06:0c:ad:71:3f:c2:8e:df:b3:04:ae:16:
a6:aa:bf:75:f5:46:c6:84:98:10:a4:a8:8e:aa:37:
29:f6:64:2f:21:fa:24:aa:9f:5e:00:a7:d1:0a:f6:
a8:cc:b7:b7:66:4e:0e:76:f2:61:25:44:5a:7a:7a:
77:a4:8c:99:f4:97:7e:cd:62:33:b9:e1:09:38:55:
d2:e8:36:f4:eb:66:7f:8b:9b:92:73:e1:18:2d:76:
f7:40:1d:10:08:35:ba:7b:25:52:d0:fd:ed:6f:77:
84:3c:20:fe:3a:1e:09:5a:58:30:36:3c:4d:1d:b0:
7a:08:7b:38:04:dd:66:5e:62:00:be:c7:27:ba:63:
43:04:06:0a:e9:eb:c7:f2:01:52:9a:75:2a:72:ff:
02:ca:b1:ec:6b:ef:53:e5:4a:ea:92:d6:bb:46:71:
12:32:59:57:0f:ae:ce:41:54:eb:c2:87:42:0b:9c:
c8:24:8c:c1:a5:b0:77:63:56:ac:d0:ea:3b:48:35:
b5:fc:80:08:c0:a8:9d:0e:a6:36:d9:4b:76:23:53:
8c:3c:75:ad:75:f5:78:16:d1:b9:9b:ae:cc:c3:c3:
b6:2d:26:d6:ea:29:cf:8a:b9:79:ba:cf:08:6f:e3:
ec:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:93:14:FE:83:82:E1:AB:01:40:33:62:DD:05:27:AD:55:5A:8F:89
X509v3 Authority Key Identifier:
keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:99:54:20:4d:de:2c:d1:b4:ec:e2:ef:9e:21:39:fa:6b:9f:
ea:89:a3:0c:82:f7:85:78:b7:68:14:5e:b0:a2:89:fd:32:53:
9b:e1:89:ab:52:6c:9c:1b:46:83:44:bc:f4:8c:dc:aa:df:68:
40:8c:8e:df:bf:f8:bd:94:ba:c5:00:aa:db:5e:45:11:b3:52:
e9:21:8b:d5:ff:c9:12:ff:85:b8:59:13:a9:29:a4:83:59:ba:
2a:37:0a:bb:12:aa:ba:f0:5f:d6:1c:6f:5a:df:a7:ec:96:16:
d9:7d:fe:5f:43:59:b6:cd:93:28:b0:f0:4d:22:2c:5f:2e:39:
2f:25:e8:b3:10:fc:62:77:48:c9:07:5f:fa:37:ab:29:f4:23:
1b:f9:ff:b7:ac:91:1b:82:75:bb:3b:ad:5b:f4:54:66:7e:ea:
80:9c:74:30:f2:53:7f:a9:2d:14:95:ee:a5:65:ee:63:9e:0e:
9d:a3:0f:6a:66:9f:08:e1:dd:2e:0f:c6:17:3b:f5:48:3c:28:
1b:1c:b6:5f:a7:28:9d:96:9d:bb:f7:6b:e0:11:86:80:2d:38:
4a:99:93:c4:e9:d6:e3:19:71:05:04:5d:72:a5:19:96:c9:f0:
c1:51:f5:a6:ae:f9:c7:f1:1d:1b:4f:92:19:1a:03:57:b5:fe:
3f:72:04:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzYuGzfANQ+EQg4m5pCnVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZjdiMGRkOWZmY2EyZjg1NzM0YzUzN2NiZWY1Y2NkMTE5
OWU1YmMwHhcNMjUwODIzMTIwMDUxWhcNMjUwODI0MTIwMDUxWjAzMTEwLwYDVQQD
EygxMzkzMTRmZTgzODJlMWFiMDE0MDMzNjJkZDA1MjdhZDU1NWE4Zjg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCDj5LlTETipR34+LXv19q0GDK1x
P8KO37MErhamqr919UbGhJgQpKiOqjcp9mQvIfokqp9eAKfRCvaozLe3Zk4OdvJh
JURaenp3pIyZ9Jd+zWIzueEJOFXS6Db062Z/i5uSc+EYLXb3QB0QCDW6eyVS0P3t
b3eEPCD+Oh4JWlgwNjxNHbB6CHs4BN1mXmIAvscnumNDBAYK6evH8gFSmnUqcv8C
yrHsa+9T5Urqkta7RnESMllXD67OQVTrwodCC5zIJIzBpbB3Y1as0Oo7SDW1/IAI
wKidDqY22Ut2I1OMPHWtdfV4FtG5m67Mw8O2LSbW6inPirl5us8Ib+PsuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBOTFP6DguGrAUAzYt0FJ61VWo+JMB8GA1UdIwQY
MBaAFIj3sN2f/KL4VzTFN8vvXM0RmeW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMt
MTM2OTA1ZTJjN2M1LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMtMTM2OTA1ZTJjN2M1
LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApplUIE3e
LNG07OLvniE5+muf6omjDIL3hXi3aBResKKJ/TJTm+GJq1JsnBtGg0S89Izcqt9o
QIyO37/4vZS6xQCq215FEbNS6SGL1f/JEv+FuFkTqSmkg1m6KjcKuxKquvBf1hxv
Wt+n7JYW2X3+X0NZts2TKLDwTSIsXy45LyXosxD8YndIyQdf+jerKfQjG/n/t6yR
G4J1uzutW/RUZn7qgJx0MPJTf6ktFJXupWXuY54OnaMPamafCOHdLg/GFzv1SDwo
Gxy2X6conZadu/dr4BGGgC04SpmTxOnW4xlxBQRdcqUZlsnwwVH1pq75x/EdG0+S
GRoDV7X+P3IEmQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:48:11 2025 by rpki-client