Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
File: iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft (raw, json)
Hash identifier: pGdHzm+Fw1eVHZEoHYaPp6HRJbpiEibjskEMwJ3DC2U=
Subject key identifier: 8C:33:86:9A:BF:08:A5:D3:A5:FD:6B:BE:13:74:17:9A:43:E6:DB:B7
Authority key identifier: 88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
Certificate issuer: /CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Certificate serial: 0199FC5841582071D78D7B1B8F2E79830646
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
Manifest number: 058A
Signing time: Sun 19 Oct 2025 12:01:06 +0000
Manifest this update: Sun 19 Oct 2025 12:01:06 +0000
Manifest next update: Mon 20 Oct 2025 12:01:06 +0000
Files and hashes: 1: XBo1pVVrARNWOJzVGLIS7aXEyvs.roa (hash: LHmi+bbPW6X6RSAyxvQlIttnolx/pGqPJGLDRqAXVIU=)
2: iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl (hash: +BGXRLiTFl0ox6J08o3uaLxejB1KCIGp8CuxKe9XEk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:41:58:20:71:d7:8d:7b:1b:8f:2e:79:83:06:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88f7b0dd9ffca2f85734c537cbef5ccd1199e5bc
Validity
Not Before: Oct 19 12:01:06 2025 GMT
Not After : Oct 20 12:01:06 2025 GMT
Subject: CN=8c33869abf08a5d3a5fd6bbe1374179a43e6dbb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6f:42:5a:52:38:09:49:55:e0:ec:6e:4b:f7:
c6:12:18:ab:f3:88:80:fd:13:66:a5:ad:d2:90:ae:
c6:64:f0:2d:7a:98:02:80:a3:24:6a:7a:7a:ac:18:
e8:39:b7:c0:70:c6:0b:75:e6:05:e9:e8:b7:4b:97:
56:e8:84:ca:c4:e7:2e:7c:9c:d3:62:ad:b7:e8:b4:
63:53:1d:e6:c9:03:ef:9f:9f:4b:61:d4:c6:70:17:
02:96:ec:6d:4b:cf:c1:31:4e:2e:4f:15:c6:72:ca:
90:a1:3f:36:0f:c2:d7:3a:06:72:d7:6b:33:94:e5:
fb:61:76:7b:cc:8a:41:af:b8:e3:77:c0:c9:fc:3d:
ea:3c:45:db:e5:35:48:39:ba:11:8a:e0:bd:ae:ae:
36:94:73:ee:ef:2e:a0:ff:66:f1:e6:5b:7a:3e:9d:
0d:ae:cb:0b:e3:88:de:ad:31:25:27:4a:d9:17:61:
d2:21:fb:c6:7f:7e:0c:98:88:70:13:a1:9c:d3:3a:
b2:e2:d9:48:c7:0b:5c:de:a0:5e:70:ad:b2:6d:69:
92:6b:22:ca:d2:8f:ff:7f:36:f7:9b:fd:1d:df:e0:
91:bd:31:bf:4b:a3:ca:64:84:16:38:30:f7:3b:05:
55:f1:0e:26:76:83:e1:b4:d2:c6:89:81:6c:7d:db:
53:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:33:86:9A:BF:08:A5:D3:A5:FD:6B:BE:13:74:17:9A:43:E6:DB:B7
X509v3 Authority Key Identifier:
keyid:88:F7:B0:DD:9F:FC:A2:F8:57:34:C5:37:CB:EF:5C:CD:11:99:E5:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPew3Z_8ovhXNMU3y-9czRGZ5bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dc8c02-4f6d-49f6-882c-136905e2c7c5/1/iPew3Z_8ovhXNMU3y-9czRGZ5bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:5a:64:60:2d:86:bf:38:96:4a:3d:1f:63:2e:3d:00:c7:6c:
f4:ec:ce:41:58:c1:12:e4:d5:c6:40:fb:4c:6c:c4:c9:dc:14:
2d:96:cb:32:23:fc:c0:9d:53:a2:6c:a0:ac:65:b7:f7:da:58:
7f:6c:77:23:95:59:b8:c1:30:cb:7f:fc:e2:ff:43:79:65:00:
ef:ae:8b:68:09:a8:06:d2:ce:4b:4b:57:f9:15:0f:72:50:19:
8d:69:df:69:fd:97:02:7e:71:79:28:ff:43:19:f7:55:57:4a:
ad:fd:ff:ad:92:7b:c6:db:35:2e:f6:55:f5:5b:4e:62:40:bd:
8d:8f:73:d7:b7:9b:18:71:25:1c:fc:65:17:73:24:27:10:64:
e6:1c:99:32:c8:8f:7b:0c:11:09:a7:c7:f2:42:e4:de:fb:74:
e4:ac:49:54:bc:75:30:2f:c2:1d:04:39:18:ff:a7:38:12:a5:
4b:3b:b2:8e:fe:a4:d7:e5:de:dc:ea:b2:82:c2:ea:60:0a:e0:
39:79:6c:7e:37:0a:e7:e6:96:d3:a0:aa:5b:05:d4:6c:70:e4:
49:a4:d5:90:3b:72:d6:93:a9:b5:66:e5:d4:4a:ff:1a:77:67:
11:b9:b2:e2:6d:b3:a3:3f:8c:b5:c2:4a:49:a1:46:51:c3:f3:
88:ea:4f:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WEFYIHHXjXsbjy55gwZGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZjdiMGRkOWZmY2EyZjg1NzM0YzUzN2NiZWY1Y2NkMTE5
OWU1YmMwHhcNMjUxMDE5MTIwMTA2WhcNMjUxMDIwMTIwMTA2WjAzMTEwLwYDVQQD
Eyg4YzMzODY5YWJmMDhhNWQzYTVmZDZiYmUxMzc0MTc5YTQzZTZkYmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7W9CWlI4CUlV4OxuS/fGEhir84iA
/RNmpa3SkK7GZPAtepgCgKMkanp6rBjoObfAcMYLdeYF6ei3S5dW6ITKxOcufJzT
Yq236LRjUx3myQPvn59LYdTGcBcCluxtS8/BMU4uTxXGcsqQoT82D8LXOgZy12sz
lOX7YXZ7zIpBr7jjd8DJ/D3qPEXb5TVIOboRiuC9rq42lHPu7y6g/2bx5lt6Pp0N
rssL44jerTElJ0rZF2HSIfvGf34MmIhwE6Gc0zqy4tlIxwtc3qBecK2ybWmSayLK
0o//fzb3m/0d3+CRvTG/S6PKZIQWODD3OwVV8Q4mdoPhtNLGiYFsfdtThwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIwzhpq/CKXTpf1rvhN0F5pD5tu3MB8GA1UdIwQY
MBaAFIj3sN2f/KL4VzTFN8vvXM0RmeW8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMt
MTM2OTA1ZTJjN2M1LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9kYzhjMDItNGY2ZC00OWY2LTg4MmMtMTM2OTA1ZTJjN2M1
LzEvaVBldzNaXzhvdmhYTk1VM3ktOWN6UkdaNWJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQVpkYC2G
vziWSj0fYy49AMds9OzOQVjBEuTVxkD7TGzEydwULZbLMiP8wJ1TomygrGW399pY
f2x3I5VZuMEwy3/84v9DeWUA766LaAmoBtLOS0tX+RUPclAZjWnfaf2XAn5xeSj/
Qxn3VVdKrf3/rZJ7xts1LvZV9VtOYkC9jY9z17ebGHElHPxlF3MkJxBk5hyZMsiP
ewwRCafH8kLk3vt05KxJVLx1MC/CHQQ5GP+nOBKlSzuyjv6k1+Xe3OqygsLqYArg
OXlsfjcK5+aW06CqWwXUbHDkSaTVkDty1pOptWbl1Er/GndnEbmy4m2zoz+MtcJK
SaFGUcPziOpPsA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:36:40 2025 by rpki-client