Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: 1mMnWB2KZblxGxAmr40wE7hw0EVAtXYpvJIXN8WvV5U=
Subject key identifier: C8:30:70:45:AF:C4:38:FC:CF:72:0D:1F:AD:64:02:79:E2:B4:8A:41
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 0199FBEBD51A049AD874188051C3E17DC2F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 10:02:40 +0000
Manifest this update: Sun 19 Oct 2025 10:02:40 +0000
Manifest next update: Mon 20 Oct 2025 10:02:40 +0000
Files and hashes: 1: gl5jVkYAoBFN7cdrLnkDFxT9xzs.roa (hash: DKhlihYjJGtiikGfA1O1zHxswQCNAc4gtqIYH1Qddqc=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: no5nXXxDbUlnNFDmWWj398khe62NaihY0HqfS4LINpk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:d5:1a:04:9a:d8:74:18:80:51:c3:e1:7d:c2:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: Oct 19 10:02:40 2025 GMT
Not After : Oct 20 10:02:40 2025 GMT
Subject: CN=c8307045afc438fccf720d1fad640279e2b48a41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:99:5f:44:7d:a5:96:d2:78:d8:71:74:14:4a:
4e:dc:3e:72:b7:40:e5:7c:3d:1d:a2:11:03:d7:72:
b4:07:fa:d1:86:6f:aa:c5:69:f3:b0:4c:c1:fb:d7:
8a:eb:60:4b:34:46:dd:eb:71:94:93:3a:53:00:5f:
01:24:0c:71:4f:25:bc:e2:da:cd:69:1a:47:ce:bb:
4e:de:54:ef:97:ed:9e:6d:5f:70:91:1a:e4:63:1e:
b2:66:ad:53:7a:95:7e:d3:70:07:7c:70:6c:cb:af:
98:98:34:bd:e1:cf:8f:c3:70:c6:a1:51:87:75:5b:
bd:ba:73:28:d8:98:1b:93:30:52:b8:01:f2:5e:ff:
15:b9:26:06:93:b5:43:b7:94:1b:fa:31:7b:2f:7d:
31:8f:b6:b9:48:59:18:7d:4a:e6:87:c2:96:8b:c6:
b1:2d:c6:31:8e:96:19:96:b5:fd:0b:db:42:91:77:
5e:14:2a:18:3f:80:25:fb:4d:78:d0:ad:e5:84:0a:
40:bb:69:43:f7:1b:94:78:51:d2:8e:36:fd:19:66:
72:97:c7:f7:db:37:4f:b8:e7:17:1a:22:27:d4:f5:
e0:64:39:d5:51:e3:c3:c1:81:23:c4:80:55:15:a3:
6b:c3:ee:ee:44:2e:1a:cd:2c:f3:20:cc:ca:2d:81:
a0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:30:70:45:AF:C4:38:FC:CF:72:0D:1F:AD:64:02:79:E2:B4:8A:41
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:b2:6e:db:80:75:03:da:ab:ac:13:c2:26:95:0c:e0:16:f2:
b2:65:06:89:55:bb:b6:3b:b3:d2:f8:12:2d:74:68:fa:a3:d5:
aa:f6:2d:33:86:dc:e1:7b:3a:42:33:ca:7a:46:b0:0c:e0:ee:
ff:bb:86:8c:f1:e5:94:cc:c0:84:b3:0b:93:49:44:4d:cd:33:
90:f7:be:b7:cc:b3:f1:8a:4f:1a:ee:59:46:9e:9b:fa:8a:00:
24:04:25:0d:12:a8:5f:70:d1:f9:30:db:ea:b7:36:ee:e5:98:
27:38:89:1f:4f:7a:41:58:ec:08:98:7e:64:87:1a:43:e9:62:
41:a3:ae:33:60:a9:2d:8d:9a:b0:02:bb:d5:ab:d5:72:29:1d:
fa:a6:14:5f:06:7c:59:5a:f7:6c:96:99:63:e7:70:1e:3a:b1:
c2:9b:ca:34:7a:f0:1f:7b:d9:6b:cf:2c:b6:07:3d:02:db:67:
3d:e1:d8:21:a7:0c:cf:e3:c3:37:fc:4a:46:a8:c4:77:cb:3a:
93:7b:13:cf:a6:57:2f:a1:c8:31:f1:f7:cb:3e:e5:2b:73:f2:
08:7f:b4:07:99:1a:1a:93:23:7d:ca:b2:31:cc:9d:f8:38:98:
48:0f:bc:93:94:29:fa:7e:4f:6a:10:3e:9a:80:34:42:4d:b4:
25:70:51:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:24:26 2025 by rpki-client