Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: 0KvN2fB8f3VDpmL5PR5Awv1zcLrRx22xINyrzRpdwBI=
Subject key identifier: 0A:92:51:46:99:89:2E:12:F1:65:43:C9:96:26:B1:69:D2:E4:26:98
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 0198D8513409D0D5874CE32DAB0D4EEB5C69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 19:04:16 +0000
Manifest this update: Sat 23 Aug 2025 19:04:16 +0000
Manifest next update: Sun 24 Aug 2025 19:04:16 +0000
Files and hashes: 1: gl5jVkYAoBFN7cdrLnkDFxT9xzs.roa (hash: DKhlihYjJGtiikGfA1O1zHxswQCNAc4gtqIYH1Qddqc=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: jajoMK00XKF0fxJwKvqjY53Ej8vhl3v6rGU1LRvfu/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:51:34:09:d0:d5:87:4c:e3:2d:ab:0d:4e:eb:5c:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: Aug 23 19:04:16 2025 GMT
Not After : Aug 24 19:04:16 2025 GMT
Subject: CN=0a92514699892e12f16543c99626b169d2e42698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:06:98:14:7f:b4:ea:0f:6b:6b:4d:8b:83:a0:
f4:13:69:91:d1:c8:04:61:30:13:0d:bb:c3:49:4c:
4b:6d:72:ff:1c:bf:33:3b:a1:71:d8:66:c3:f7:16:
b9:cd:27:98:7e:6a:89:4d:5b:c4:e4:3e:d1:ef:b1:
2e:ea:a7:3a:02:eb:b6:b0:d6:96:fd:d7:0d:89:12:
cb:cb:89:50:67:52:50:ee:89:c1:cb:c6:2f:ec:8c:
ef:2d:ca:34:0d:f1:e1:ef:0c:be:1a:5d:54:d9:d9:
9d:50:c1:66:9f:9c:b3:0e:33:24:83:c0:82:93:ea:
85:ec:55:d8:8e:13:c5:57:5a:fa:f6:e7:1e:38:94:
3a:03:c9:0a:c6:ac:9d:8e:ee:ef:fd:6a:e5:a2:03:
8d:5c:6c:b7:ed:c6:02:4d:1d:0a:76:53:61:11:11:
5d:12:02:3a:97:cd:81:40:31:1d:f6:dc:2c:0b:9d:
52:e4:06:a9:44:37:bc:bf:eb:62:ba:d6:ba:e8:fb:
c3:50:4e:5a:44:c9:73:a0:11:d8:bc:4e:2a:69:02:
68:c3:56:a1:fe:36:e8:e3:47:fc:b2:39:30:ee:bd:
80:47:b3:3b:a7:83:1e:c6:71:3d:62:18:22:06:eb:
75:4e:10:b8:17:de:63:14:ad:43:43:00:a6:d4:18:
d3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:92:51:46:99:89:2E:12:F1:65:43:C9:96:26:B1:69:D2:E4:26:98
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:c3:32:d0:ac:8d:47:cb:f5:f5:97:44:8c:5e:7c:0b:a8:84:
6c:07:e0:49:ef:38:f4:cf:80:41:80:6e:58:6c:8e:ae:88:e2:
d5:e6:08:24:90:aa:e1:d4:4c:6e:51:b2:3e:a6:56:21:11:1f:
2a:45:6c:55:7e:11:25:2b:cd:92:d8:ff:1b:12:27:17:7f:9e:
9c:82:4b:89:eb:00:d8:5c:db:6c:52:70:be:3c:a0:92:12:a5:
e6:40:62:a0:f9:12:26:91:14:77:54:6e:b1:cf:6f:79:e7:07:
4b:8e:27:70:45:83:df:82:db:69:9d:12:75:f6:d6:f9:50:cc:
62:65:c9:34:28:4b:23:54:6a:3f:f4:d1:6f:ea:67:c3:6c:16:
b1:1b:a6:98:1c:59:44:f2:18:d1:70:5f:71:6c:7d:5d:f6:f2:
7a:fe:dc:49:95:75:1a:6a:6f:a9:ec:5e:b1:16:2b:d8:d6:c1:
d2:1d:ee:d5:12:6b:2e:3d:87:4a:9d:d7:bd:fd:74:c7:d9:00:
ce:52:51:7f:da:cd:2b:19:f2:0a:74:e4:01:c7:5f:22:5c:cb:
48:23:7f:d7:2f:de:d5:69:73:71:6c:17:7a:26:4f:13:b4:64:
92:ec:4d:8f:10:26:76:ad:46:28:95:51:45:57:1f:5f:6f:14:
ea:3b:07:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYUTQJ0NWHTOMtqw1O61xpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhZjc4NDc3MzdlNzQ5NDJiMmJlNzRiOTNmZDAyZDkwMGQz
MDliMjAwHhcNMjUwODIzMTkwNDE2WhcNMjUwODI0MTkwNDE2WjAzMTEwLwYDVQQD
EygwYTkyNTE0Njk5ODkyZTEyZjE2NTQzYzk5NjI2YjE2OWQyZTQyNjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9AaYFH+06g9ra02Lg6D0E2mR0cgE
YTATDbvDSUxLbXL/HL8zO6Fx2GbD9xa5zSeYfmqJTVvE5D7R77Eu6qc6Auu2sNaW
/dcNiRLLy4lQZ1JQ7onBy8Yv7IzvLco0DfHh7wy+Gl1U2dmdUMFmn5yzDjMkg8CC
k+qF7FXYjhPFV1r69uceOJQ6A8kKxqydju7v/WrlogONXGy37cYCTR0KdlNhERFd
EgI6l82BQDEd9twsC51S5AapRDe8v+tiuta66PvDUE5aRMlzoBHYvE4qaQJow1ah
/jbo40f8sjkw7r2AR7M7p4MexnE9YhgiBut1ThC4F95jFK1DQwCm1BjT6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAqSUUaZiS4S8WVDyZYmsWnS5CaYMB8GA1UdIwQY
MBaAFIr3hHc350lCsr50uT/QLZANMJsgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXZlRWR6Zm5TVUt5dm5TNVA5QXRrQTB3bXlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni81MjM4NGItZTdhNC00MjY5LWEwY2Mt
N2VmYzI4MDhkMTI1LzEvaXZlRWR6Zm5TVUt5dm5TNVA5QXRrQTB3bXlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni81MjM4NGItZTdhNC00MjY5LWEwY2MtN2VmYzI4MDhkMTI1
LzEvaXZlRWR6Zm5TVUt5dm5TNVA5QXRrQTB3bXlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL8My0KyN
R8v19ZdEjF58C6iEbAfgSe849M+AQYBuWGyOroji1eYIJJCq4dRMblGyPqZWIREf
KkVsVX4RJSvNktj/GxInF3+enIJLiesA2FzbbFJwvjygkhKl5kBioPkSJpEUd1Ru
sc9veecHS44ncEWD34LbaZ0SdfbW+VDMYmXJNChLI1RqP/TRb+pnw2wWsRummBxZ
RPIY0XBfcWx9Xfbyev7cSZV1GmpvqexesRYr2NbB0h3u1RJrLj2HSp3Xvf10x9kA
zlJRf9rNKxnyCnTkAcdfIlzLSCN/1y/e1WlzcWwXeiZPE7RkkuxNjxAmdq1GKJVR
RVcfX28U6jsHDA==
-----END CERTIFICATE-----
Generated at Sun Aug 24 00:18:56 2025 by rpki-client