Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
File: iu8WONCRG6mIZOl5yEJrpPQaJy4.mft (raw, json)
Hash identifier: 28KnLyWG4sI7Rs0z56mcxD6M1cUU3NzU/juHoOtjbwI=
Subject key identifier: D6:05:A6:87:10:81:2C:1D:A9:C4:8C:6A:08:48:6F:E3:1D:10:A7:5B
Authority key identifier: 8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E
Certificate issuer: /CN=8aef1638d0911ba98864e979c8426ba4f41a272e
Certificate serial: 0198D47332C4BFCCDA643A1F9E424B796514
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 01:02:55 +0000
Manifest this update: Sat 23 Aug 2025 01:02:55 +0000
Manifest next update: Sun 24 Aug 2025 01:02:55 +0000
Files and hashes: 1: if3KaihHpbg1Z08V6cXxVYQmFhk.roa (hash: 4GJMU1mopT3EhZuM0ayjHedY3bbBO8iZn11kZBRbuts=)
2: iu8WONCRG6mIZOl5yEJrpPQaJy4.crl (hash: lP0WdFWTjqqJZ3UxgZxRKGpyzBIiCeYEqusewlWQ2yk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:32:c4:bf:cc:da:64:3a:1f:9e:42:4b:79:65:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aef1638d0911ba98864e979c8426ba4f41a272e
Validity
Not Before: Aug 23 01:02:55 2025 GMT
Not After : Aug 24 01:02:55 2025 GMT
Subject: CN=d605a68710812c1da9c48c6a08486fe31d10a75b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:49:e0:a8:df:05:fa:48:bc:67:fd:dc:03:af:
d8:f8:33:82:5e:cb:11:98:08:7d:61:db:3c:16:4a:
e0:1d:e0:d9:a6:04:2e:78:fe:81:46:24:2b:4f:91:
90:ff:5d:58:45:04:04:47:18:9c:77:78:0b:79:03:
00:7c:89:10:45:68:b6:12:49:5c:a1:b4:9a:73:97:
9c:f4:b5:38:c5:f7:e7:5d:bc:54:a0:f4:91:3e:f6:
c9:88:78:49:6a:5a:1b:c1:c2:c3:62:e9:c8:8e:38:
89:b6:e4:85:7a:6a:15:2d:ba:ff:40:1f:7e:d9:6a:
d3:46:41:de:31:6f:50:a6:f8:b4:56:af:a2:35:2e:
3d:5c:2f:db:48:9d:0f:ee:be:ec:59:d0:75:ee:81:
4a:4f:6c:6d:34:2d:59:f9:0f:1d:da:96:5d:7b:dc:
91:53:f0:51:87:5f:f9:5d:e8:c2:65:48:ca:93:99:
9f:f6:2e:01:24:a6:0c:c9:0e:1d:ac:6e:9c:a2:03:
b6:21:ce:2c:9a:b3:af:a6:97:50:d8:d2:d3:08:ec:
29:74:bc:d2:76:51:65:44:8a:1d:1a:92:2b:5b:17:
6c:a7:21:e5:f7:52:8a:10:8f:17:46:49:8e:72:c9:
1e:17:97:ee:97:1d:23:5f:d3:a1:9c:24:3c:55:bc:
ef:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:05:A6:87:10:81:2C:1D:A9:C4:8C:6A:08:48:6F:E3:1D:10:A7:5B
X509v3 Authority Key Identifier:
keyid:8A:EF:16:38:D0:91:1B:A9:88:64:E9:79:C8:42:6B:A4:F4:1A:27:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iu8WONCRG6mIZOl5yEJrpPQaJy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/265769-354e-4a8b-9542-94f97b3a2ce2/1/iu8WONCRG6mIZOl5yEJrpPQaJy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:b3:3d:71:de:dc:de:c1:2a:7a:5d:96:6b:4f:c6:c5:7d:80:
30:c1:37:08:e7:1f:d9:5a:da:1a:82:e5:9f:44:70:5a:b1:63:
6c:e8:20:85:87:76:b6:b7:da:6c:02:b5:43:8a:cc:db:02:91:
16:1c:64:8c:dc:7c:76:46:d5:e4:07:64:f2:18:ba:ff:4f:e5:
92:78:a2:6c:67:bc:b0:be:4d:f8:65:24:eb:5e:61:72:f2:d5:
83:5a:f5:e8:bf:3d:71:80:34:ed:8b:a5:4a:c9:e9:15:5c:a2:
64:06:7e:d3:96:6f:56:d1:d5:30:62:c2:86:8e:9e:94:5a:f8:
cc:10:b9:09:e2:47:56:36:fc:67:48:95:17:55:75:5e:5a:52:
0d:34:5e:41:ad:31:3a:17:33:42:b8:4e:55:f3:0c:42:83:d0:
48:72:0c:45:b0:e5:a9:4c:66:70:4c:af:78:13:a9:bd:b5:c8:
c5:e7:0a:ac:04:6b:58:55:18:6c:37:ab:96:8f:02:f9:09:b5:
b9:99:e3:f0:61:64:e9:3e:d5:29:07:a4:20:b0:d5:ac:ab:2b:
79:fa:1f:6a:93:b1:67:62:4e:6b:5e:d9:07:f9:ac:af:a4:60:
cf:4e:95:40:aa:02:9e:77:01:4d:ae:dc:2b:39:14:98:ca:3f:
12:7e:e2:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUczLEv8zaZDofnkJLeWUUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhZWYxNjM4ZDA5MTFiYTk4ODY0ZTk3OWM4NDI2YmE0ZjQx
YTI3MmUwHhcNMjUwODIzMDEwMjU1WhcNMjUwODI0MDEwMjU1WjAzMTEwLwYDVQQD
EyhkNjA1YTY4NzEwODEyYzFkYTljNDhjNmEwODQ4NmZlMzFkMTBhNzViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEngqN8F+ki8Z/3cA6/Y+DOCXssR
mAh9Yds8FkrgHeDZpgQueP6BRiQrT5GQ/11YRQQERxicd3gLeQMAfIkQRWi2Eklc
obSac5ec9LU4xffnXbxUoPSRPvbJiHhJalobwcLDYunIjjiJtuSFemoVLbr/QB9+
2WrTRkHeMW9Qpvi0Vq+iNS49XC/bSJ0P7r7sWdB17oFKT2xtNC1Z+Q8d2pZde9yR
U/BRh1/5XejCZUjKk5mf9i4BJKYMyQ4drG6cogO2Ic4smrOvppdQ2NLTCOwpdLzS
dlFlRIodGpIrWxdspyHl91KKEI8XRkmOcskeF5fulx0jX9OhnCQ8VbzvSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNYFpocQgSwdqcSMaghIb+MdEKdbMB8GA1UdIwQY
MBaAFIrvFjjQkRupiGTpechCa6T0GicuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My8yNjU3NjktMzU0ZS00YThiLTk1NDIt
OTRmOTdiM2EyY2UyLzEvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My8yNjU3NjktMzU0ZS00YThiLTk1NDItOTRmOTdiM2EyY2Uy
LzEvaXU4V09OQ1JHNm1JWk9sNXlFSnJwUFFhSnk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARrM9cd7c
3sEqel2Wa0/GxX2AMME3COcf2VraGoLln0RwWrFjbOgghYd2trfabAK1Q4rM2wKR
FhxkjNx8dkbV5Adk8hi6/0/lkniibGe8sL5N+GUk615hcvLVg1r16L89cYA07Yul
SsnpFVyiZAZ+05ZvVtHVMGLCho6elFr4zBC5CeJHVjb8Z0iVF1V1XlpSDTReQa0x
OhczQrhOVfMMQoPQSHIMRbDlqUxmcEyveBOpvbXIxecKrARrWFUYbDerlo8C+Qm1
uZnj8GFk6T7VKQekILDVrKsrefofapOxZ2JOa17ZB/msr6Rgz06VQKoCnncBTa7c
KzkUmMo/En7iGw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:31:35 2025 by rpki-client