
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File: iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier: FznkFoL+mizMiJtjqCd2tcDAkd7e5OyRa0aMm90EO18=
Subject key identifier: EA:B6:75:51:5A:F5:8C:A5:44:DC:B8:A9:73:A3:85:3B:DB:93:A5:66
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer: /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial: 0199FB7CE0D732D89BC9C6A810F9896E6F55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number: 05A3
Signing time: Sun 19 Oct 2025 08:01:29 +0000
Manifest this update: Sun 19 Oct 2025 08:01:29 +0000
Manifest next update: Mon 20 Oct 2025 08:01:29 +0000
Files and hashes: 1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: xioPAulcoyQCazfXKL7Dvb52Nbiu2MkvQEJs6JOnXqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:e0:d7:32:d8:9b:c9:c6:a8:10:f9:89:6e:6f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Validity
Not Before: Oct 19 08:01:29 2025 GMT
Not After : Oct 20 08:01:29 2025 GMT
Subject: CN=eab675515af58ca544dcb8a973a3853bdb93a566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:03:c2:1b:61:c2:a1:92:07:23:27:3a:0a:88:
25:71:ab:ea:1e:bf:b1:98:03:79:03:db:a8:7d:e4:
bf:5d:a3:d6:78:1d:d8:3f:ac:f0:43:79:d7:bc:02:
64:80:ce:db:be:6f:01:e9:3f:92:13:1e:0d:55:22:
3d:5c:53:e3:c7:e8:7f:dd:2e:ad:16:02:cb:9c:09:
34:e1:e7:ec:cb:a3:83:39:91:8b:51:0c:8b:3f:64:
10:5c:c5:40:b7:ec:bb:28:a9:5b:62:6e:f6:c2:a6:
e5:99:8f:8c:d5:9f:a4:38:57:94:f3:a6:d7:46:07:
e9:1b:87:46:0f:aa:5d:5b:fb:15:dd:13:2f:13:7d:
d5:6b:ad:73:82:91:96:b0:00:f8:9f:76:21:91:b1:
44:29:e3:c5:8f:2e:47:8b:c9:4b:06:11:42:3c:f2:
79:0c:97:6c:2b:74:f0:ca:32:9d:8c:9b:90:7b:e5:
83:19:a7:41:47:32:9a:5a:fe:98:4a:2e:05:b8:7b:
67:35:87:d2:c1:ee:aa:26:eb:50:05:c1:26:ce:dd:
8d:1f:24:24:c1:d2:23:9a:bc:7d:6d:ad:96:f8:f1:
ca:1f:a2:28:3b:1e:9b:b5:ae:84:08:89:7c:e8:f7:
5a:38:fd:d3:e9:3e:bb:98:86:50:5c:ef:5d:e9:be:
86:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B6:75:51:5A:F5:8C:A5:44:DC:B8:A9:73:A3:85:3B:DB:93:A5:66
X509v3 Authority Key Identifier:
keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:15:92:d9:ba:5a:b0:83:1d:27:b5:aa:06:ae:1f:38:b6:5b:
40:ce:6a:40:91:e7:58:36:52:11:50:79:5b:0f:78:7e:6c:6d:
67:b5:f2:20:a2:eb:17:60:87:3c:d3:6c:4f:c7:b4:64:e1:86:
10:34:72:51:41:92:a3:35:6d:45:9d:32:b1:85:42:77:73:60:
88:e0:63:d9:1a:a1:16:8e:1d:2a:64:0a:94:df:f0:8b:7a:8b:
ff:8c:e4:e1:33:56:cb:1b:47:a0:20:32:4c:76:ca:d9:9f:be:
5b:dc:67:f7:fb:8c:17:df:b6:e6:cc:8c:7f:6d:bf:eb:12:ee:
c4:0e:c4:f9:11:82:4b:f8:a4:90:a9:5f:48:c3:48:b5:8e:b8:
87:23:66:84:16:35:03:cf:1a:72:12:c6:cb:c6:20:4f:e3:f5:
5a:21:58:e1:67:fb:35:fc:c5:2d:c0:8a:1b:84:6c:8e:68:33:
d3:16:97:41:f1:d3:29:66:a9:5b:e4:b7:b0:1c:a9:80:6a:00:
7e:69:90:92:69:dc:14:ba:2e:9e:a7:04:93:9e:f8:ae:e2:b2:
83:d5:09:c2:03:3a:3a:ed:b5:f7:d3:87:15:94:13:e2:b7:ac:
a0:04:16:5a:5d:e5:c7:f8:96:fc:50:5f:18:7f:5c:f5:10:44:
83:c4:a4:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fODXMtibycaoEPmJbm9VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5N2YzNWFjNDgyOGFlYTk1ZmE1ZDJkODA0ZDMzYTdiMGNm
ZjQ1OGEwHhcNMjUxMDE5MDgwMTI5WhcNMjUxMDIwMDgwMTI5WjAzMTEwLwYDVQQD
EyhlYWI2NzU1MTVhZjU4Y2E1NDRkY2I4YTk3M2EzODUzYmRiOTNhNTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2APCG2HCoZIHIyc6CoglcavqHr+x
mAN5A9uofeS/XaPWeB3YP6zwQ3nXvAJkgM7bvm8B6T+SEx4NVSI9XFPjx+h/3S6t
FgLLnAk04efsy6ODOZGLUQyLP2QQXMVAt+y7KKlbYm72wqblmY+M1Z+kOFeU86bX
RgfpG4dGD6pdW/sV3RMvE33Va61zgpGWsAD4n3YhkbFEKePFjy5Hi8lLBhFCPPJ5
DJdsK3TwyjKdjJuQe+WDGadBRzKaWv6YSi4FuHtnNYfSwe6qJutQBcEmzt2NHyQk
wdIjmrx9ba2W+PHKH6IoOx6bta6ECIl86PdaOP3T6T67mIZQXO9d6b6GEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOq2dVFa9YylRNy4qXOjhTvbk6VmMB8GA1UdIwQY
MBaAFIl/NaxIKK6pX6XS2ATTOnsM/0WKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYt
YjBlNDEwM2Y0OTYyLzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYtYjBlNDEwM2Y0OTYy
LzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAShWS2bpa
sIMdJ7WqBq4fOLZbQM5qQJHnWDZSEVB5Ww94fmxtZ7XyIKLrF2CHPNNsT8e0ZOGG
EDRyUUGSozVtRZ0ysYVCd3NgiOBj2RqhFo4dKmQKlN/wi3qL/4zk4TNWyxtHoCAy
THbK2Z++W9xn9/uMF9+25syMf22/6xLuxA7E+RGCS/ikkKlfSMNItY64hyNmhBY1
A88achLGy8YgT+P1WiFY4Wf7NfzFLcCKG4Rsjmgz0xaXQfHTKWapW+S3sBypgGoA
fmmQkmncFLounqcEk574ruKyg9UJwgM6Ou2199OHFZQT4resoAQWWl3lx/iW/FBf
GH9c9RBEg8SkNQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:05:58 2025 by rpki-client