Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
File: iwVEhe5ixvGTlhPLogZp7vRQT3k.mft (raw, json)
Hash identifier: 1SM3lX5BbvMZTz2sG7M2XAjT31cup7Qqq7Pz+Y+WiZs=
Subject key identifier: B6:67:86:36:7F:17:07:CA:2F:56:88:F6:1F:46:4F:DC:DE:05:59:E7
Authority key identifier: 8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
Certificate issuer: /CN=8b054485ee62c6f1939613cba20669eef4504f79
Certificate serial: 0199FE4755D0760444820B141D6644EB856F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
Manifest number: 0CD4
Signing time: Sun 19 Oct 2025 21:01:51 +0000
Manifest this update: Sun 19 Oct 2025 21:01:51 +0000
Manifest next update: Mon 20 Oct 2025 21:01:51 +0000
Files and hashes: 1: FmWPQsDQv1I31vsCB-XoPwOttAE.roa (hash: xjF9H58/BASj6CKq3v5pVooMgpKIb+h+UMw0XGNXQo8=)
2: W0D9WIXmr4DG_xEj-xUZT82-dxQ.roa (hash: fBvWuzB9wp05SoO5x+Vb/EneDFqD/kJHT0KgvrAsF24=)
3: aheTt6_pS0K22xA67glREELod8A.roa (hash: qWC2pzWM7a75jc5rNLOSS10p2/VCBqYrjSpxRU7D9zI=)
4: g_SxF-_E_VpwVrwNdmKsnzbOYaM.roa (hash: wSo0WU3KC/Wo2i+eQ7vlG4IlKtTmfnJLRouHYXZqnO4=)
5: iwVEhe5ixvGTlhPLogZp7vRQT3k.crl (hash: G+ITr48wG4te8vS0joMtGXeMIR2TYGOJ9nNJmxhEqZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:55:d0:76:04:44:82:0b:14:1d:66:44:eb:85:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b054485ee62c6f1939613cba20669eef4504f79
Validity
Not Before: Oct 19 21:01:51 2025 GMT
Not After : Oct 20 21:01:51 2025 GMT
Subject: CN=b66786367f1707ca2f5688f61f464fdcde0559e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8d:ae:89:d3:46:15:f3:64:8f:24:90:dc:c4:
c0:f5:79:5a:bc:86:2c:90:6d:ed:4a:3e:46:87:79:
fa:02:2d:e7:ba:3f:41:bf:58:bd:5b:5a:97:ad:cc:
aa:71:f4:f7:5d:58:dc:8a:04:9a:64:29:85:45:1d:
71:a0:fe:63:11:1f:bb:1a:71:cd:94:d0:69:0d:b2:
0e:e4:a9:66:6e:e1:b6:c2:48:78:8e:00:13:06:0a:
24:5a:ce:96:76:b8:bf:b7:a2:73:05:6b:6f:30:86:
e6:cf:28:f4:e4:94:0b:c4:13:7a:cb:01:43:25:bc:
90:00:1c:a2:ef:5e:05:0d:c1:83:2c:a2:dc:a8:87:
b7:fe:b7:d0:12:ff:28:ca:b4:50:45:ff:e0:54:27:
af:c3:40:3d:32:75:37:4c:b9:fc:13:e6:04:35:f9:
6b:ef:05:bb:3c:40:86:cc:7e:3f:72:f2:a5:65:d6:
fd:17:68:e7:19:e1:1e:bf:22:a0:a9:14:15:b6:87:
f0:b9:5b:ce:d7:40:5c:fd:76:1c:48:72:c1:9c:ac:
f4:a3:16:9d:06:c1:c2:8e:25:c1:8c:be:e6:36:7c:
06:43:b5:7b:d5:8f:cf:32:a6:07:db:57:cd:d2:e3:
64:6a:24:de:b0:fd:79:d5:2c:06:a4:4a:a8:a6:cd:
68:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:67:86:36:7F:17:07:CA:2F:56:88:F6:1F:46:4F:DC:DE:05:59:E7
X509v3 Authority Key Identifier:
keyid:8B:05:44:85:EE:62:C6:F1:93:96:13:CB:A2:06:69:EE:F4:50:4F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwVEhe5ixvGTlhPLogZp7vRQT3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/779c09-f49a-4b38-a778-6bc390995cab/1/iwVEhe5ixvGTlhPLogZp7vRQT3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:09:c6:f0:6a:ee:39:98:8f:90:2f:c1:5c:cf:20:65:f0:41:
5f:cc:ab:b7:ae:c5:0a:88:6c:c0:d9:05:03:3d:0a:19:99:9c:
cb:93:27:7b:95:53:8b:a6:3b:ba:a2:08:c9:43:55:0f:95:4a:
e3:77:85:cb:ad:92:ff:a5:1d:ca:d9:36:d3:15:8a:68:03:5e:
7f:a8:78:8c:0c:6e:ac:9a:69:d8:9b:65:90:59:cf:80:2f:24:
03:3d:1e:b6:81:ef:d4:e1:f3:15:ae:11:1f:09:d1:58:10:e4:
b4:2d:65:05:c1:c6:c0:1b:63:55:ba:4e:8e:98:ec:0e:89:94:
b0:67:aa:2c:90:f7:f2:ed:3c:3f:8e:75:cf:9f:b6:95:08:cc:
98:07:5b:08:63:d7:12:51:04:b7:d5:1a:a3:3b:5c:6a:48:55:
b8:05:f4:89:65:36:29:51:64:fa:6f:1d:8c:98:17:b8:93:46:
40:24:b0:64:0d:3a:0c:9b:d4:bc:90:eb:fd:49:5b:31:4f:5a:
d2:c7:64:0d:5b:2d:df:e5:0b:9f:6a:c1:d4:bb:41:fb:20:b0:
41:51:ff:1f:eb:44:88:d7:4c:c2:46:3c:fe:8f:40:92:d2:b9:
60:86:56:10:da:c5:19:df:f0:2a:fe:c4:ad:7e:24:b9:d0:8e:
09:57:e7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:28:38 2025 by rpki-client