Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
File: IxMMmax6pAhscXVxFKQWP4AJAUI.mft (raw, json)
Hash identifier: Z0P9fuJ4U3FjtSG9ErqOqM/2E2XH6LH7o6xfedttmEs=
Subject key identifier: 08:F4:8E:27:81:FF:5F:78:BA:36:A3:D7:69:A0:4B:AC:A3:DC:99:85
Authority key identifier: 23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42
Certificate issuer: /CN=23130c99ac7aa4086c71757114a4163f80090142
Certificate serial: 0199FCC61870F50E6ACBC2F64FA5A1FA3B1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
Manifest number: 0A2B
Signing time: Sun 19 Oct 2025 14:01:04 +0000
Manifest this update: Sun 19 Oct 2025 14:01:04 +0000
Manifest next update: Mon 20 Oct 2025 14:01:04 +0000
Files and hashes: 1: 7LeNtT1Py-375udT6tgnEczdaA4.roa (hash: KcUWkl6MBuk85woap7zLa0rzE+sobb9Vo8npqesilrw=)
2: IxMMmax6pAhscXVxFKQWP4AJAUI.crl (hash: uEVRKyZbk2DSWwRdfUtdiA3dY7g2Ppes1ZEtMVKfB98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:18:70:f5:0e:6a:cb:c2:f6:4f:a5:a1:fa:3b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23130c99ac7aa4086c71757114a4163f80090142
Validity
Not Before: Oct 19 14:01:04 2025 GMT
Not After : Oct 20 14:01:04 2025 GMT
Subject: CN=08f48e2781ff5f78ba36a3d769a04baca3dc9985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:76:9e:a6:8d:43:70:f2:4a:3d:1a:12:3d:8e:
e0:cf:6c:60:b9:c3:8c:9e:6d:ec:4e:cd:04:80:54:
71:1b:2a:59:6e:7d:f0:1c:52:ee:cd:50:80:5d:ab:
42:0e:f1:b9:4c:44:ce:c5:5a:44:c2:dd:5d:84:ae:
23:2d:c4:76:0e:5a:38:06:94:a9:ad:bc:91:fd:c0:
cf:b3:fd:15:9b:ac:e6:f0:16:10:de:c1:ae:5a:2e:
bc:b7:97:33:19:8f:c4:b9:1d:88:64:32:70:83:cd:
12:4d:87:30:88:4b:30:8e:25:60:7e:7b:00:50:7f:
e0:77:0f:57:ea:ce:87:27:47:59:4f:b0:17:9d:b5:
39:0c:5a:e7:0d:e5:8b:15:4c:e3:4b:f2:34:cb:3b:
e1:82:30:6e:3c:7c:c7:40:8c:c4:0f:1a:95:4c:82:
a2:82:9b:01:d8:ed:fb:6b:21:60:06:19:38:3b:df:
62:94:1a:8e:5b:58:be:af:5f:e3:a1:eb:dc:fa:6b:
f1:fa:e1:47:ae:52:a5:cb:71:c3:70:85:68:96:0b:
a9:9b:34:f7:ab:40:90:13:fe:3f:f1:04:36:20:bd:
f0:ad:52:87:d7:09:68:5b:7a:fc:01:0c:1f:23:18:
67:27:47:41:d5:a8:23:35:85:a0:6e:0f:ed:c3:af:
b1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F4:8E:27:81:FF:5F:78:BA:36:A3:D7:69:A0:4B:AC:A3:DC:99:85
X509v3 Authority Key Identifier:
keyid:23:13:0C:99:AC:7A:A4:08:6C:71:75:71:14:A4:16:3F:80:09:01:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IxMMmax6pAhscXVxFKQWP4AJAUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/5c3ae6-2934-479e-8c2d-8e8d5b3e5586/1/IxMMmax6pAhscXVxFKQWP4AJAUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:37:7c:55:59:a8:c3:90:d7:08:6b:24:62:7c:0d:5f:f9:5a:
c9:9f:38:a1:25:3c:74:6c:43:a2:14:0f:9a:f0:f8:3f:31:7e:
87:48:de:d9:5a:37:b1:a2:c5:c5:45:ed:fe:b2:84:24:e2:06:
bb:22:93:f4:a2:22:03:df:3a:28:69:07:14:30:38:14:2b:da:
62:e9:3d:7c:81:29:93:6d:5e:ee:f2:b8:fb:84:cb:a9:fd:a4:
f8:f0:65:63:ab:bf:57:d8:f8:3b:67:25:69:24:80:5a:b5:0b:
20:c4:ac:12:15:f4:5c:5c:67:f3:9b:04:65:d8:85:ec:ed:5f:
70:4f:55:ef:d0:d2:ac:f5:54:cd:29:c2:f3:67:78:d1:49:b1:
cc:4c:2e:9e:ab:c6:6a:33:ce:85:56:34:7f:94:af:18:d4:ed:
4a:76:17:34:4f:63:c6:2d:ad:5f:9e:96:d7:23:f9:ed:79:07:
ac:76:22:98:53:c8:a6:11:ea:3c:dc:26:74:c7:4e:e3:a2:d9:
60:66:b5:1a:cc:7f:e5:34:08:ac:43:bc:6a:be:75:10:33:68:
c1:48:bf:8b:aa:91:98:89:91:59:88:ac:61:45:7b:6c:ce:7c:
ae:c9:fe:0b:d9:b7:7d:52:a6:93:f5:88:76:35:88:5c:e0:bb:
cc:fd:1f:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xhhw9Q5qy8L2T6Wh+jsdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMTMwYzk5YWM3YWE0MDg2YzcxNzU3MTE0YTQxNjNmODAw
OTAxNDIwHhcNMjUxMDE5MTQwMTA0WhcNMjUxMDIwMTQwMTA0WjAzMTEwLwYDVQQD
EygwOGY0OGUyNzgxZmY1Zjc4YmEzNmEzZDc2OWEwNGJhY2EzZGM5OTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXaepo1DcPJKPRoSPY7gz2xgucOM
nm3sTs0EgFRxGypZbn3wHFLuzVCAXatCDvG5TETOxVpEwt1dhK4jLcR2Dlo4BpSp
rbyR/cDPs/0Vm6zm8BYQ3sGuWi68t5czGY/EuR2IZDJwg80STYcwiEswjiVgfnsA
UH/gdw9X6s6HJ0dZT7AXnbU5DFrnDeWLFUzjS/I0yzvhgjBuPHzHQIzEDxqVTIKi
gpsB2O37ayFgBhk4O99ilBqOW1i+r1/joevc+mvx+uFHrlKly3HDcIVolgupmzT3
q0CQE/4/8QQ2IL3wrVKH1wloW3r8AQwfIxhnJ0dB1agjNYWgbg/tw6+x3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAj0jieB/194ujaj12mgS6yj3JmFMB8GA1UdIwQY
MBaAFCMTDJmseqQIbHF1cRSkFj+ACQFCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXhNTW1heDZwQWhzY1hWeEZLUVdQNEFKQVVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy81YzNhZTYtMjkzNC00NzllLThjMmQt
OGU4ZDViM2U1NTg2LzEvSXhNTW1heDZwQWhzY1hWeEZLUVdQNEFKQVVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy81YzNhZTYtMjkzNC00NzllLThjMmQtOGU4ZDViM2U1NTg2
LzEvSXhNTW1heDZwQWhzY1hWeEZLUVdQNEFKQVVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABTd8VVmo
w5DXCGskYnwNX/layZ84oSU8dGxDohQPmvD4PzF+h0je2Vo3saLFxUXt/rKEJOIG
uyKT9KIiA986KGkHFDA4FCvaYuk9fIEpk21e7vK4+4TLqf2k+PBlY6u/V9j4O2cl
aSSAWrULIMSsEhX0XFxn85sEZdiF7O1fcE9V79DSrPVUzSnC82d40UmxzEwunqvG
ajPOhVY0f5SvGNTtSnYXNE9jxi2tX56W1yP57XkHrHYimFPIphHqPNwmdMdO46LZ
YGa1Gsx/5TQIrEO8ar51EDNowUi/i6qRmImRWYisYUV7bM58rsn+C9m3fVKmk/WI
djWIXOC7zP0fQw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:30:28 2025 by rpki-client