Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
File: IqyN_06Z0-IomvY7FdVdJFDIQsM.mft (raw, json)
Hash identifier: L1KK9Joy8jX5bvqM0o8lM8Q2Ky2+ydWg43JGIhE7M+w=
Subject key identifier: 69:ED:C5:51:8F:86:CA:9A:6F:0D:03:BA:F0:1F:24:EF:FF:5E:56:90
Authority key identifier: 22:AC:8D:FF:4E:99:D3:E2:28:9A:F6:3B:15:D5:5D:24:50:C8:42:C3
Certificate issuer: /CN=22ac8dff4e99d3e2289af63b15d55d2450c842c3
Certificate serial: 019A4DAAB347E2A3605DAC30932EF6013A78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
Manifest number: 062D
Signing time: Tue 04 Nov 2025 07:00:23 +0000
Manifest this update: Tue 04 Nov 2025 07:00:23 +0000
Manifest next update: Wed 05 Nov 2025 07:00:23 +0000
Files and hashes: 1: 1YFZUWeFsFFhNH6pH-z6oTf7e1M.roa (hash: N3xo7g5jGJQoS/qFHbtXSlXVpbFrX6/YoQPrJBEqRCc=)
2: IqyN_06Z0-IomvY7FdVdJFDIQsM.crl (hash: tqdno5KNAOrrZmdV+ux/GV9gvOCIs1LCA8epCnzsNdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:aa:b3:47:e2:a3:60:5d:ac:30:93:2e:f6:01:3a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22ac8dff4e99d3e2289af63b15d55d2450c842c3
Validity
Not Before: Nov 4 07:00:23 2025 GMT
Not After : Nov 5 07:00:23 2025 GMT
Subject: CN=69edc5518f86ca9a6f0d03baf01f24efff5e5690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6f:83:1c:3a:c5:0c:eb:a1:1a:99:ba:c6:f8:
f5:e0:5d:93:a4:24:1d:d7:c6:55:47:91:76:54:9d:
eb:1c:4a:2f:0a:51:2f:6d:ad:b8:90:2f:45:18:23:
ef:00:d0:8e:67:17:e9:85:10:4a:37:27:7d:62:4e:
88:cf:7d:21:d9:98:81:30:a3:ae:51:c0:b0:c4:48:
de:91:93:8a:62:c7:87:3a:8c:a7:4a:08:2d:02:97:
0b:e0:4e:37:c6:a0:ae:4b:38:f7:f2:e2:e6:38:e3:
75:e0:0e:ce:ea:2e:aa:7e:63:a5:21:9a:13:5f:b2:
60:d9:0a:5c:0c:2c:ed:c3:23:fb:30:79:fe:0e:4c:
25:bf:e2:cf:54:80:e3:8f:76:96:38:10:22:8e:f7:
85:44:c6:73:43:0f:fd:e6:f5:43:04:78:44:45:58:
9f:b0:b9:eb:10:af:df:b2:de:fa:51:17:0f:6d:e6:
fb:33:17:d8:39:93:dd:d8:6f:8b:1d:20:36:70:26:
05:4a:ba:5d:52:9b:93:05:8b:f2:32:99:d6:4c:b2:
85:15:3c:b7:aa:72:6b:4c:15:e6:7f:68:dd:3c:e7:
cc:ec:f6:b8:b6:ee:80:44:89:25:24:e5:88:39:68:
a0:e8:e7:40:11:e9:9f:99:f2:57:28:aa:a9:b8:27:
79:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:ED:C5:51:8F:86:CA:9A:6F:0D:03:BA:F0:1F:24:EF:FF:5E:56:90
X509v3 Authority Key Identifier:
keyid:22:AC:8D:FF:4E:99:D3:E2:28:9A:F6:3B:15:D5:5D:24:50:C8:42:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqyN_06Z0-IomvY7FdVdJFDIQsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a75e1d-4d81-49cb-aca5-82998a9287e2/1/IqyN_06Z0-IomvY7FdVdJFDIQsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:da:cb:37:5d:75:30:f4:db:bc:3c:40:68:ad:b6:7b:f2:92:
90:ec:e9:09:b8:70:8b:0b:ef:36:76:f8:63:e0:d1:35:df:7f:
17:f1:57:ca:e0:c1:2d:2c:3c:18:6b:16:c4:91:01:5c:63:80:
7d:c8:01:e3:44:a5:5d:99:8b:4c:40:da:4d:10:97:6a:9b:44:
e0:bc:ff:89:23:d5:e1:17:e2:4e:5d:be:09:58:45:60:6c:43:
6b:04:9a:4f:2e:a8:3e:6c:46:a4:d4:f1:b0:4f:63:7a:33:1f:
8e:49:a4:40:60:3c:d1:09:ac:26:02:f6:48:dc:59:b2:ad:9b:
39:6e:26:0e:58:1c:5b:6b:5f:97:f1:a9:b8:78:e4:8a:d2:f4:
85:fa:d2:42:11:bf:d0:b6:e6:9c:9c:56:d1:35:63:ef:66:c6:
3e:48:56:be:23:1a:bd:01:8a:55:f7:e9:b7:f0:54:12:68:28:
13:09:12:16:45:57:25:68:3d:80:c8:91:74:83:26:d0:2f:aa:
6a:94:b9:c1:7c:91:ed:2b:f6:1e:01:b0:90:09:ae:e4:76:a5:
db:a2:94:6e:b2:13:cb:e3:47:b3:4e:1b:e7:85:0e:37:5b:d6:
af:46:c1:e9:bc:60:03:a6:65:59:28:7e:7b:bf:85:2b:8d:bd:
d2:d2:31:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:54 2025 by rpki-client