Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: g1GxIgjqt3ZTEM2tD4fzWFJRpssSsC48DZO/Pk5MGUk=
Subject key identifier: 49:52:B6:75:B1:FE:E1:B1:53:B1:B2:59:D2:01:95:05:1B:A3:5B:E1
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 019A4EF522DC228A26B9F588F82673DEA961
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0A6C
Signing time: Tue 04 Nov 2025 13:01:19 +0000
Manifest this update: Tue 04 Nov 2025 13:01:19 +0000
Manifest next update: Wed 05 Nov 2025 13:01:19 +0000
Files and hashes: 1: 2N-Ad_PjuCdbWMhOkKca0e_4aH4.roa (hash: mX5PwA+5z3mRrepVsPYas6Uu6jFtb6sejxlwArRN7qw=)
2: 9qSGcGsaAT-Orj-BviLbbFBnobc.roa (hash: KGQdMGZUYXqZM3Cup0R+gwjVZv7t7VL1nDYpfpe2mMo=)
3: C6v3z8kGbpGtAYhEGvbIA9POeJ4.roa (hash: dVnxKmSOxpULCnBph8ARAXzts2lzvI7njmrNqMweylU=)
4: Q3cz4EEEExax1nv4wtLZZPPEgSk.roa (hash: ML1oxtfPutOEqYHFMGiG3+QvRpl8345MdKNoHGmCBSQ=)
5: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: TUKZQLc3hJfdRLo7Z2FmNM3c8a+CpYLfkFprfwBEoQ4=)
6: raR6qfZ5L-9hzvpYVK9us-1wIug.roa (hash: ARfa5iwtjYV/gUtHJTALBEg3MfK/IBejlaZvsXofCl8=)
7: tBuToTypjDQ6u5RK5DBD-fEJHi4.roa (hash: iFrIeR1iIdBgXE0Q5UKDG34iIF6/jJkNwFYF+l/o72M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:22:dc:22:8a:26:b9:f5:88:f8:26:73:de:a9:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Nov 4 13:01:19 2025 GMT
Not After : Nov 5 13:01:19 2025 GMT
Subject: CN=4952b675b1fee1b153b1b259d20195051ba35be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e1:c4:94:2d:bd:b9:bd:37:a0:9c:0c:48:0a:
20:a0:9e:ff:f8:4b:81:d2:b2:65:06:68:c1:ab:64:
db:10:da:81:45:d2:d3:03:37:3f:48:63:8b:da:7d:
cd:5e:c4:ae:02:cb:10:6e:71:e6:c9:79:8e:9a:43:
25:cd:3d:ed:af:db:b9:96:0a:ed:74:84:39:7a:bb:
80:c8:14:9a:9a:46:7a:5e:70:c2:66:78:1e:3b:d9:
37:78:00:ac:ba:92:fe:ff:09:5a:e5:6d:f0:f7:eb:
e2:c0:14:a7:36:19:a9:16:6c:c3:3b:e3:58:16:23:
1d:be:f2:62:c8:a1:2f:6d:b6:40:ea:5c:40:be:ca:
d5:7f:54:f2:83:9a:89:ef:24:dc:34:f3:a0:2b:2b:
21:28:eb:f2:f5:97:4a:9a:92:ee:fa:74:c7:23:03:
9b:83:62:66:c2:ec:15:b0:4e:f0:d8:c7:08:45:f2:
9a:1d:ce:44:90:87:a7:2d:8e:a9:66:90:c1:72:71:
fe:a6:c5:5a:97:5a:ad:0f:c6:30:8b:73:78:51:0b:
c1:9a:ac:29:0f:92:0c:9e:80:73:e4:c4:26:95:d0:
3b:da:74:e0:1b:ec:9e:1c:49:20:54:0a:a3:22:2b:
ee:50:51:bf:26:cc:eb:df:a2:d2:11:f7:d0:ec:5a:
bf:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:52:B6:75:B1:FE:E1:B1:53:B1:B2:59:D2:01:95:05:1B:A3:5B:E1
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:98:8b:6e:7e:77:b2:aa:74:eb:b3:f4:a0:ae:d8:79:2f:89:
2d:3d:86:8e:b5:34:32:0b:d7:f6:d0:47:7c:8a:cc:32:55:81:
3f:ca:38:52:a3:37:73:89:1f:f7:c1:e1:82:ea:18:5f:7d:41:
cf:df:a0:4f:95:c6:da:2b:f2:d3:44:d5:0c:ab:f0:94:1c:61:
31:bb:d0:b5:f7:b8:e1:56:52:2b:07:21:57:a0:68:29:ac:53:
7c:1d:f8:b5:f8:ab:d0:3d:45:dc:cb:74:21:a1:9c:2c:81:33:
fc:74:cc:aa:5e:a2:25:fc:a8:6f:19:38:1f:42:ab:e2:3f:6d:
4a:7f:0a:5a:c1:ac:cd:1f:5d:88:9a:2c:99:49:63:28:57:0d:
cd:2a:42:52:16:dd:5d:df:04:8c:3a:73:f4:e9:71:bb:d8:22:
ee:84:f7:16:2c:b9:6b:40:00:b7:97:45:b8:00:9d:eb:8a:6c:
5d:da:75:25:95:fe:4f:55:cb:44:20:c9:f2:21:76:0e:50:47:
96:cd:d7:5d:c0:60:23:aa:48:c6:a1:0e:6e:b7:e7:8b:40:45:
d9:fe:19:3b:74:e8:ea:10:30:21:8c:6e:d2:d2:cf:8e:bd:7c:
5d:65:50:20:71:e3:72:cf:27:8b:b3:e2:b6:01:b4:ee:77:20:
af:19:47:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:57:16 2025 by rpki-client