Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
File: iBLpJPysuGLPO2T1bnZ7wybyf8o.mft (raw, json)
Hash identifier: ATeZVudBCy+FCYQQYxZPmeBCGxJKbmcqGFVLCh6RRng=
Subject key identifier: 94:10:8D:B1:38:93:86:53:91:BC:A2:F5:4B:91:2C:08:5B:FC:F5:EA
Authority key identifier: 88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
Certificate issuer: /CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Certificate serial: 019A4C61091A790E6CA214B7CA15D644C865
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
Manifest number: 1709
Signing time: Tue 04 Nov 2025 01:00:19 +0000
Manifest this update: Tue 04 Nov 2025 01:00:19 +0000
Manifest next update: Wed 05 Nov 2025 01:00:19 +0000
Files and hashes: 1: QKCpBgruuyz3i6ikVFdg6qQ3F0Y.roa (hash: G88p/gWLQ6tFindRbDEI4oT0jR5gYy6dY2FWfseB5AQ=)
2: iBLpJPysuGLPO2T1bnZ7wybyf8o.crl (hash: IfJkfyKxg3d7GEXFYQhIYDsrFpFm5oRogsXupOu1kVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:09:1a:79:0e:6c:a2:14:b7:ca:15:d6:44:c8:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Validity
Not Before: Nov 4 01:00:19 2025 GMT
Not After : Nov 5 01:00:19 2025 GMT
Subject: CN=94108db13893865391bca2f54b912c085bfcf5ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bf:27:d7:6b:68:ad:15:f6:71:c7:5b:23:7b:
32:1e:32:26:dd:62:69:76:dc:2a:2f:78:47:65:c0:
f5:68:96:d8:bf:28:c1:63:62:de:8d:4d:b6:a6:51:
1f:ed:1f:c0:f9:41:4e:b6:0f:ed:ee:f3:92:86:44:
c7:83:5d:b1:d0:c6:16:aa:a5:bd:f7:d0:ef:7c:16:
f4:79:d6:cb:d1:3d:16:bd:d2:fc:d5:56:f7:49:eb:
6d:0a:fb:a0:bc:a0:dd:f4:cd:40:9d:7d:dd:f8:52:
12:10:e8:4f:f7:2c:30:ad:fb:36:06:de:20:fc:9d:
a9:58:8e:6b:7d:d9:76:83:d4:44:37:d9:fb:0e:85:
4d:03:54:67:dc:93:4e:f8:28:27:a0:75:c6:34:45:
b2:53:b6:35:d2:99:86:8d:eb:14:79:10:42:32:43:
67:01:01:e1:d6:70:53:52:ad:2d:9b:a1:cc:0d:80:
a1:23:47:a5:7e:11:77:92:b6:a4:36:5e:b2:23:7d:
9a:50:2a:f8:58:85:30:aa:49:8f:a5:31:99:aa:94:
b1:4f:e6:ad:65:f6:af:ad:fe:57:d0:3d:b9:f8:13:
3d:8f:4a:e0:a6:3f:7f:c0:1b:f0:be:45:d5:08:e1:
b3:54:b7:ba:6f:14:fd:42:f2:47:1a:2a:83:9f:68:
87:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:10:8D:B1:38:93:86:53:91:BC:A2:F5:4B:91:2C:08:5B:FC:F5:EA
X509v3 Authority Key Identifier:
keyid:88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:07:f0:95:2b:2a:5a:b2:5c:47:04:30:53:e9:5c:68:b9:69:
a3:b8:33:9f:c5:e7:e5:0f:fb:be:ac:ec:d8:bb:10:ca:ce:ad:
74:f0:77:49:35:4c:ec:a9:d6:8e:ce:9c:af:49:15:39:5c:3f:
33:aa:9f:08:6c:75:96:8e:99:5b:02:a5:57:3f:78:c7:42:4d:
6b:b8:9f:8e:a8:60:ed:9b:c0:29:5f:35:bc:74:3f:e9:f6:ce:
46:cb:89:9a:c0:1b:ab:9e:df:a3:ff:15:cf:e3:ed:83:20:2c:
6f:bc:40:8d:56:8a:e3:4c:4e:c6:50:4c:5c:c5:6d:c6:15:84:
dd:06:06:13:76:23:fd:c8:29:f5:c4:99:f7:50:6d:01:10:f2:
0d:2a:18:d9:9d:a6:d7:01:0f:bd:bf:2d:85:28:3f:08:3c:8f:
73:17:89:10:da:1f:13:fb:97:27:84:09:30:4a:9a:4e:60:64:
35:58:61:32:72:cf:ce:08:4f:56:b7:e9:a6:a4:81:38:70:00:
3d:be:df:87:08:48:90:8f:01:5f:50:26:3c:19:df:73:b8:69:
82:64:27:e9:78:f4:1d:b3:51:ae:7f:b3:ca:73:b4:fc:48:01:
75:1e:9a:44:99:d3:80:6b:d7:a5:d0:fa:90:6d:62:2b:8e:08:
48:8d:41:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpMYQkaeQ5sohS3yhXWRMhlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4MTJlOTI0ZmNhY2I4NjJjZjNiNjRmNTZlNzY3YmMzMjZm
MjdmY2EwHhcNMjUxMTA0MDEwMDE5WhcNMjUxMTA1MDEwMDE5WjAzMTEwLwYDVQQD
Eyg5NDEwOGRiMTM4OTM4NjUzOTFiY2EyZjU0YjkxMmMwODViZmNmNWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp78n12torRX2ccdbI3syHjIm3WJp
dtwqL3hHZcD1aJbYvyjBY2LejU22plEf7R/A+UFOtg/t7vOShkTHg12x0MYWqqW9
99DvfBb0edbL0T0WvdL81Vb3SettCvugvKDd9M1AnX3d+FISEOhP9ywwrfs2Bt4g
/J2pWI5rfdl2g9REN9n7DoVNA1Rn3JNO+CgnoHXGNEWyU7Y10pmGjesUeRBCMkNn
AQHh1nBTUq0tm6HMDYChI0elfhF3krakNl6yI32aUCr4WIUwqkmPpTGZqpSxT+at
Zfavrf5X0D25+BM9j0rgpj9/wBvwvkXVCOGzVLe6bxT9QvJHGiqDn2iHWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQQjbE4k4ZTkbyi9UuRLAhb/PXqMB8GA1UdIwQY
MBaAFIgS6ST8rLhizztk9W52e8Mm8n/KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUJMcEpQeXN1R0xQTzJUMWJuWjd3eWJ5ZjhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zYTk4ZTItOGFlOC00NzIzLTg5NTkt
Y2UyZDhlM2ZjODA0LzEvaUJMcEpQeXN1R0xQTzJUMWJuWjd3eWJ5ZjhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8zYTk4ZTItOGFlOC00NzIzLTg5NTktY2UyZDhlM2ZjODA0
LzEvaUJMcEpQeXN1R0xQTzJUMWJuWjd3eWJ5ZjhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIwfwlSsq
WrJcRwQwU+lcaLlpo7gzn8Xn5Q/7vqzs2LsQys6tdPB3STVM7KnWjs6cr0kVOVw/
M6qfCGx1lo6ZWwKlVz94x0JNa7ifjqhg7ZvAKV81vHQ/6fbORsuJmsAbq57fo/8V
z+PtgyAsb7xAjVaK40xOxlBMXMVtxhWE3QYGE3Yj/cgp9cSZ91BtARDyDSoY2Z2m
1wEPvb8thSg/CDyPcxeJENofE/uXJ4QJMEqaTmBkNVhhMnLPzghPVrfppqSBOHAA
Pb7fhwhIkI8BX1AmPBnfc7hpgmQn6Xj0HbNRrn+zynO0/EgBdR6aRJnTgGvXpdD6
kG1iK44ISI1BPw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:45:59 2025 by rpki-client