Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
File: IATWKTJ0OW9ajWkUhdaHagogcdk.mft (raw, json)
Hash identifier: u1eBAWPej9oRNnpqjNiuetPdT4m7qe3yaMIdKzdk6H8=
Subject key identifier: 28:0F:53:F7:FA:95:0E:7C:44:D3:F0:0C:8C:A3:36:C7:BC:07:E1:67
Authority key identifier: 20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
Certificate issuer: /CN=2004d6293274396f5a8d691485d6876a0a2071d9
Certificate serial: 019A4D746128F9CD01B951ECD5B3A21B0380
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
Manifest number: 13AD
Signing time: Tue 04 Nov 2025 06:01:03 +0000
Manifest this update: Tue 04 Nov 2025 06:01:03 +0000
Manifest next update: Wed 05 Nov 2025 06:01:03 +0000
Files and hashes: 1: IATWKTJ0OW9ajWkUhdaHagogcdk.crl (hash: nzCy0yR+OZTHPk2dX1tmNZiGHS4013yvYO4qHn/Xwl8=)
2: aEJUX-P3iWzm8iZ2YmNhX1BUm-w.roa (hash: UCW6fp2JBu8X3L8wVEatff2uZp8yn3edNh91K1NyH88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:61:28:f9:cd:01:b9:51:ec:d5:b3:a2:1b:03:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2004d6293274396f5a8d691485d6876a0a2071d9
Validity
Not Before: Nov 4 06:01:03 2025 GMT
Not After : Nov 5 06:01:03 2025 GMT
Subject: CN=280f53f7fa950e7c44d3f00c8ca336c7bc07e167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0c:c4:ae:46:36:2c:e1:10:7d:de:2b:67:9b:
5d:dd:8f:9c:b1:d6:d8:46:79:7b:19:7f:ed:d0:3b:
64:57:71:d7:09:85:0d:e8:5c:7c:8b:42:63:99:63:
2e:ae:ab:71:d3:40:c0:fe:90:9f:b2:f5:25:79:6d:
b3:0a:e6:76:99:e0:b4:8d:10:cc:9c:60:f2:1c:49:
2e:93:18:4a:4b:07:f2:ca:7e:bc:9b:1c:ae:bb:c3:
42:38:00:7d:9c:7d:48:46:d9:3e:43:2c:82:49:e2:
46:43:00:99:43:a6:a7:42:9e:3f:3f:0c:b0:28:57:
c5:68:c4:af:b2:8b:81:01:c7:9e:61:b9:cb:67:91:
6d:e4:d3:7b:dd:de:88:8f:5b:da:ef:a0:34:3c:91:
62:f0:ae:81:02:f2:84:a7:02:dd:79:ea:46:d4:9b:
16:5f:b1:a6:e7:e9:09:8e:22:ce:fd:0c:fb:b2:0e:
57:e8:e0:cd:a2:60:7c:c2:2b:21:15:8d:f2:20:ad:
dc:66:64:9f:ee:94:0d:d3:66:1a:66:1a:50:b5:63:
99:20:39:ae:3f:10:9e:a7:27:e4:80:a8:1a:02:57:
5f:d3:80:fa:60:9d:41:96:d9:e8:36:f1:f4:0e:70:
69:84:48:cc:62:4c:fa:ef:cb:b4:cc:b8:7f:68:30:
5a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0F:53:F7:FA:95:0E:7C:44:D3:F0:0C:8C:A3:36:C7:BC:07:E1:67
X509v3 Authority Key Identifier:
keyid:20:04:D6:29:32:74:39:6F:5A:8D:69:14:85:D6:87:6A:0A:20:71:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IATWKTJ0OW9ajWkUhdaHagogcdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9e5cbd-4d5a-4ed6-b1c2-4ef9cc751517/1/IATWKTJ0OW9ajWkUhdaHagogcdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:13:fd:46:11:53:00:b6:fa:69:fc:d6:10:08:d0:66:30:86:
57:62:4a:0b:09:f5:5d:e8:b9:42:98:ca:51:fa:4f:72:a4:7c:
e7:5c:8d:82:78:e4:a1:9c:6f:5f:bf:b1:e3:2e:b5:86:1d:d2:
f7:9f:f1:a6:ea:8c:5a:f1:2b:7f:b0:a0:30:ed:01:5b:4f:7e:
7b:93:0c:97:e0:f7:54:2e:55:c8:99:b2:88:33:e7:4a:0f:43:
a5:83:a3:96:8c:9c:a1:c8:f4:30:d6:24:f6:59:5a:17:fc:92:
2c:65:47:66:f8:23:74:ef:a3:83:cb:96:35:13:61:a1:94:48:
0d:0a:f2:b3:5b:b4:2d:10:5c:cc:12:57:60:96:4c:e9:b8:f2:
6e:47:1c:fb:b3:4a:8f:20:40:a5:3f:00:5c:f1:97:21:98:e5:
ce:3f:70:66:41:5e:cb:e5:fc:66:5e:1d:21:d3:01:32:08:d4:
5f:2f:1c:19:ff:94:30:72:e5:82:c0:cd:be:bb:60:53:8f:4d:
b0:1c:73:e5:06:78:72:10:ca:2b:1a:49:d4:e4:e6:8f:d6:0e:
92:c6:06:21:05:7d:bc:4d:cf:41:c0:0e:7e:d2:ee:c6:02:63:
4a:bb:23:2a:6e:4f:84:df:b7:c3:68:b4:b4:0b:ca:80:32:d4:
19:3b:6d:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNdGEo+c0BuVHs1bOiGwOAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMDRkNjI5MzI3NDM5NmY1YThkNjkxNDg1ZDY4NzZhMGEy
MDcxZDkwHhcNMjUxMTA0MDYwMTAzWhcNMjUxMTA1MDYwMTAzWjAzMTEwLwYDVQQD
EygyODBmNTNmN2ZhOTUwZTdjNDRkM2YwMGM4Y2EzMzZjN2JjMDdlMTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjAzErkY2LOEQfd4rZ5td3Y+csdbY
Rnl7GX/t0DtkV3HXCYUN6Fx8i0JjmWMurqtx00DA/pCfsvUleW2zCuZ2meC0jRDM
nGDyHEkukxhKSwfyyn68mxyuu8NCOAB9nH1IRtk+QyyCSeJGQwCZQ6anQp4/Pwyw
KFfFaMSvsouBAceeYbnLZ5Ft5NN73d6Ij1va76A0PJFi8K6BAvKEpwLdeepG1JsW
X7Gm5+kJjiLO/Qz7sg5X6ODNomB8wishFY3yIK3cZmSf7pQN02YaZhpQtWOZIDmu
PxCepyfkgKgaAldf04D6YJ1BltnoNvH0DnBphEjMYkz678u0zLh/aDBaUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCgPU/f6lQ58RNPwDIyjNse8B+FnMB8GA1UdIwQY
MBaAFCAE1ikydDlvWo1pFIXWh2oKIHHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzIt
NGVmOWNjNzUxNTE3LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC85ZTVjYmQtNGQ1YS00ZWQ2LWIxYzItNGVmOWNjNzUxNTE3
LzEvSUFUV0tUSjBPVzlhaldrVWhkYUhhZ29nY2RrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbhP9RhFT
ALb6afzWEAjQZjCGV2JKCwn1Xei5QpjKUfpPcqR851yNgnjkoZxvX7+x4y61hh3S
95/xpuqMWvErf7CgMO0BW09+e5MMl+D3VC5VyJmyiDPnSg9DpYOjloycocj0MNYk
9llaF/ySLGVHZvgjdO+jg8uWNRNhoZRIDQrys1u0LRBczBJXYJZM6bjybkcc+7NK
jyBApT8AXPGXIZjlzj9wZkFey+X8Zl4dIdMBMgjUXy8cGf+UMHLlgsDNvrtgU49N
sBxz5QZ4chDKKxpJ1OTmj9YOksYGIQV9vE3PQcAOftLuxgJjSrsjKm5PhN+3w2i0
tAvKgDLUGTttQw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:51 2025 by rpki-client