Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: be3EWDnXKeugyqzcc+3eTKtc8kPDn3Efw8mkrUgYgbA=
Subject key identifier: F2:07:02:6A:FC:37:B8:A7:14:7C:E8:8B:01:AF:7D:3E:19:DE:73:F1
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 019A52D124A26B33FA710C97FF04E31F0ED4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 1710
Signing time: Wed 05 Nov 2025 07:00:29 +0000
Manifest this update: Wed 05 Nov 2025 07:00:29 +0000
Manifest next update: Thu 06 Nov 2025 07:00:29 +0000
Files and hashes: 1: gl5jVkYAoBFN7cdrLnkDFxT9xzs.roa (hash: DKhlihYjJGtiikGfA1O1zHxswQCNAc4gtqIYH1Qddqc=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: 2rqvRpkbj829C5a0aED49x0AovnhEMyd0DGnMh0UvEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:24:a2:6b:33:fa:71:0c:97:ff:04:e3:1f:0e:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: Nov 5 07:00:29 2025 GMT
Not After : Nov 6 07:00:29 2025 GMT
Subject: CN=f207026afc37b8a7147ce88b01af7d3e19de73f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6e:a6:2e:f3:bd:fc:39:9e:b5:aa:83:da:2b:
06:99:b6:42:1d:e7:19:86:6f:d0:f1:40:c2:47:b0:
09:59:8c:69:3e:f0:32:67:33:9d:84:cd:8e:10:78:
e7:7c:7c:93:f9:8f:8e:64:30:b1:6a:44:b2:23:0f:
21:42:97:7d:ec:27:08:8a:62:fb:7e:61:0f:89:fb:
e4:e9:1c:17:d7:b1:02:c9:5f:37:72:ef:62:59:0a:
b2:59:7a:97:79:30:4b:c8:b1:f5:e1:50:fc:cb:90:
39:e0:e4:53:e3:c4:90:0e:3f:46:91:3b:71:d4:06:
9a:b5:4d:ce:13:08:94:0b:1e:44:0b:83:a5:e3:c0:
ae:5a:33:e7:aa:5f:5d:97:0e:09:2b:ce:f2:a6:e5:
fd:53:a1:e9:88:98:06:3f:2d:c5:e3:74:80:f7:4a:
80:6e:3d:a2:62:cd:cb:c0:a8:4f:f1:7f:7e:e2:90:
7d:7c:d4:9b:95:e1:51:be:d6:92:16:19:b6:23:e5:
e5:d7:15:cd:4b:d9:79:ac:19:e8:51:54:82:b7:8c:
02:f3:58:c5:ce:0f:a9:a7:a6:5a:56:a8:08:88:4c:
dd:4d:42:b2:1a:93:32:a0:aa:c8:64:05:6d:7e:c9:
d1:59:37:37:80:44:96:a5:23:48:93:c3:11:1a:ad:
18:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:07:02:6A:FC:37:B8:A7:14:7C:E8:8B:01:AF:7D:3E:19:DE:73:F1
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:70:b9:46:82:73:57:6b:a2:8a:f5:18:b3:20:19:a5:56:a6:
48:5d:82:81:aa:bb:ee:4f:8c:23:02:64:2e:69:57:71:a1:e4:
e4:e5:61:b2:6b:b9:64:cb:d4:69:65:b5:82:25:7d:76:68:2c:
1d:d1:0a:05:f7:82:aa:0f:87:e8:06:1e:47:50:19:3f:0a:4b:
4a:ec:6a:6b:2e:fe:d3:35:f9:90:32:38:41:e8:0c:27:a1:3c:
15:09:99:4b:69:99:75:3f:9f:4c:c6:92:38:9e:49:0a:09:33:
f7:37:5e:e3:58:1f:92:7a:df:e3:45:f0:35:ae:47:81:f3:b6:
dc:0b:4c:31:53:00:c1:22:df:c7:56:fe:d9:4c:87:35:79:d6:
83:5b:9f:56:5b:f7:d1:72:68:3c:7d:9c:69:9d:e8:93:0b:24:
d4:c4:87:19:e4:d0:26:71:14:67:f1:fa:7c:c6:1a:a6:89:74:
46:27:ef:14:fa:55:ee:e3:ea:e2:9d:f7:66:f2:16:64:94:8e:
e4:44:b9:2b:40:8f:c3:8b:c6:0e:e8:ef:e6:54:bd:b1:64:9e:
da:c2:f0:c5:a8:1c:f5:97:62:70:07:1b:b6:c1:d6:35:c3:b2:
d6:34:86:08:3d:16:0a:62:88:56:e0:f2:ba:6a:3c:d7:8b:27:
fa:82:d0:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:08:02 2025 by rpki-client