Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
File: iuSaSeoGdwqH11pcg1b0Vk4asew.mft (raw, json)
Hash identifier: /1qgdxgKezcEfe+YxlpleUX89UfjSRoNtYVcV47trd0=
Subject key identifier: C4:33:7E:8B:94:8B:96:C6:5E:17:AF:7B:1B:45:F4:F5:75:DD:48:F4
Authority key identifier: 8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
Certificate issuer: /CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Certificate serial: 019A4E4FE3D05CC3B0DBF6C7D05557DA1F28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
Manifest number: 04A3
Signing time: Tue 04 Nov 2025 10:00:49 +0000
Manifest this update: Tue 04 Nov 2025 10:00:49 +0000
Manifest next update: Wed 05 Nov 2025 10:00:49 +0000
Files and hashes: 1: iuSaSeoGdwqH11pcg1b0Vk4asew.crl (hash: e71E/4L6SfjvpXisQksOGyGfX0NrzASRgPdodQ4W7HQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:e3:d0:5c:c3:b0:db:f6:c7:d0:55:57:da:1f:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ae49a49ea06770a87d75a5c8356f4564e1ab1ec
Validity
Not Before: Nov 4 10:00:49 2025 GMT
Not After : Nov 5 10:00:49 2025 GMT
Subject: CN=c4337e8b948b96c65e17af7b1b45f4f575dd48f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:67:11:9f:7f:47:10:6b:27:cb:85:91:61:b9:
4b:33:02:a7:4a:99:5b:bb:bb:6a:a4:fb:86:75:8a:
8d:be:dd:98:ac:18:b8:95:77:f9:32:06:26:18:f0:
46:2b:57:c5:75:f7:f7:50:e3:3a:6b:fb:2e:b3:ad:
34:97:0c:4d:53:f7:3a:01:73:81:79:2d:4e:a5:54:
76:f6:f7:17:17:e7:a6:66:c4:05:57:13:8b:82:47:
b7:65:95:f9:11:7d:0c:51:ba:70:0c:67:9c:e5:17:
15:e8:06:13:47:16:6e:84:e8:19:a9:80:02:b2:0f:
9a:fa:2a:99:9c:1e:e9:10:2c:a6:aa:22:56:1b:58:
e7:f4:66:24:1c:44:60:81:de:a5:5f:a8:f1:de:0c:
ad:c7:e0:57:86:ff:e9:97:db:ab:8e:88:fc:bf:39:
34:f8:93:64:76:9a:50:45:08:a6:73:dc:4e:ec:2a:
e3:eb:14:db:00:01:aa:4a:90:07:2e:ad:a2:50:76:
32:9f:53:cf:a1:88:20:a3:49:ab:a2:cd:01:fb:de:
c5:18:ea:92:29:25:ae:0a:63:aa:52:1d:15:24:41:
16:22:14:29:30:d7:a9:69:f2:dd:87:8e:e8:9c:3e:
8e:3a:b2:25:a0:ed:5d:d8:50:59:38:59:b1:ad:a9:
7f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:33:7E:8B:94:8B:96:C6:5E:17:AF:7B:1B:45:F4:F5:75:DD:48:F4
X509v3 Authority Key Identifier:
keyid:8A:E4:9A:49:EA:06:77:0A:87:D7:5A:5C:83:56:F4:56:4E:1A:B1:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iuSaSeoGdwqH11pcg1b0Vk4asew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a0221a-771f-46e6-b3c3-97f08c6d98d3/1/iuSaSeoGdwqH11pcg1b0Vk4asew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:7f:6c:27:3f:60:20:d5:6b:c3:f6:23:33:88:e5:a6:ed:e3:
53:8c:25:11:9a:9f:50:de:e5:e4:c9:82:05:13:62:37:95:a3:
ef:36:ec:67:77:f6:6d:09:17:9a:30:11:13:8f:54:03:60:36:
5b:ca:96:af:a3:5d:a3:59:02:1d:cb:17:b9:80:95:40:ba:54:
e1:fb:72:e2:dc:28:b1:ff:7d:cb:dd:82:26:0d:99:45:75:a4:
38:e4:ec:51:70:e6:b4:f5:de:ce:0d:04:f8:9e:a2:f6:0a:8c:
2a:da:fb:5f:ef:1a:ce:58:c8:47:10:3c:1b:25:5a:16:66:3e:
46:ee:ec:a4:ab:22:72:3c:63:aa:46:40:de:7c:8c:3f:b5:c3:
c5:70:aa:61:11:ec:01:ed:1d:7c:62:42:5d:9d:ed:6a:ed:22:
c0:d0:99:d4:23:fc:2e:56:ad:da:97:a3:01:f9:83:0c:01:1e:
eb:f7:cb:db:b5:da:20:ab:2e:8d:38:f0:ef:53:4d:c9:a1:17:
e3:88:29:96:dc:0e:e1:1f:f4:4b:86:ea:a9:1d:88:0d:a3:12:
43:a4:cb:a2:94:94:72:ee:e1:dd:dd:22:0c:8a:3f:a7:13:c3:
1c:aa:13:b1:e9:04:13:1e:fb:54:4c:1b:4b:e1:51:a9:be:82:
3a:d1:41:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOT+PQXMOw2/bH0FVX2h8oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhZTQ5YTQ5ZWEwNjc3MGE4N2Q3NWE1YzgzNTZmNDU2NGUx
YWIxZWMwHhcNMjUxMTA0MTAwMDQ5WhcNMjUxMTA1MTAwMDQ5WjAzMTEwLwYDVQQD
EyhjNDMzN2U4Yjk0OGI5NmM2NWUxN2FmN2IxYjQ1ZjRmNTc1ZGQ0OGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02cRn39HEGsny4WRYblLMwKnSplb
u7tqpPuGdYqNvt2YrBi4lXf5MgYmGPBGK1fFdff3UOM6a/sus600lwxNU/c6AXOB
eS1OpVR29vcXF+emZsQFVxOLgke3ZZX5EX0MUbpwDGec5RcV6AYTRxZuhOgZqYAC
sg+a+iqZnB7pECymqiJWG1jn9GYkHERggd6lX6jx3gytx+BXhv/pl9urjoj8vzk0
+JNkdppQRQimc9xO7Crj6xTbAAGqSpAHLq2iUHYyn1PPoYggo0mros0B+97FGOqS
KSWuCmOqUh0VJEEWIhQpMNepafLdh47onD6OOrIloO1d2FBZOFmxral/owIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMQzfouUi5bGXhevextF9PV13Uj0MB8GA1UdIwQY
MBaAFIrkmknqBncKh9daXINW9FZOGrHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXVTYVNlb0dkd3FIMTFwY2cxYjBWazRhc2V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hMDIyMWEtNzcxZi00NmU2LWIzYzMt
OTdmMDhjNmQ5OGQzLzEvaXVTYVNlb0dkd3FIMTFwY2cxYjBWazRhc2V3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9hMDIyMWEtNzcxZi00NmU2LWIzYzMtOTdmMDhjNmQ5OGQz
LzEvaXVTYVNlb0dkd3FIMTFwY2cxYjBWazRhc2V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMn9sJz9g
INVrw/YjM4jlpu3jU4wlEZqfUN7l5MmCBRNiN5Wj7zbsZ3f2bQkXmjARE49UA2A2
W8qWr6Ndo1kCHcsXuYCVQLpU4fty4twosf99y92CJg2ZRXWkOOTsUXDmtPXezg0E
+J6i9gqMKtr7X+8azljIRxA8GyVaFmY+Ru7spKsicjxjqkZA3nyMP7XDxXCqYRHs
Ae0dfGJCXZ3tau0iwNCZ1CP8Llat2pejAfmDDAEe6/fL27XaIKsujTjw71NNyaEX
44gpltwO4R/0S4bqqR2IDaMSQ6TLopSUcu7h3d0iDIo/pxPDHKoTsekEEx77VEwb
S+FRqb6COtFBdg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:50 2025 by rpki-client