Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
File: iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft (raw, json)
Hash identifier: xzyw1T/gIRGrS6l6YbpS7zH0ohb0feF8EE+TLGLK+Zo=
Subject key identifier: 17:FA:02:F0:64:E0:B3:85:B0:DA:0D:EE:DB:57:D5:1E:BE:A5:4D:C7
Authority key identifier: 89:73:78:12:6F:55:D9:65:19:55:3D:AA:48:E0:2E:32:82:12:16:44
Certificate issuer: /CN=897378126f55d96519553daa48e02e3282121644
Certificate serial: 019A4D0763E043E1C666F21044D08501C354
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
Manifest number: 0F67
Signing time: Tue 04 Nov 2025 04:02:01 +0000
Manifest this update: Tue 04 Nov 2025 04:02:01 +0000
Manifest next update: Wed 05 Nov 2025 04:02:01 +0000
Files and hashes: 1: gGw6ft1sLBQmsJ-vRfx6KJXkhbk.roa (hash: S1p9cVSO3FaBQReociITznoI/L2Cqm4kk12uycY2TsA=)
2: iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl (hash: HiXjDd3mRqJuiUgvDnc4w416WkKIwQfxA9TsV+5j8c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:07:63:e0:43:e1:c6:66:f2:10:44:d0:85:01:c3:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=897378126f55d96519553daa48e02e3282121644
Validity
Not Before: Nov 4 04:02:01 2025 GMT
Not After : Nov 5 04:02:01 2025 GMT
Subject: CN=17fa02f064e0b385b0da0deedb57d51ebea54dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fa:28:e6:2c:22:87:01:76:f5:ef:7d:db:18:
7f:d9:f1:45:67:ba:e1:1e:f2:44:91:af:57:76:a3:
8f:35:30:ce:48:f7:9a:6f:1c:bb:96:c7:02:4a:f9:
47:cc:2b:c2:9a:ff:eb:a4:5e:9d:b6:d0:ad:77:77:
34:14:6e:78:64:44:93:43:ac:e8:ac:98:41:9e:60:
37:6f:b4:d3:47:ae:b0:b2:a7:ae:78:2e:ee:3f:36:
a1:73:88:1e:d7:45:69:ad:c8:e9:0e:c7:99:b5:fe:
a1:a2:e0:9d:3e:40:16:92:43:81:06:8d:2a:a3:e6:
1e:d2:f9:31:25:86:90:15:0c:e9:d5:a8:6f:9e:ce:
11:38:6e:52:b1:9c:eb:d5:8b:43:f1:c4:7c:b5:d0:
e9:7d:9f:16:d1:2f:50:13:d4:e4:cf:71:83:70:5c:
f1:fc:90:87:97:b6:4f:15:45:d7:90:26:17:3d:f8:
ba:d8:85:15:15:ba:d6:0d:1c:a8:80:10:9e:35:d3:
b2:0f:d2:70:da:a3:17:66:a1:93:9d:9a:fd:78:06:
9d:d5:75:f0:cb:f0:41:cc:a6:b5:8a:14:16:af:da:
eb:9b:71:e1:47:85:5e:10:63:4f:6e:6f:bc:2d:c6:
8f:fc:33:5c:fc:4c:0f:36:c7:60:6c:01:8e:55:80:
be:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:FA:02:F0:64:E0:B3:85:B0:DA:0D:EE:DB:57:D5:1E:BE:A5:4D:C7
X509v3 Authority Key Identifier:
keyid:89:73:78:12:6F:55:D9:65:19:55:3D:AA:48:E0:2E:32:82:12:16:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iXN4Em9V2WUZVT2qSOAuMoISFkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f2d0cb-c3d4-49be-b0f2-305fb09556c9/1/iXN4Em9V2WUZVT2qSOAuMoISFkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:d9:f0:7b:ff:c0:64:de:43:00:a2:a3:e6:fe:6c:31:c0:2d:
43:80:cb:dd:4f:5b:ae:e2:d4:e4:72:ba:dc:d0:f7:d9:24:bc:
5f:36:ea:51:a6:b4:4f:fa:68:19:02:e9:c1:69:cb:36:76:de:
83:0f:24:dd:06:f7:d3:2f:8c:99:4a:bb:7b:af:e2:7e:e6:a5:
98:85:d7:27:0a:68:71:0a:69:ec:b6:8f:d7:df:e4:e9:d7:bf:
54:fb:af:b0:3b:ba:e5:a4:85:38:b9:21:60:62:27:5f:93:8d:
09:3e:5a:14:87:4c:99:44:c1:e2:d1:0f:21:ef:b6:93:c8:5d:
52:73:d4:23:b8:c7:e4:d4:78:a7:9f:f8:9e:65:9c:64:c6:88:
58:d8:27:f3:f5:fb:5b:21:f0:6d:f9:89:d3:e3:fe:c2:d5:7d:
04:c1:75:13:19:99:9f:6c:04:b5:77:49:30:29:e7:02:fc:93:
ab:50:c6:32:96:1c:e5:4b:ff:4a:b8:7f:97:a5:b7:91:4d:f4:
aa:39:35:74:29:ce:a3:32:4e:b5:34:7b:4a:07:1f:97:44:62:
01:5d:97:d8:5b:a4:b0:04:7d:a2:f9:c3:4d:2e:81:41:69:c7:
21:c3:0e:1b:67:21:ed:84:5c:02:28:bb:80:cd:e1:81:79:9a:
1d:10:1b:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNB2PgQ+HGZvIQRNCFAcNUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5NzM3ODEyNmY1NWQ5NjUxOTU1M2RhYTQ4ZTAyZTMyODIx
MjE2NDQwHhcNMjUxMTA0MDQwMjAxWhcNMjUxMTA1MDQwMjAxWjAzMTEwLwYDVQQD
EygxN2ZhMDJmMDY0ZTBiMzg1YjBkYTBkZWVkYjU3ZDUxZWJlYTU0ZGM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/oo5iwihwF29e992xh/2fFFZ7rh
HvJEka9XdqOPNTDOSPeabxy7lscCSvlHzCvCmv/rpF6dttCtd3c0FG54ZESTQ6zo
rJhBnmA3b7TTR66wsqeueC7uPzahc4ge10VprcjpDseZtf6houCdPkAWkkOBBo0q
o+Ye0vkxJYaQFQzp1ahvns4ROG5SsZzr1YtD8cR8tdDpfZ8W0S9QE9Tkz3GDcFzx
/JCHl7ZPFUXXkCYXPfi62IUVFbrWDRyogBCeNdOyD9Jw2qMXZqGTnZr9eAad1XXw
y/BBzKa1ihQWr9rrm3HhR4VeEGNPbm+8LcaP/DNc/EwPNsdgbAGOVYC+LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBf6AvBk4LOFsNoN7ttX1R6+pU3HMB8GA1UdIwQY
MBaAFIlzeBJvVdllGVU9qkjgLjKCEhZEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVhONEVtOVYyV1VaVlQycVNPQXVNb0lTRmtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9mMmQwY2ItYzNkNC00OWJlLWIwZjIt
MzA1ZmIwOTU1NmM5LzEvaVhONEVtOVYyV1VaVlQycVNPQXVNb0lTRmtRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9mMmQwY2ItYzNkNC00OWJlLWIwZjItMzA1ZmIwOTU1NmM5
LzEvaVhONEVtOVYyV1VaVlQycVNPQXVNb0lTRmtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFtnwe//A
ZN5DAKKj5v5sMcAtQ4DL3U9bruLU5HK63ND32SS8XzbqUaa0T/poGQLpwWnLNnbe
gw8k3Qb30y+MmUq7e6/ifualmIXXJwpocQpp7LaP19/k6de/VPuvsDu65aSFOLkh
YGInX5ONCT5aFIdMmUTB4tEPIe+2k8hdUnPUI7jH5NR4p5/4nmWcZMaIWNgn8/X7
WyHwbfmJ0+P+wtV9BMF1ExmZn2wEtXdJMCnnAvyTq1DGMpYc5Uv/Srh/l6W3kU30
qjk1dCnOozJOtTR7Sgcfl0RiAV2X2FuksAR9ovnDTS6BQWnHIcMOG2ch7YRcAii7
gM3hgXmaHRAbGQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:08 2025 by rpki-client