Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: im8SW4BaMrvXRDqcPLQkDxkiH5ZdYBujJWRB6Et4u2Y=
Subject key identifier: E8:29:1E:0C:50:56:D4:D0:C7:BC:98:7F:E5:98:FE:DD:0C:8E:2E:28
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 019A518793EC333271876BE47436147613D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 0819
Signing time: Wed 05 Nov 2025 01:00:30 +0000
Manifest this update: Wed 05 Nov 2025 01:00:30 +0000
Manifest next update: Thu 06 Nov 2025 01:00:30 +0000
Files and hashes: 1: 7M8D3IxMWjzAgVSAuyFX2gLMxAs.roa (hash: MD3KP2LMgWTsm6lhsmms5WwgB8xDS3rVO74n7Xs0hs0=)
2: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: YNw2r2/AGxuv0ygEqxiKMP2gqOjxmDr6T+zI/4X2nwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:93:ec:33:32:71:87:6b:e4:74:36:14:76:13:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Nov 5 01:00:30 2025 GMT
Not After : Nov 6 01:00:30 2025 GMT
Subject: CN=e8291e0c5056d4d0c7bc987fe598fedd0c8e2e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:63:b9:06:01:b1:e0:0d:d3:77:08:34:c8:1e:
d8:22:a9:38:c1:aa:ba:db:b7:7d:19:b1:7e:eb:8e:
70:19:ff:3e:0d:7c:dd:38:84:3a:a0:aa:11:bc:ce:
2f:de:e6:f6:fb:c0:f3:42:fe:8d:9f:d7:dd:cc:c4:
d9:78:ff:a3:7f:96:1d:ce:cb:d3:c5:22:1a:e8:25:
1b:9b:d9:75:7d:c2:5a:5a:71:ca:e7:57:16:d0:36:
fc:2d:31:22:89:8c:27:e6:ba:81:51:36:27:69:45:
f0:06:99:b7:85:e6:1a:d4:2a:54:14:ad:ab:6b:39:
3a:57:ca:78:96:61:87:fd:3a:a1:bd:7f:cb:58:13:
7d:58:23:89:6f:34:45:fb:3f:94:54:17:b3:5e:4d:
35:3b:18:0a:29:04:ac:8c:a8:f7:5b:88:43:8b:9c:
ab:65:1e:be:fd:36:ff:a5:5e:6f:19:3e:6d:7b:6d:
d3:12:ba:25:b9:7c:5c:26:c9:03:fa:34:f4:60:b7:
4b:46:39:5f:ad:bb:e6:37:e4:4a:43:35:e0:6f:47:
93:89:9c:3f:81:c0:76:1f:af:27:c5:00:99:73:68:
e2:29:4c:54:2e:99:44:d0:ad:f9:3a:4d:04:a8:db:
05:2e:a0:d9:35:85:82:a9:ff:f5:92:5c:83:46:bb:
f5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:29:1E:0C:50:56:D4:D0:C7:BC:98:7F:E5:98:FE:DD:0C:8E:2E:28
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:a2:cc:73:1d:f2:cb:32:2d:91:a4:75:80:6d:b2:e7:23:26:
6e:2b:0e:cd:dd:8b:7b:f9:cc:7c:d2:69:99:9c:eb:ec:b2:48:
cd:67:69:fa:f9:07:b3:5a:95:04:62:28:53:86:7e:4d:80:55:
be:9f:c2:c9:e9:68:41:8d:ed:69:5a:fe:c2:6d:37:90:a6:9a:
0d:f3:eb:dd:2a:f9:e2:35:1f:6a:34:30:c2:2b:d5:8d:cb:69:
f3:ed:2e:df:c3:6e:9c:2a:f5:4d:4e:34:1a:15:8d:5b:90:f0:
75:b4:00:52:58:d2:2b:9c:3b:8b:38:c6:b6:5b:3f:92:80:e7:
36:b9:ff:90:85:74:e7:2b:5c:51:1e:07:64:ac:56:dc:a0:3d:
99:e4:92:cf:90:12:c6:11:a6:7c:e9:13:d2:9c:95:00:6b:42:
2d:0f:50:c6:23:35:fc:af:a4:80:65:27:fb:7c:3e:ea:e9:69:
c5:ed:35:28:25:c5:af:1b:2f:b5:ed:91:26:d0:3c:7d:88:31:
5b:1b:1b:ee:e1:05:9b:96:4d:1a:69:88:1f:5f:63:e2:59:78:
d3:11:26:cf:56:4b:4d:3d:6f:bb:b3:e8:d5:ac:c6:b5:98:d6:
cf:7c:c3:3a:53:fc:a5:10:3f:e5:80:8c:50:df:a6:6f:46:a9:
b0:b3:ad:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:00:49 2025 by rpki-client