Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
File: iQH2c8aw_4g16gL67bpbSc8UIk4.mft (raw, json)
Hash identifier: 8YZnqb5qmJgpyvc0CjeVa6nRh77scu8KWrxjOILaFGM=
Subject key identifier: 02:02:87:40:E3:D2:82:5A:25:6B:61:81:9E:EE:5F:49:F0:43:19:3F
Authority key identifier: 89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
Certificate issuer: /CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Certificate serial: 019A55D263F0B032C51AA7622D80F1F28515
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
Manifest number: 0DAF
Signing time: Wed 05 Nov 2025 21:00:42 +0000
Manifest this update: Wed 05 Nov 2025 21:00:42 +0000
Manifest next update: Thu 06 Nov 2025 21:00:42 +0000
Files and hashes: 1: LwODeFlTbNm331VlQw3cZjyD1Sg.roa (hash: 6xKklCkI+s1DbuNSCG9T6RXJeAeTq1fLNQfBDhNCOAU=)
2: iQH2c8aw_4g16gL67bpbSc8UIk4.crl (hash: dvNkJM/VZKcrNcRqxqf8ZLNjligXAdtizjlrmvzQj7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:55:d2:63:f0:b0:32:c5:1a:a7:62:2d:80:f1:f2:85:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8901f673c6b0ff8835ea02faedba5b49cf14224e
Validity
Not Before: Nov 5 21:00:42 2025 GMT
Not After : Nov 6 21:00:42 2025 GMT
Subject: CN=02028740e3d2825a256b61819eee5f49f043193f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:24:52:c4:48:88:09:33:87:da:99:31:ef:2c:
d5:42:7f:70:35:4a:c4:48:bb:a1:1c:5f:34:e3:04:
72:86:53:55:8a:a3:1c:79:90:26:4d:9b:c6:1d:98:
3e:01:0e:98:b1:87:63:8d:f8:4c:b4:40:75:da:82:
4b:08:75:81:01:23:c2:e7:7e:30:86:39:34:79:bc:
17:fc:08:39:0d:09:dc:6a:f0:31:2a:9f:de:21:d0:
74:5d:96:39:92:e0:99:89:38:72:c6:b1:dc:03:6b:
c4:48:e4:44:de:20:f1:00:f6:fe:da:50:f9:66:65:
24:bf:e8:9f:3e:ed:96:1a:aa:1e:07:6a:42:33:4c:
3b:d1:c2:7a:6a:c9:04:c8:60:37:ca:fa:2b:77:bf:
94:da:8c:91:02:62:1a:ad:cc:9d:eb:0e:8f:1d:f4:
50:6e:98:8b:e0:68:04:50:59:63:3c:3f:02:6e:34:
ae:ea:8e:9b:0e:e1:64:fc:6b:3c:73:3a:58:b5:89:
a6:7b:af:86:f3:cf:4f:41:de:1a:47:fb:82:fd:6c:
71:f6:19:1d:a5:98:8e:31:54:3c:b1:c4:00:e6:aa:
94:15:a3:11:62:e9:44:eb:d1:d8:a6:dc:b7:8a:2a:
c7:b6:39:48:e4:79:7e:73:2e:71:9c:80:1d:27:8a:
1d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:02:87:40:E3:D2:82:5A:25:6B:61:81:9E:EE:5F:49:F0:43:19:3F
X509v3 Authority Key Identifier:
keyid:89:01:F6:73:C6:B0:FF:88:35:EA:02:FA:ED:BA:5B:49:CF:14:22:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQH2c8aw_4g16gL67bpbSc8UIk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c2ba10-20ed-4e8c-b76c-53c4d5762d1a/1/iQH2c8aw_4g16gL67bpbSc8UIk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:68:69:13:4e:8d:90:2d:92:a1:e5:0f:4a:14:11:b5:88:73:
6a:c7:55:65:1f:ba:eb:78:0e:fb:34:d2:91:05:10:e1:b7:34:
23:6a:f3:cc:2a:39:fc:f8:0d:7c:1d:87:7d:a4:93:8d:7e:fa:
67:16:29:3a:1b:37:13:d6:62:47:25:5a:00:79:a8:6f:a2:6e:
1c:8f:51:ad:13:fb:01:e5:6b:b8:72:b6:76:ad:f4:ac:a3:e3:
71:6f:fe:93:0d:50:86:c1:24:ad:3c:e9:0e:0d:52:a8:c4:3f:
de:bf:0c:e5:ea:3b:57:f3:7e:45:d6:6a:2f:2d:27:b2:9c:67:
62:e3:14:c1:bb:69:4c:c6:ec:a6:88:7a:b2:66:49:0d:4e:1f:
3a:ed:0a:96:cd:d7:92:8e:67:e9:e2:e0:32:2c:5d:3c:6d:87:
25:9e:16:58:bf:25:c4:d1:bb:a5:c1:47:a4:68:c7:c7:2a:58:
4b:a2:00:86:d4:f1:f9:ab:a8:3b:e6:49:37:e9:3b:3c:88:11:
e9:b6:da:f8:1e:3d:b3:f2:0d:b7:1f:d1:56:02:8a:3e:a0:04:
39:28:6b:c3:b8:5a:0a:d7:49:b0:ae:49:01:c5:49:74:fa:18:
89:aa:ba:3c:6a:36:3b:bf:dd:4f:96:33:4f:23:6a:16:0e:8f:
f2:f2:ec:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 23:01:52 2025 by rpki-client