Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
File: 4OkqeIpBBX0ndk8W87HSo-9jRdY.mft (raw, json)
Hash identifier: U5LHgGKWM7JM6VFIqG8V1lJDnSom2qK2k/iMbnvFLx8=
Subject key identifier: 72:07:77:6A:1C:32:CB:A5:D9:DD:14:C1:6A:33:C8:46:09:C6:9D:99
Authority key identifier: E0:E9:2A:78:8A:41:05:7D:27:76:4F:16:F3:B1:D2:A3:EF:63:45:D6
Certificate issuer: /CN=e0e92a788a41057d27764f16f3b1d2a3ef6345d6
Certificate serial: 0199FC5826C83532FA07ADA97E0C4D47C965
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 12:00:59 +0000
Manifest this update: Sun 19 Oct 2025 12:00:59 +0000
Manifest next update: Mon 20 Oct 2025 12:00:59 +0000
Files and hashes: 1: 4OkqeIpBBX0ndk8W87HSo-9jRdY.crl (hash: tkjTW4kjeQWTtTuhcxTv7PRsMQKXZzfooXcWewi2bB0=)
2: BL-NDYgvhNS3ykN2bZ3XYSmCEZI.roa (hash: fBvbXWPI6WfZJHj+SHtFQme53z0G5Q3tNcbJRdIO7rA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:26:c8:35:32:fa:07:ad:a9:7e:0c:4d:47:c9:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0e92a788a41057d27764f16f3b1d2a3ef6345d6
Validity
Not Before: Oct 19 12:00:59 2025 GMT
Not After : Oct 20 12:00:59 2025 GMT
Subject: CN=7207776a1c32cba5d9dd14c16a33c84609c69d99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:18:50:33:4f:71:f6:df:d9:c5:91:2a:af:1d:
c1:4d:fc:07:73:6f:a4:fc:c3:96:72:9c:a1:43:b3:
07:bc:bf:91:8e:e7:c7:8b:db:a6:5b:44:c0:1c:dc:
2b:0e:ff:f9:0a:c3:cd:27:f2:3c:c6:76:d0:f5:a3:
88:41:85:84:01:a3:46:eb:fb:f3:16:89:0f:ec:a6:
69:39:e6:fa:00:76:95:c5:2f:1f:88:5b:e3:d2:e0:
d7:75:aa:e1:7f:74:f6:18:63:00:b4:0a:8c:ab:eb:
ab:c1:28:f6:05:a3:08:0c:42:5d:78:be:72:38:10:
77:b6:11:93:9c:ec:db:f4:28:24:8d:3b:8a:40:b0:
05:6b:b4:98:dc:da:0d:b5:fd:43:d8:63:cb:de:d9:
5c:ef:30:07:05:63:70:95:b9:cc:3b:ac:f9:b4:e5:
bf:91:76:84:b1:ec:fd:50:45:6e:a4:62:b6:71:de:
df:66:58:60:94:c9:4b:49:e4:7b:d1:d8:c6:58:2b:
bb:d8:ec:ba:dc:e9:92:c5:6b:c1:db:d5:c7:dd:ab:
4e:31:05:0a:1f:d5:9f:e3:1a:36:8e:e0:4e:f2:79:
ad:74:ef:de:0b:95:6b:4d:73:35:ed:b2:27:9d:da:
22:f7:3b:e3:c5:4e:8a:bb:32:45:3b:bf:50:cb:e0:
dc:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:07:77:6A:1C:32:CB:A5:D9:DD:14:C1:6A:33:C8:46:09:C6:9D:99
X509v3 Authority Key Identifier:
keyid:E0:E9:2A:78:8A:41:05:7D:27:76:4F:16:F3:B1:D2:A3:EF:63:45:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:ff:b5:1c:59:ca:46:3e:76:1b:02:23:68:48:98:8f:5a:d8:
94:28:77:f0:a2:82:b6:fa:6d:d8:73:23:3b:ba:ef:96:cc:f9:
72:89:87:7e:31:f3:d6:6c:ea:70:75:43:fa:84:6f:0e:dc:26:
67:a4:c6:1c:74:c5:af:39:86:ec:4f:2a:6f:70:f7:df:4c:82:
76:c3:3f:fe:4a:2a:73:11:03:2f:52:0c:41:e6:9d:c0:7d:af:
fa:c7:52:c6:87:d4:f3:d8:b8:e7:b1:f2:9a:7d:94:5d:cd:d2:
89:7a:02:71:7d:1d:35:1b:e1:10:54:1b:fa:0a:10:79:11:ed:
91:26:33:61:7a:96:41:13:98:10:4e:d2:8b:0c:39:e2:de:15:
90:d4:35:e4:ef:fa:28:d3:19:07:a6:86:86:a4:d0:81:59:90:
27:4a:bf:2c:b8:f9:ac:6b:25:e6:ea:d9:e9:27:e6:95:80:5f:
1a:d6:02:2a:e7:60:49:5d:1d:ab:e1:a7:f1:f0:03:d6:88:5f:
4f:9c:63:57:19:3f:03:14:b4:fb:51:c9:1c:ca:f7:2b:b8:31:
dd:74:02:78:e7:54:9e:37:27:51:2e:da:d6:54:c2:b7:8a:cd:
80:78:72:29:47:eb:02:7e:8a:7b:81:42:1e:52:14:7a:6c:de:
d9:26:d3:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:41:17 2025 by rpki-client