Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
File: 4OkqeIpBBX0ndk8W87HSo-9jRdY.mft (raw, json)
Hash identifier: KtFJ1/RfunPAtZR8+KVjLx8bW5FkOMBvQQ55P+F6NGY=
Subject key identifier: 56:71:BB:8F:17:DB:A9:6B:18:F8:6B:62:A2:23:6B:9F:E8:7A:77:4D
Authority key identifier: E0:E9:2A:78:8A:41:05:7D:27:76:4F:16:F3:B1:D2:A3:EF:63:45:D6
Certificate issuer: /CN=e0e92a788a41057d27764f16f3b1d2a3ef6345d6
Certificate serial: 0198D4DFDE4F5608863171008F3538849200
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 03:01:37 +0000
Manifest this update: Sat 23 Aug 2025 03:01:37 +0000
Manifest next update: Sun 24 Aug 2025 03:01:37 +0000
Files and hashes: 1: 4OkqeIpBBX0ndk8W87HSo-9jRdY.crl (hash: Q+YX87z02h3kkSTFobTBclBrh+BML7bEkjl/qxv/uJs=)
2: BL-NDYgvhNS3ykN2bZ3XYSmCEZI.roa (hash: fBvbXWPI6WfZJHj+SHtFQme53z0G5Q3tNcbJRdIO7rA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:de:4f:56:08:86:31:71:00:8f:35:38:84:92:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0e92a788a41057d27764f16f3b1d2a3ef6345d6
Validity
Not Before: Aug 23 03:01:37 2025 GMT
Not After : Aug 24 03:01:37 2025 GMT
Subject: CN=5671bb8f17dba96b18f86b62a2236b9fe87a774d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c7:45:6c:d2:54:92:27:b0:a3:6b:db:df:56:
74:72:d4:4f:31:d2:95:40:a2:03:d2:3d:78:a0:32:
50:b1:43:30:74:46:59:96:79:9f:bd:bb:b8:88:4e:
b8:57:89:ae:3c:fe:7d:79:52:61:c3:ed:6c:5b:a5:
83:5f:44:0e:09:b2:44:40:3d:9c:46:b6:0e:50:09:
d7:84:6e:59:70:6d:b5:40:55:15:5b:a1:7d:e9:a4:
d4:e9:82:59:79:22:13:27:ea:39:42:a3:f4:78:41:
ad:b6:eb:69:af:ac:42:29:7e:94:cf:c7:ec:9b:af:
75:54:ff:75:74:06:00:01:5c:70:4b:56:aa:02:d5:
9d:0f:c7:e4:8b:3f:a9:3c:0d:29:e1:15:61:59:29:
a0:ce:51:0f:23:17:9f:51:68:71:a4:d5:dc:74:fb:
82:f0:98:01:d2:4b:c0:f8:00:79:d8:58:8f:a8:0f:
2e:7d:8d:09:06:00:09:bf:cf:50:9d:27:ff:20:29:
03:6b:d7:55:be:5c:bc:d8:8f:9d:ff:16:81:96:1d:
87:3a:43:c7:1a:15:cf:6a:fb:36:80:56:ca:c4:50:
ef:1f:ba:a1:4b:df:29:82:ae:7b:d1:8c:fa:f7:81:
ed:35:8a:89:b4:0f:54:82:25:cf:88:90:bb:c3:28:
7f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:71:BB:8F:17:DB:A9:6B:18:F8:6B:62:A2:23:6B:9F:E8:7A:77:4D
X509v3 Authority Key Identifier:
keyid:E0:E9:2A:78:8A:41:05:7D:27:76:4F:16:F3:B1:D2:A3:EF:63:45:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:2e:dd:e5:6f:70:a2:79:cd:7c:f2:84:6e:4e:bd:06:c9:3f:
c4:50:f4:1a:44:c2:ea:f4:bc:f0:07:09:7e:9c:8d:8f:2a:18:
b4:d4:e3:60:9e:92:94:a9:f1:dd:2c:a4:56:95:ca:6a:75:8f:
00:aa:41:dc:52:1c:c3:7c:2e:40:0c:f8:1e:80:a2:96:9d:91:
2a:45:d9:55:95:c0:86:52:97:bd:e7:3a:00:d1:a5:97:2c:d7:
47:b4:7b:3c:77:e1:13:54:a3:4a:cd:19:82:50:61:3d:6c:1b:
77:6e:e7:cd:b2:cc:11:23:b7:dc:11:12:d8:f3:35:ab:c4:a6:
bd:06:2d:9a:99:0f:b2:74:62:3c:a3:49:83:ef:7f:f8:31:8e:
71:2d:35:e4:58:de:0f:ba:bd:b6:bd:5b:fd:c6:48:49:a4:bb:
9c:b6:97:13:8d:8d:44:e3:10:4b:61:31:9a:00:f6:77:42:46:
dc:4d:18:e5:2f:90:d2:26:24:a1:8e:e0:65:53:75:ef:b5:23:
90:08:46:23:f8:48:30:84:d6:30:06:b3:14:dc:7a:99:8d:52:
41:52:6b:06:e8:eb:df:f9:7f:1a:c5:ab:17:a7:05:e4:99:bb:
b7:31:ea:a7:4f:b7:04:ea:00:8e:27:2c:e2:9f:c6:0b:60:fa:
aa:bf:4f:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:55 2025 by rpki-client