Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json)
Hash identifier: biA9J5QsydVJTlxPOsrqb20ZeGD3UJePn4SL2jLB2Os=
Subject key identifier: 4A:3B:BC:D6:38:FE:F0:A7:BF:5C:A8:24:C6:B3:A6:35:7E:29:9C:2B
Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Certificate serial: 0199FB7CCD19EF0BCA80765EB9C8288B6041
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 08:01:24 +0000
Manifest this update: Sun 19 Oct 2025 08:01:24 +0000
Manifest next update: Mon 20 Oct 2025 08:01:24 +0000
Files and hashes: 1: 1-rU3n-MmX0x7vSSIglpKrM6p7wc.roa (hash: c73xh5XkAcPFRSo/oWqlfjE2NzFubQ+3BLO5+whFr6o=)
2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: U4HNmLHuFaFLPCHyZDU0tbmuicQev+Xm8FIjw/6UZys=)
3: lAPGewAMTsg2zoYnnReshsfQhuc.roa (hash: cQriD0k+t33lYmHxMgkTAtEHjw/RaZJ3vs4rH148M98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:cd:19:ef:0b:ca:80:76:5e:b9:c8:28:8b:60:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Validity
Not Before: Oct 19 08:01:24 2025 GMT
Not After : Oct 20 08:01:24 2025 GMT
Subject: CN=4a3bbcd638fef0a7bf5ca824c6b3a6357e299c2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:1f:8c:1e:4c:35:b7:d0:7a:48:ef:8d:a0:5f:
4c:d5:71:9a:7a:55:35:ff:79:10:26:d3:21:e7:22:
f9:9e:df:de:e3:9d:13:9a:e0:7f:43:15:ef:3e:68:
2e:7c:55:1d:73:9e:9f:fb:36:e3:88:bb:39:7a:1c:
02:f1:58:11:3d:c5:2c:ba:58:f5:02:09:0f:01:10:
a8:d4:ce:a8:cd:65:5f:10:19:dd:1f:ae:d6:d3:e0:
c7:d9:74:e2:16:39:31:6b:4e:68:9d:79:72:d6:29:
54:04:cb:e4:19:56:28:a0:3e:ca:d7:be:99:4a:1d:
d1:3c:e3:98:cf:f6:57:f1:b4:6a:7e:e1:83:14:25:
3b:90:98:77:b9:85:40:80:18:fd:8f:ce:ac:8b:d8:
d1:ff:3d:94:a7:1b:e6:84:38:26:fa:74:55:0e:c5:
f0:62:ea:23:b9:da:ef:43:eb:43:b9:69:93:0a:aa:
f9:bd:6d:a1:ae:a4:15:fd:7e:c5:f7:24:82:6d:7e:
5a:7a:94:e6:c9:19:27:3e:3b:c9:9f:5f:78:c6:2b:
03:48:10:41:54:7a:4e:56:2b:f3:b9:4a:cf:4e:06:
84:26:3f:15:69:a4:0c:42:23:f1:8e:dd:d1:ca:38:
61:86:63:96:57:eb:50:2a:d5:bf:3f:c3:84:bc:20:
ab:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:3B:BC:D6:38:FE:F0:A7:BF:5C:A8:24:C6:B3:A6:35:7E:29:9C:2B
X509v3 Authority Key Identifier:
keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:b4:11:bc:9e:7e:5d:20:5e:af:e2:c3:ec:41:d3:9f:e1:3e:
10:de:a7:cd:86:9b:6e:4c:a5:f4:55:c0:0a:af:be:5b:cf:fe:
9e:6a:20:f4:75:15:8d:ef:0e:7a:03:2c:e3:0b:c2:86:a0:36:
9a:82:30:1d:5e:63:30:82:16:96:96:4f:3d:f4:d1:95:02:9b:
38:b6:85:08:28:75:a3:0b:75:b4:e8:89:9d:49:4f:15:f6:bf:
2e:9b:95:82:14:56:ea:17:60:d3:ec:62:43:fd:23:3f:6d:fd:
f3:ce:39:94:a7:7d:ae:5e:0c:ca:74:64:21:94:d7:5c:6c:23:
f7:a6:5d:69:ec:88:51:a7:ff:78:ac:ac:ef:57:3a:83:52:be:
7c:5b:39:5c:88:cf:71:f4:34:8e:91:b7:c1:c3:92:c2:06:1b:
c0:41:b4:16:c7:56:02:fe:0a:8e:66:e2:f9:de:c2:a0:8c:ce:
6f:b4:42:82:b0:05:46:8d:60:7f:16:d4:51:34:94:bc:25:29:
d8:e2:e8:c6:91:1c:e9:53:20:92:eb:bd:7d:29:75:d9:fc:ad:
fa:4e:3e:77:7d:60:9f:9e:45:45:a9:69:a0:1c:3a:92:37:dd:
d1:c1:db:fd:1d:64:6c:05:03:12:3e:3d:d5:6a:13:30:e6:13:
7b:08:26:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:01:42 2025 by rpki-client