Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json)
Hash identifier: UWEzywmHf0BvhynEKPPccTko9+rnxHyKoPmlVHSaxuw=
Subject key identifier: 45:48:3E:D8:10:40:AA:10:A2:11:F6:6F:3B:00:2A:64:69:95:53:F1
Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Certificate serial: 0198D6297FE1D6C0DA0797A65FF628871093
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 09:01:40 +0000
Manifest this update: Sat 23 Aug 2025 09:01:40 +0000
Manifest next update: Sun 24 Aug 2025 09:01:40 +0000
Files and hashes: 1: 1-rU3n-MmX0x7vSSIglpKrM6p7wc.roa (hash: c73xh5XkAcPFRSo/oWqlfjE2NzFubQ+3BLO5+whFr6o=)
2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: 8NkL82K2t5ZWxYFrYWqB4+JE6isTqnHiDnPTaCi5jz8=)
3: lAPGewAMTsg2zoYnnReshsfQhuc.roa (hash: cQriD0k+t33lYmHxMgkTAtEHjw/RaZJ3vs4rH148M98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:7f:e1:d6:c0:da:07:97:a6:5f:f6:28:87:10:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Validity
Not Before: Aug 23 09:01:40 2025 GMT
Not After : Aug 24 09:01:40 2025 GMT
Subject: CN=45483ed81040aa10a211f66f3b002a64699553f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:76:78:d7:e5:f6:2d:9d:dc:ff:4c:6b:11:c1:
76:19:3f:92:25:25:40:37:e8:d8:f7:c9:fd:b8:1c:
94:54:32:76:ce:75:6f:5a:ed:c4:cf:b6:86:54:34:
93:ab:ef:91:d6:70:fd:81:93:3f:7f:31:1a:96:ba:
0a:fc:f6:fc:0b:43:ad:95:6b:d8:20:41:c2:d4:60:
20:e4:ca:29:83:ea:b3:42:4b:c1:57:a4:fb:97:c5:
d5:a9:ce:a2:03:b6:f6:f1:43:41:f3:09:11:a2:e9:
f0:08:96:a2:e6:5e:d5:d1:ae:87:90:22:e6:ea:9f:
ae:ba:9a:d5:65:d2:13:4b:71:3e:50:69:11:ea:f5:
bb:5d:27:86:2a:d7:54:9b:3d:3a:26:4b:09:69:02:
3c:1b:da:2b:83:43:68:9d:85:89:9c:7a:0b:5a:43:
fc:b5:02:67:0b:8a:f2:f5:9e:b8:9c:46:9b:28:82:
6c:db:9d:55:61:0e:e9:be:75:76:f7:96:c0:6b:95:
9e:d7:54:dd:10:c6:6a:9f:f7:08:e6:be:3e:2f:e1:
2d:7c:79:f9:d1:02:e5:f3:f5:a6:9c:e4:f9:f1:ee:
03:b2:f0:95:4c:99:17:14:86:46:0f:37:ab:3c:06:
07:0c:e2:58:79:f0:3e:66:ee:c6:29:b5:6a:b1:f8:
dd:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:48:3E:D8:10:40:AA:10:A2:11:F6:6F:3B:00:2A:64:69:95:53:F1
X509v3 Authority Key Identifier:
keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:42:b5:c7:e5:47:15:fc:b8:7f:4e:8c:4d:ad:82:7c:af:b1:
1a:4f:bd:c8:39:c0:37:86:4e:21:07:4c:0a:c7:d6:fe:e5:3b:
3c:2e:0c:0b:a6:1a:1a:b2:ab:3e:44:5f:78:4e:17:17:87:57:
b0:13:d6:87:7a:69:80:33:3e:4d:c1:85:75:5d:66:5c:29:a5:
b7:bf:e9:9f:d9:e3:6a:01:f3:45:f1:e4:b0:4d:93:a3:b8:d5:
f7:83:58:c1:03:d5:78:86:87:7e:fb:f0:56:db:f2:46:e4:2d:
c3:0a:9d:ad:f7:22:17:4f:7d:02:fa:8f:e9:b7:3f:12:7f:16:
77:4a:64:d0:01:38:86:24:ac:2e:43:be:70:f7:9a:3d:88:e0:
19:0e:52:de:16:e5:f9:e4:23:d8:9a:3f:ea:e8:a6:f2:46:d2:
85:7b:e5:a6:49:4e:f0:86:95:75:c1:13:a0:4e:c0:57:2f:46:
7d:a3:bb:22:43:66:8c:44:ba:2a:58:fe:1f:8b:f2:54:08:3f:
05:9f:9f:e0:58:25:26:aa:56:b5:cb:1c:2b:1e:ab:b2:3a:1a:
ae:d9:48:29:67:89:4e:b2:2d:82:ea:f6:a4:5e:3a:ea:52:9e:
c9:56:80:3b:62:a0:4e:c6:2c:1e:1d:b9:c7:2f:c3:d3:52:bc:
36:55:68:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:11:13 2025 by rpki-client