Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
File: 4kCgJeDmGkTZPkqAHjiIsm570kE.mft (raw, json)
Hash identifier: ZgSeTpRM8RJZAUAbbIiAUZqXjmbRqeLWjz8dwCD9TBA=
Subject key identifier: A4:D7:BA:EA:B7:E7:E0:35:89:04:C6:18:E4:12:EC:9E:70:51:3F:F7
Authority key identifier: E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41
Certificate issuer: /CN=e240a025e0e61a44d93e4a801e3888b26e7bd241
Certificate serial: 0198D5BBB8B8F7A268FEBF799DF870748790
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 07:01:46 +0000
Manifest this update: Sat 23 Aug 2025 07:01:46 +0000
Manifest next update: Sun 24 Aug 2025 07:01:46 +0000
Files and hashes: 1: 4kCgJeDmGkTZPkqAHjiIsm570kE.crl (hash: L6lTSJKK2H/1iBZbpul0Qt12pXesnupAgcFWtt/bd4s=)
2: K7SH4zYCXr-cp1q6N2Mp-Gdj1PU.roa (hash: fOTEXpl4gYkXzMjvkhlooQdp3U8U0Z9lMps20TcryK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:b8:b8:f7:a2:68:fe:bf:79:9d:f8:70:74:87:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e240a025e0e61a44d93e4a801e3888b26e7bd241
Validity
Not Before: Aug 23 07:01:46 2025 GMT
Not After : Aug 24 07:01:46 2025 GMT
Subject: CN=a4d7baeab7e7e0358904c618e412ec9e70513ff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9f:91:f6:55:c7:fa:ea:8d:0b:03:bf:57:c0:
8f:9e:82:05:09:7c:a9:9f:eb:00:26:4f:99:50:9b:
f3:da:39:12:1a:73:a8:1d:65:df:31:ea:b1:e7:ce:
d2:f4:ad:59:aa:49:67:23:3c:6e:a5:f1:34:bf:7d:
1a:04:ba:fd:a5:70:ab:ab:f9:7b:f6:d1:f9:38:03:
85:2d:a0:7a:e8:1f:49:97:b3:66:b1:34:ae:1e:d7:
72:46:71:d1:9b:0b:d1:59:58:29:17:ab:43:8a:cd:
ee:37:c5:31:7a:5f:f6:8f:0d:78:24:49:04:d0:14:
b1:c3:fb:cd:67:c9:61:4a:f2:90:c2:9e:87:85:48:
dc:5a:81:75:c6:3f:8f:c8:aa:13:a7:c8:b1:dc:e4:
b0:79:a0:14:92:e2:11:23:c2:d3:d6:93:dc:27:17:
0b:04:15:61:00:10:8b:dd:18:08:65:28:e6:11:83:
30:35:da:59:e2:03:ff:26:39:25:03:44:67:3f:40:
71:1f:27:80:f4:02:89:87:1a:f1:66:a4:32:3d:5b:
f8:b3:87:8c:b6:63:d4:1e:dd:81:8d:3a:8f:c7:6f:
1e:f0:72:6c:ea:88:44:4f:07:c1:4f:6d:0b:4e:cf:
58:c4:23:86:b2:30:03:76:f2:78:e0:fb:3b:52:31:
ec:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D7:BA:EA:B7:E7:E0:35:89:04:C6:18:E4:12:EC:9E:70:51:3F:F7
X509v3 Authority Key Identifier:
keyid:E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:38:03:16:69:e0:24:cb:34:70:6f:83:aa:dd:99:05:53:00:
c2:da:5f:4d:97:84:36:29:9d:93:fd:97:bf:8a:17:6b:35:5a:
08:d2:f6:70:e0:bf:66:7d:3a:5f:6b:f0:17:0e:4a:69:1c:a8:
ff:90:bb:7e:d8:04:e6:c1:cc:70:b6:07:e8:cb:a7:50:86:68:
aa:53:23:24:45:3e:2a:aa:49:f3:f7:ea:12:e8:e0:ea:ae:dd:
d0:9e:f4:b4:72:08:a3:f3:e7:27:21:43:f7:53:70:3b:51:23:
03:b2:86:f8:4f:63:35:bc:63:60:79:59:31:21:e3:58:46:08:
f9:1a:ce:7e:ee:bd:80:84:d8:19:ad:d5:3a:d6:b0:fb:04:73:
53:5e:e2:40:38:32:61:42:40:31:92:ce:68:f5:52:db:72:71:
78:d0:db:bf:13:6c:6e:56:f5:5e:f0:78:90:a4:f6:f4:28:48:
80:42:7a:48:64:00:1b:99:87:4d:d2:df:84:6f:8a:89:60:b6:
6e:1f:ce:d8:c1:78:de:77:65:05:89:5c:b4:6c:d3:07:dd:60:
02:91:d0:60:bb:0f:84:bf:e8:f9:c0:df:88:a5:7c:72:2e:2d:
04:29:40:e6:e2:80:65:37:74:d8:4d:87:8b:db:a8:1c:cd:41:
1e:99:bb:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:12:09 2025 by rpki-client