Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
File: 4QnieMeGIlTIh1XkcXOYpVKkkEA.mft (raw, json)
Hash identifier: SZ3Kcwy4UZkHxPcM7TkAVb9GyCsRpiscCgyTb8lHB7Q=
Subject key identifier: 29:38:72:02:E5:8A:7F:CC:DB:92:9B:3A:16:71:C5:24:F3:92:FB:BB
Authority key identifier: E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40
Certificate issuer: /CN=e109e278c7862254c88755e4717398a552a49040
Certificate serial: 0199FC8FAD8D7442D86CB7CE26AF2BBFC29C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
Manifest number: 0482
Signing time: Sun 19 Oct 2025 13:01:38 +0000
Manifest this update: Sun 19 Oct 2025 13:01:38 +0000
Manifest next update: Mon 20 Oct 2025 13:01:38 +0000
Files and hashes: 1: 4QnieMeGIlTIh1XkcXOYpVKkkEA.crl (hash: s7sXNVXJK8IZvbowJ9yr+kR86squ0khZIw6eRPDtN1w=)
2: 8a9J3an90z8mWS8TkwqA1Af6V60.roa (hash: Sfg4OixpuznuGw9qd09AY2Lx61QBeTwn9kYrisQDEss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:ad:8d:74:42:d8:6c:b7:ce:26:af:2b:bf:c2:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e109e278c7862254c88755e4717398a552a49040
Validity
Not Before: Oct 19 13:01:38 2025 GMT
Not After : Oct 20 13:01:38 2025 GMT
Subject: CN=29387202e58a7fccdb929b3a1671c524f392fbbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6f:23:a2:ee:58:f5:b1:91:d4:1c:19:03:b2:
f0:8a:2d:82:18:de:55:d4:f7:e0:c3:b1:ad:88:e9:
c7:39:95:24:f5:2b:9c:eb:f9:67:11:69:a5:d3:71:
e7:f5:24:0a:f2:e9:0e:e3:8b:d4:f7:f6:81:6c:d1:
d1:29:0f:48:7b:27:c5:a4:cb:cf:b5:f6:62:dd:ce:
e2:7e:41:0c:e3:85:ba:35:30:e8:6c:d2:cc:ec:7e:
0f:d9:bf:f2:1d:86:a3:dc:eb:e9:6d:b1:8c:22:3d:
05:f3:f8:27:3a:e9:4f:6a:a6:ff:64:8c:ad:13:e6:
2d:95:8d:0a:0f:cf:06:fb:15:f3:94:f2:da:17:ba:
72:3b:0a:42:03:81:39:b1:8d:75:e3:f7:40:39:7f:
e8:8f:e7:3e:57:0b:c8:ea:68:3e:2a:57:3e:31:00:
31:24:34:15:1e:cc:0e:f2:2d:19:ec:6d:62:03:2c:
25:a6:de:a2:56:57:07:ff:f8:b5:f9:77:32:23:74:
c0:8a:52:90:d7:7d:af:60:e4:d7:86:0e:08:b2:a0:
47:50:b4:9b:06:d8:bb:27:00:02:0e:b7:93:8f:ee:
02:36:88:66:f2:04:21:02:ae:6e:46:4a:4f:60:75:
ab:51:0d:b4:55:8e:2c:91:da:8a:66:52:5f:42:fa:
d3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:38:72:02:E5:8A:7F:CC:DB:92:9B:3A:16:71:C5:24:F3:92:FB:BB
X509v3 Authority Key Identifier:
keyid:E1:09:E2:78:C7:86:22:54:C8:87:55:E4:71:73:98:A5:52:A4:90:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4QnieMeGIlTIh1XkcXOYpVKkkEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e072d7-87c0-4b73-9a4d-2f03e32bd21a/1/4QnieMeGIlTIh1XkcXOYpVKkkEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:14:65:de:74:44:49:69:17:f2:c2:25:1a:7a:e1:bd:6d:5c:
cf:f0:c4:c9:e4:b0:8e:c9:64:f5:3e:ba:39:fa:c1:e0:8e:90:
bc:99:fa:00:e9:17:18:8d:94:01:fb:98:10:1f:e1:7f:b1:e2:
fe:a9:de:73:46:33:9c:2f:5d:22:cd:f8:41:51:bd:24:09:ef:
e1:54:83:f7:50:73:c4:b7:92:bd:89:d4:5e:05:00:80:d0:ea:
0e:c5:e0:da:0f:91:a6:6e:8a:94:00:da:83:04:fc:ea:8b:c9:
b6:8b:93:1b:d3:64:28:3d:d0:01:f2:09:50:7d:36:1f:2a:e7:
84:7e:cc:08:50:90:53:cd:86:e5:00:4b:c4:bb:c4:e9:8d:1c:
ca:84:e0:d1:5a:dd:bc:85:4e:91:92:0e:2a:fc:eb:12:61:b2:
86:ef:ca:28:99:b4:45:16:78:3c:31:2a:a7:45:ab:6e:28:af:
15:89:ac:9d:01:f7:48:a0:a5:7f:81:4a:cf:01:25:41:05:52:
d2:2e:08:da:c7:59:c3:a4:4e:66:44:fc:f2:bb:69:6f:d1:47:
94:b8:8d:fb:0c:c9:11:3b:ee:b6:35:fc:3f:2b:ba:50:8a:9b:
27:6e:b7:d0:ff:db:5c:8e:0c:50:7a:8b:b7:a9:20:42:77:64:
1e:87:38:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:59:51 2025 by rpki-client