Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
File: 4njEqqAhvti5JuNZH99QyN9rwXI.mft (raw, json)
Hash identifier: 0TIDuEG120xIyGiMhak8twfK1iltTGcsIZZB+WGEqzo=
Subject key identifier: 72:EA:17:B2:37:A3:F5:74:C0:20:5D:DF:63:0B:07:E4:AF:D1:E6:9F
Authority key identifier: E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72
Certificate issuer: /CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172
Certificate serial: 0199FC21579BAA8A75286AA118A8D82BA83B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
Manifest number: 0957
Signing time: Sun 19 Oct 2025 11:01:07 +0000
Manifest this update: Sun 19 Oct 2025 11:01:07 +0000
Manifest next update: Mon 20 Oct 2025 11:01:07 +0000
Files and hashes: 1: 1ypxGUz02dU-GrVHnawwOGAtbp8.roa (hash: s/FzoESG6FigLmQ9qVLEYvChgXRxC5KQ8IrkGKlYCxY=)
2: 4njEqqAhvti5JuNZH99QyN9rwXI.crl (hash: DZH9GywaGGqVAz6oyz+sXEM+FgVGZfXX+5qaJdSVa+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:57:9b:aa:8a:75:28:6a:a1:18:a8:d8:2b:a8:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e278c4aaa021bed8b926e3591fdf50c8df6bc172
Validity
Not Before: Oct 19 11:01:07 2025 GMT
Not After : Oct 20 11:01:07 2025 GMT
Subject: CN=72ea17b237a3f574c0205ddf630b07e4afd1e69f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:42:3e:e1:1f:08:3a:00:0a:75:57:86:15:81:
50:6d:0f:0f:6f:67:5a:39:c2:e2:0b:78:d3:91:90:
51:7d:5f:4c:d5:10:9c:ec:fb:c9:5e:45:56:9b:75:
7d:e0:7f:3d:91:06:45:0d:73:35:fb:b8:f3:c7:1f:
7c:14:fe:fe:47:0f:1c:43:dc:6c:4b:99:e9:66:58:
44:8e:76:24:ee:65:40:b2:77:ef:63:c9:50:45:c1:
b2:59:ca:ea:27:18:d8:44:88:64:4f:3a:68:82:60:
0f:58:e8:f7:99:ca:66:17:1c:6a:13:7b:65:be:4c:
b9:05:2b:ec:ad:49:2c:bc:f5:2b:af:ed:47:3d:d6:
8e:aa:a1:ff:54:ed:12:15:93:d9:4d:7d:a3:82:4b:
7f:00:fa:94:75:f6:33:59:e5:4c:56:7e:79:b3:d4:
81:61:da:64:90:19:62:b9:fb:77:12:3b:23:5b:89:
b3:ae:2f:cb:87:0f:66:ec:a6:b2:29:d4:66:64:9c:
3b:59:ff:b7:7f:89:3b:91:db:7d:a1:8e:8f:1a:49:
74:30:12:a8:ee:8b:e9:ae:43:63:bd:1e:4f:92:08:
73:b5:ac:20:db:b6:d7:52:13:7b:2c:ae:e0:9b:da:
9e:4b:3f:71:a1:f7:7d:ca:09:4a:6a:bf:91:cc:34:
07:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EA:17:B2:37:A3:F5:74:C0:20:5D:DF:63:0B:07:E4:AF:D1:E6:9F
X509v3 Authority Key Identifier:
keyid:E2:78:C4:AA:A0:21:BE:D8:B9:26:E3:59:1F:DF:50:C8:DF:6B:C1:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4njEqqAhvti5JuNZH99QyN9rwXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c06937-93b3-442e-8676-fc43391988f7/1/4njEqqAhvti5JuNZH99QyN9rwXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:5c:d1:cf:3b:bd:56:a8:74:14:04:ad:a5:00:f3:e0:17:22:
13:b4:ab:f2:d7:ca:72:2a:08:92:1a:83:97:33:30:b8:05:bd:
8a:4a:bd:71:3a:bd:4f:cb:8c:44:05:61:82:af:39:e3:dc:d6:
8a:30:46:d8:f7:77:ee:d4:3f:2d:40:b1:6a:c3:39:16:32:2b:
f6:35:88:58:bc:e2:67:69:2b:82:1f:13:30:d9:f4:e6:96:89:
84:ac:e2:a8:b9:29:c9:e0:30:30:b3:b7:da:8d:79:ae:32:1e:
81:69:53:87:35:31:6d:6a:e7:d5:0e:f0:2e:0f:26:4f:19:92:
0d:94:3e:0a:36:90:d9:7b:ee:06:df:9c:b8:58:a3:14:06:86:
90:3a:27:43:58:5e:90:12:16:eb:d1:8a:85:8d:14:46:e8:c3:
96:69:80:5e:cd:c5:6c:bc:96:3f:02:35:72:9a:fb:96:d2:1e:
4a:7b:1f:45:ac:96:ef:36:b5:16:fb:4d:4f:52:59:6e:41:d7:
37:92:e8:cf:bc:77:02:a4:d4:47:af:4a:47:13:f1:a9:c4:44:
20:9a:9c:5a:52:7e:b7:76:ab:14:2b:26:db:7e:86:c6:0f:f3:
8a:3b:8c:8a:79:3b:10:a0:a1:8e:25:22:fb:15:c6:78:81:ce:
44:21:51:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8IVebqop1KGqhGKjYK6g7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyNzhjNGFhYTAyMWJlZDhiOTI2ZTM1OTFmZGY1MGM4ZGY2
YmMxNzIwHhcNMjUxMDE5MTEwMTA3WhcNMjUxMDIwMTEwMTA3WjAzMTEwLwYDVQQD
Eyg3MmVhMTdiMjM3YTNmNTc0YzAyMDVkZGY2MzBiMDdlNGFmZDFlNjlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUI+4R8IOgAKdVeGFYFQbQ8Pb2da
OcLiC3jTkZBRfV9M1RCc7PvJXkVWm3V94H89kQZFDXM1+7jzxx98FP7+Rw8cQ9xs
S5npZlhEjnYk7mVAsnfvY8lQRcGyWcrqJxjYRIhkTzpogmAPWOj3mcpmFxxqE3tl
vky5BSvsrUksvPUrr+1HPdaOqqH/VO0SFZPZTX2jgkt/APqUdfYzWeVMVn55s9SB
YdpkkBliuft3EjsjW4mzri/Lhw9m7KayKdRmZJw7Wf+3f4k7kdt9oY6PGkl0MBKo
7ovprkNjvR5Pkghztawg27bXUhN7LK7gm9qeSz9xofd9yglKar+RzDQHYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHLqF7I3o/V0wCBd32MLB+Sv0eafMB8GA1UdIwQY
MBaAFOJ4xKqgIb7YuSbjWR/fUMjfa8FyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNG5qRXFxQWh2dGk1SnVOWkg5OVF5Tjlyd1hJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jMDY5MzctOTNiMy00NDJlLTg2NzYt
ZmM0MzM5MTk4OGY3LzEvNG5qRXFxQWh2dGk1SnVOWkg5OVF5Tjlyd1hJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9jMDY5MzctOTNiMy00NDJlLTg2NzYtZmM0MzM5MTk4OGY3
LzEvNG5qRXFxQWh2dGk1SnVOWkg5OVF5Tjlyd1hJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOVzRzzu9
Vqh0FAStpQDz4BciE7Sr8tfKcioIkhqDlzMwuAW9ikq9cTq9T8uMRAVhgq8549zW
ijBG2Pd37tQ/LUCxasM5FjIr9jWIWLziZ2krgh8TMNn05paJhKziqLkpyeAwMLO3
2o15rjIegWlThzUxbWrn1Q7wLg8mTxmSDZQ+CjaQ2XvuBt+cuFijFAaGkDonQ1he
kBIW69GKhY0URujDlmmAXs3FbLyWPwI1cpr7ltIeSnsfRayW7za1FvtNT1JZbkHX
N5Loz7x3AqTUR69KRxPxqcREIJqcWlJ+t3arFCsm236Gxg/zijuMink7EKChjiUi
+xXGeIHORCFRqw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:05:59 2025 by rpki-client