Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: wFjmIKEbUCdSwxDY5/8PU+mZqJRmUxDpNMgUL5pFWH0=
Subject key identifier: 9D:11:42:1D:7C:1E:17:21:50:07:A8:44:DB:42:8F:6B:C0:7B:36:CF
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 0199FD3446797B20196B34F3D7E470255539
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0CE3
Signing time: Sun 19 Oct 2025 16:01:25 +0000
Manifest this update: Sun 19 Oct 2025 16:01:25 +0000
Manifest next update: Mon 20 Oct 2025 16:01:25 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: aUhd3omIQ+40iWpoq8Ir1wWfgii1XsO0h0/Oi11S320=)
2: DQo4EErqs46yA4QIpyLHGlOprVU.roa (hash: jpEUtUNk7NIqvU0XQCmCZgYXNkApAZ2zVdQgWdhDGWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:46:79:7b:20:19:6b:34:f3:d7:e4:70:25:55:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: Oct 19 16:01:25 2025 GMT
Not After : Oct 20 16:01:25 2025 GMT
Subject: CN=9d11421d7c1e17215007a844db428f6bc07b36cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:93:c0:7b:82:85:ca:df:cd:a4:a8:4e:cc:e8:
8f:ab:b0:b9:ae:01:e4:16:2c:7c:52:ca:03:73:05:
0b:09:83:a9:37:c9:f8:f4:dd:fa:12:43:37:04:97:
24:b7:47:72:0a:37:28:91:e4:aa:78:fd:84:a1:e7:
bb:9d:82:18:38:e6:4d:9d:a2:83:0e:cf:14:8c:f4:
e0:32:44:a6:47:7d:7d:9c:14:14:97:19:1c:8a:dc:
06:5d:65:ca:e8:a1:5f:db:1d:30:33:ec:ae:02:2d:
6d:7a:8b:bc:4c:8d:d3:62:27:47:9d:c5:b9:3f:87:
87:4d:61:68:a3:73:21:99:f3:6b:17:71:ac:ee:8a:
b5:79:02:f4:34:65:91:f5:3c:c2:f9:26:10:ad:40:
4b:fb:16:a2:23:6a:1e:f1:a0:e9:21:50:5b:73:d4:
9a:9d:ad:6d:30:fc:2e:89:e8:fa:1c:f8:26:af:3b:
6c:81:83:de:28:6c:86:e5:ee:94:7a:61:54:6a:e9:
a8:d6:7b:0a:8a:12:a4:8f:c1:f8:29:bb:a7:e9:e2:
e2:d8:0b:35:9c:b8:f7:0a:07:aa:50:da:e7:4d:3d:
b5:d9:a8:57:64:2f:d9:1e:2a:a0:b4:86:80:4d:75:
0f:8e:7d:fd:30:9d:5a:c1:8a:53:66:ec:45:4f:b7:
54:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:11:42:1D:7C:1E:17:21:50:07:A8:44:DB:42:8F:6B:C0:7B:36:CF
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:5d:ad:1d:9e:c0:3d:a3:73:2d:87:3d:1d:12:06:c6:46:a0:
c3:69:51:56:6f:ce:9c:f4:92:57:a8:c6:85:0a:96:c0:ee:af:
66:2f:cb:21:39:02:63:48:98:26:eb:2c:51:aa:c8:0e:ba:10:
86:ee:57:66:be:f5:16:5a:93:7f:12:c9:fc:e2:f4:20:07:7d:
0e:3a:f2:ed:02:fe:97:04:e3:45:bf:c7:14:80:d6:f4:73:9e:
3f:db:5e:b6:01:a8:98:2f:a7:45:d9:7e:93:ae:13:b9:18:b5:
e6:d3:41:69:85:44:ee:58:7f:b3:ea:da:30:a7:dc:92:63:35:
8c:71:d5:b1:cb:2b:fc:64:73:a0:f3:a1:ac:fd:3a:2a:ac:db:
9c:f7:46:a9:9b:5a:8a:01:7c:db:54:89:b4:4d:09:8d:3b:68:
82:bc:7b:05:23:e8:76:ff:a3:eb:b8:a3:07:eb:35:7a:be:ac:
34:d5:c1:34:d4:f2:d8:a1:e0:17:ab:21:51:ae:2d:4c:b3:5e:
e9:23:0c:9b:67:96:cc:1b:97:1d:34:c0:d6:b4:a1:9c:5a:1e:
01:d5:ed:b2:28:0c:be:8a:ab:31:10:66:7b:db:69:74:53:20:
a6:73:08:58:72:74:bb:0f:fe:c6:ba:e6:c4:cf:0b:fa:74:61:
36:e9:75:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:31 2025 by rpki-client