Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: Gj1mKBhR3MJzh6VZgrVzbpDWzjnBPLHxoENKf4D6q9Q=
Subject key identifier: E4:D4:EE:DD:C3:3C:17:33:B2:A4:91:95:64:EE:E9:B9:66:3A:6F:14
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 0198D5BBFEA639FF7CEDCB50808045C57DEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0C4A
Signing time: Sat 23 Aug 2025 07:02:03 +0000
Manifest this update: Sat 23 Aug 2025 07:02:03 +0000
Manifest next update: Sun 24 Aug 2025 07:02:03 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: EGFJmCoxxvcWYovnk5+PqXTn17/6tNI06Q0BV375qls=)
2: DQo4EErqs46yA4QIpyLHGlOprVU.roa (hash: jpEUtUNk7NIqvU0XQCmCZgYXNkApAZ2zVdQgWdhDGWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:fe:a6:39:ff:7c:ed:cb:50:80:80:45:c5:7d:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: Aug 23 07:02:03 2025 GMT
Not After : Aug 24 07:02:03 2025 GMT
Subject: CN=e4d4eeddc33c1733b2a4919564eee9b9663a6f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ae:62:74:d0:09:0e:6d:df:6a:05:0a:68:5a:
8e:13:23:3c:73:9e:ae:3f:b6:32:23:9f:e0:ae:a1:
40:4a:01:a6:d9:33:2b:8d:7c:6c:22:ea:2e:19:0f:
a3:68:7b:17:00:54:93:2c:05:9e:76:db:ee:8a:15:
3c:ec:ca:54:6a:98:cd:55:a7:c1:51:09:93:6f:93:
a6:fd:84:bd:49:6b:34:99:37:32:7c:8f:1c:6e:d1:
2f:56:f7:27:aa:72:82:63:b4:a1:a8:30:db:17:04:
ee:fe:a7:10:16:61:7b:35:34:97:3a:43:4e:a9:8a:
9d:a5:f7:19:e1:3b:4d:d4:eb:79:7e:68:e1:f3:da:
ee:1a:e1:2c:46:2e:54:9e:f7:ae:2e:8e:d6:0c:21:
8d:91:4d:76:bb:0b:b5:b4:b2:f8:7b:55:1f:29:75:
be:74:0e:11:a7:1a:26:8d:75:50:ba:b8:6a:ac:51:
a5:d5:80:98:60:00:f8:83:16:e2:16:99:f4:20:df:
4d:ef:af:d2:a5:36:96:a0:f8:32:fd:e1:30:c1:7a:
4f:fa:9b:2e:b8:8d:a8:f8:4a:16:9c:b2:b4:e2:5a:
f5:a7:3d:e1:78:2d:73:1e:21:54:31:29:da:77:2c:
b2:1c:44:12:b5:2a:99:d1:46:78:c2:70:b6:99:4b:
f7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:D4:EE:DD:C3:3C:17:33:B2:A4:91:95:64:EE:E9:B9:66:3A:6F:14
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:6c:46:f4:84:42:b3:ef:34:0b:37:cb:fb:11:44:87:ea:73:
9f:51:db:49:b3:57:10:25:03:92:02:01:05:68:1e:d1:14:86:
52:d0:c8:a5:83:c5:43:ed:dc:dc:49:df:cd:ba:7d:7e:5f:3b:
dc:d9:7a:25:58:ca:cd:77:0c:0b:44:33:21:69:b2:78:32:09:
c0:d4:ac:30:8e:9c:78:e7:ff:29:ae:33:62:88:fd:53:d5:56:
24:7a:4a:50:38:e8:e5:40:b1:b3:90:41:1f:a1:e2:9d:98:4d:
50:9e:76:c2:75:6b:72:b8:9d:4d:e5:60:17:26:28:88:c7:23:
94:6e:ba:3b:0b:01:b1:70:0a:c5:fa:ad:a7:54:c4:71:03:f8:
ff:5e:81:4a:e9:12:59:3d:2b:63:67:e5:5a:26:3f:69:4b:87:
ff:ce:72:53:ea:aa:44:f5:48:b7:19:50:bf:6c:7a:f7:24:96:
ce:b8:82:9f:b7:41:2d:05:16:ac:d6:c6:55:7c:42:a9:40:fd:
20:e8:c2:cd:3a:25:0e:ee:8e:f0:91:04:df:a9:41:f9:c7:1a:
8f:a4:c5:5e:04:a4:16:e1:cd:9e:2c:07:82:87:4b:1b:3c:d9:
e3:e6:10:c5:ba:a2:f3:db:11:f1:73:18:b1:bc:89:f4:d1:59:
d9:d0:07:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu/6mOf987ctQgIBFxX3qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNjdhN2I5ZGU3NjdlYjk3ZGI2NGU1MTY0Nzg0OTQ2MzNi
ZDU0ZWEwHhcNMjUwODIzMDcwMjAzWhcNMjUwODI0MDcwMjAzWjAzMTEwLwYDVQQD
EyhlNGQ0ZWVkZGMzM2MxNzMzYjJhNDkxOTU2NGVlZTliOTY2M2E2ZjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsa5idNAJDm3fagUKaFqOEyM8c56u
P7YyI5/grqFASgGm2TMrjXxsIuouGQ+jaHsXAFSTLAWedtvuihU87MpUapjNVafB
UQmTb5Om/YS9SWs0mTcyfI8cbtEvVvcnqnKCY7ShqDDbFwTu/qcQFmF7NTSXOkNO
qYqdpfcZ4TtN1Ot5fmjh89ruGuEsRi5UnveuLo7WDCGNkU12uwu1tLL4e1UfKXW+
dA4RpxomjXVQurhqrFGl1YCYYAD4gxbiFpn0IN9N76/SpTaWoPgy/eEwwXpP+psu
uI2o+EoWnLK04lr1pz3heC1zHiFUMSnadyyyHEQStSqZ0UZ4wnC2mUv30wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOTU7t3DPBczsqSRlWTu6blmOm8UMB8GA1UdIwQY
MBaAFOBnp7nedn65fbZOUWR4SUYzvVTqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYt
NzY4ZjNkNmVlMTllLzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9kNTIwYzQtZGViNC00MzhiLTkzYmYtNzY4ZjNkNmVlMTll
LzEvNEdlbnVkNTJmcmw5dGs1UlpIaEpSak85Vk9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbWxG9IRC
s+80CzfL+xFEh+pzn1HbSbNXECUDkgIBBWge0RSGUtDIpYPFQ+3c3Enfzbp9fl87
3Nl6JVjKzXcMC0QzIWmyeDIJwNSsMI6ceOf/Ka4zYoj9U9VWJHpKUDjo5UCxs5BB
H6HinZhNUJ52wnVrcridTeVgFyYoiMcjlG66OwsBsXAKxfqtp1TEcQP4/16BSukS
WT0rY2flWiY/aUuH/85yU+qqRPVItxlQv2x69ySWzriCn7dBLQUWrNbGVXxCqUD9
IOjCzTolDu6O8JEE36lB+ccaj6TFXgSkFuHNniwHgodLGzzZ4+YQxbqi89sR8XMY
sbyJ9NFZ2dAHyQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 09:41:38 2025 by rpki-client