Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
File: 4z5OBZxk_xm-EKehUEV1YeRV0U8.mft (raw, json)
Hash identifier: IhRKYHDx4OvYKe1uKVy7yLCTUIVy5Cu8/pJfP+DQKH0=
Subject key identifier: AD:1B:FE:13:42:D2:81:90:A8:4E:D9:6C:5F:8A:9E:B8:B2:8B:53:96
Authority key identifier: E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F
Certificate issuer: /CN=e33e4e059c64ff19be10a7a150457561e455d14f
Certificate serial: 0199FBEAAF5865FCEDD98D39BA1557CD598E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
Manifest number: 07EA
Signing time: Sun 19 Oct 2025 10:01:25 +0000
Manifest this update: Sun 19 Oct 2025 10:01:25 +0000
Manifest next update: Mon 20 Oct 2025 10:01:25 +0000
Files and hashes: 1: 4Vx5uY-wUi0YX0Kfqz3unLfjiuA.roa (hash: CqAh2hOC6+tjEARJLtXVTVdqWTjo1Zk7c/vuGkdSa5s=)
2: 4z5OBZxk_xm-EKehUEV1YeRV0U8.crl (hash: GD4wKPsa6+TqCwYu8dRrwbADY/t4APb1GhozYOgFDCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:af:58:65:fc:ed:d9:8d:39:ba:15:57:cd:59:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33e4e059c64ff19be10a7a150457561e455d14f
Validity
Not Before: Oct 19 10:01:25 2025 GMT
Not After : Oct 20 10:01:25 2025 GMT
Subject: CN=ad1bfe1342d28190a84ed96c5f8a9eb8b28b5396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:84:3c:50:9d:8d:25:db:c2:eb:eb:ce:cc:c1:
a1:71:0e:58:3a:8a:9b:c7:c3:0d:bb:63:f6:31:11:
d4:25:9d:c3:20:9e:c5:fb:65:38:94:9c:ee:27:44:
08:de:1f:71:e8:65:e1:ed:df:07:1d:54:96:53:df:
84:41:19:c6:e4:e5:7f:42:cd:45:d0:dc:54:9d:2b:
c6:87:f3:38:c3:ee:b2:e7:5e:d9:31:2f:c1:ed:ec:
b3:c2:7f:bf:be:9d:f0:48:72:d6:68:8e:5c:c0:10:
5b:3c:db:b4:20:72:fa:a4:30:7e:26:62:49:b6:dd:
1a:6c:13:89:4d:68:16:35:74:8c:74:5b:46:25:11:
e6:89:e6:a6:0e:72:80:d3:f5:98:f2:d2:a8:7d:ed:
24:8d:dd:57:6f:5f:3c:ee:17:33:ab:de:02:c7:14:
ca:42:60:45:c4:40:09:81:ca:77:27:cf:50:14:cb:
e9:fe:43:bb:ef:94:cd:b3:6c:7f:e7:96:48:b8:f2:
1f:fd:5d:5f:3b:bf:03:c4:2b:69:96:1e:6b:5a:95:
ab:6f:6e:92:e8:20:67:dc:41:de:2b:71:93:d5:85:
98:cc:09:43:4b:7a:5d:d8:68:c0:35:56:c8:fa:36:
45:6f:d2:7c:39:a2:f4:3a:77:a5:fe:3f:51:b2:8a:
42:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:1B:FE:13:42:D2:81:90:A8:4E:D9:6C:5F:8A:9E:B8:B2:8B:53:96
X509v3 Authority Key Identifier:
keyid:E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ce:7c:51:9e:36:f2:ba:79:00:5d:70:d2:f7:69:ac:08:ec:
e5:a4:00:79:17:69:8f:dd:ec:a8:4e:62:ba:18:ca:f1:eb:1b:
f6:63:10:fd:ec:1a:5a:58:df:f7:db:87:f2:a6:e5:27:87:58:
2e:42:c3:41:8a:06:75:5e:86:b0:ba:7d:17:59:44:f8:01:13:
2f:39:b4:95:9f:65:55:f4:74:d5:c2:81:1a:38:75:a2:08:41:
b4:01:82:c1:2a:c7:f8:1b:68:28:ff:97:df:21:bf:13:33:4c:
30:e4:d5:59:ea:77:78:f6:af:db:36:88:a3:69:39:76:64:98:
82:28:9c:20:a2:4c:e9:92:4c:19:19:c4:62:2a:53:ce:d8:7e:
e1:bb:82:1f:6d:18:51:19:de:1f:e7:3d:39:5a:89:0a:43:eb:
80:e7:53:b0:76:51:a3:da:82:c6:90:ad:39:0d:ff:6e:3a:8b:
cb:47:42:5e:10:1d:2d:77:ec:5c:77:db:74:fd:f7:98:f5:5f:
9f:36:38:ab:8d:81:d1:13:5f:e9:2e:74:75:d5:86:01:c9:37:
74:5b:9d:d4:97:38:19:c0:f6:f5:34:c0:fa:ec:6f:5e:bf:ec:
30:c3:07:9e:2a:76:9e:d3:ce:b6:b8:d4:42:15:b3:12:e0:a3:
1c:20:61:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:18 2025 by rpki-client