Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft
File: k4EH0RRkaaEaY-X10tfbj28717M.mft (raw, json)
Hash identifier: uvbORecfKs5XhcnFp7Dge3D306VYlNMqKHKSWmywgpA=
Subject key identifier: 69:FF:D7:E3:19:E0:EB:07:A2:C2:F8:42:FF:92:35:20:F2:8A:EF:49
Authority key identifier: 93:81:07:D1:14:64:69:A1:1A:63:E5:F5:D2:D7:DB:8F:6F:3B:D7:B3
Certificate issuer: /CN=938107d1146469a11a63e5f5d2d7db8f6f3bd7b3
Certificate serial: 0199FBEA9D84293F9BE2C143CCAD8A029BE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k4EH0RRkaaEaY-X10tfbj28717M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft
Manifest number: 0746
Signing time: Sun 19 Oct 2025 10:01:20 +0000
Manifest this update: Sun 19 Oct 2025 10:01:20 +0000
Manifest next update: Mon 20 Oct 2025 10:01:20 +0000
Files and hashes: 1: k4EH0RRkaaEaY-X10tfbj28717M.crl (hash: B0XeqpgLcHN79ycmalwsszE0vcV8v/NaMnNIQ8y9gBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft
rsync://rpki.ripe.net/repository/DEFAULT/k4EH0RRkaaEaY-X10tfbj28717M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:9d:84:29:3f:9b:e2:c1:43:cc:ad:8a:02:9b:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=938107d1146469a11a63e5f5d2d7db8f6f3bd7b3
Validity
Not Before: Oct 19 10:01:20 2025 GMT
Not After : Oct 20 10:01:20 2025 GMT
Subject: CN=69ffd7e319e0eb07a2c2f842ff923520f28aef49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1a:fe:4c:29:38:49:40:a1:7d:7b:a8:10:52:
f4:2d:18:26:59:80:3a:26:6a:73:88:e1:69:80:0d:
79:28:e9:26:37:20:27:5f:a1:be:b1:74:1d:f7:c5:
16:18:d5:32:37:27:5d:26:3a:f0:ce:6b:1e:f9:ef:
7d:e6:0d:ad:ed:a7:ab:84:68:cb:50:2f:b4:c3:62:
1f:f1:a6:4e:af:0d:79:be:3f:99:7d:15:c6:5e:37:
01:18:d8:f8:66:0a:c3:cd:cb:3e:d6:03:7d:72:ec:
a3:40:d1:3a:8c:b0:32:d8:b7:fa:c2:af:cc:07:0e:
5a:48:5f:69:17:9f:0f:d4:bc:08:ee:ed:bb:5f:a2:
ef:9d:50:ae:c2:e1:95:99:5f:dd:19:bf:c1:68:b6:
aa:11:a1:25:97:8f:0e:1c:dd:51:b4:5f:4e:3a:a9:
49:28:0a:c9:ec:a7:5e:eb:ba:23:ff:e4:ce:93:53:
a7:93:73:5c:37:9a:73:c9:cd:cc:aa:43:fa:2c:2b:
13:0c:a8:6b:1a:71:3e:0f:7c:35:f0:52:4e:14:46:
5f:6d:1d:12:71:6f:7b:24:c3:52:6b:a1:1c:05:91:
49:39:27:55:3e:c1:ce:98:2c:db:c5:91:9c:a9:c0:
4c:73:2c:58:a9:b1:44:e7:a2:0e:74:60:b2:07:2d:
7d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FF:D7:E3:19:E0:EB:07:A2:C2:F8:42:FF:92:35:20:F2:8A:EF:49
X509v3 Authority Key Identifier:
keyid:93:81:07:D1:14:64:69:A1:1A:63:E5:F5:D2:D7:DB:8F:6F:3B:D7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k4EH0RRkaaEaY-X10tfbj28717M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:19:33:3d:24:db:f6:a1:03:0d:8b:32:85:dc:50:e7:9a:9f:
24:f9:fe:da:59:09:47:3c:1b:9a:4c:8f:3e:7b:39:23:a6:07:
61:de:2c:f2:03:94:97:79:3c:9e:91:36:7a:a8:91:0b:76:74:
9a:6d:a2:ee:6e:df:69:c4:6b:a5:70:e8:56:92:3e:b5:ca:4b:
de:11:60:55:16:8b:95:03:e9:9d:b4:3e:5a:60:fb:de:0f:4b:
3f:fc:e0:d9:9e:c5:76:39:7a:dc:0e:65:f0:aa:b5:4e:32:f6:
b6:fb:9a:17:78:55:5d:35:cc:25:fe:08:83:b9:05:13:21:10:
f5:b4:71:cd:1d:3e:5a:02:f7:5c:f1:e3:74:6f:01:08:84:6f:
78:fc:1d:e6:62:ef:39:14:5e:fb:49:3e:4d:0e:9c:76:05:e8:
71:19:e6:0a:90:85:91:e8:b5:38:24:fb:91:51:e9:7b:0f:32:
a0:f8:e0:e0:41:44:8a:69:fa:53:d4:55:fc:3f:f6:72:e7:0f:
76:e2:c3:bf:d9:6c:d5:f3:bc:5c:10:d5:cf:43:12:1b:14:52:
fa:a3:a1:9a:bf:15:80:db:2d:a0:ab:83:4f:4d:3b:b7:aa:4f:
3b:b0:57:e2:4b:a1:2b:44:e1:f8:39:fb:80:f6:38:94:95:a2:
62:2f:fe:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76p2EKT+b4sFDzK2KApviMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzODEwN2QxMTQ2NDY5YTExYTYzZTVmNWQyZDdkYjhmNmYz
YmQ3YjMwHhcNMjUxMDE5MTAwMTIwWhcNMjUxMDIwMTAwMTIwWjAzMTEwLwYDVQQD
Eyg2OWZmZDdlMzE5ZTBlYjA3YTJjMmY4NDJmZjkyMzUyMGYyOGFlZjQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Rr+TCk4SUChfXuoEFL0LRgmWYA6
JmpziOFpgA15KOkmNyAnX6G+sXQd98UWGNUyNyddJjrwzmse+e995g2t7aerhGjL
UC+0w2If8aZOrw15vj+ZfRXGXjcBGNj4ZgrDzcs+1gN9cuyjQNE6jLAy2Lf6wq/M
Bw5aSF9pF58P1LwI7u27X6LvnVCuwuGVmV/dGb/BaLaqEaEll48OHN1RtF9OOqlJ
KArJ7Kde67oj/+TOk1Onk3NcN5pzyc3MqkP6LCsTDKhrGnE+D3w18FJOFEZfbR0S
cW97JMNSa6EcBZFJOSdVPsHOmCzbxZGcqcBMcyxYqbFE56IOdGCyBy196wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGn/1+MZ4OsHosL4Qv+SNSDyiu9JMB8GA1UdIwQY
MBaAFJOBB9EUZGmhGmPl9dLX249vO9ezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazRFSDBSUmthYUVhWS1YMTB0ZmJqMjg3MTdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9hZmY0YTktM2M1ZS00YTcxLWI1MjQt
Y2JjNmNjYzA4OTMyLzEvazRFSDBSUmthYUVhWS1YMTB0ZmJqMjg3MTdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9hZmY0YTktM2M1ZS00YTcxLWI1MjQtY2JjNmNjYzA4OTMy
LzEvazRFSDBSUmthYUVhWS1YMTB0ZmJqMjg3MTdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALxkzPSTb
9qEDDYsyhdxQ55qfJPn+2lkJRzwbmkyPPns5I6YHYd4s8gOUl3k8npE2eqiRC3Z0
mm2i7m7facRrpXDoVpI+tcpL3hFgVRaLlQPpnbQ+WmD73g9LP/zg2Z7Fdjl63A5l
8Kq1TjL2tvuaF3hVXTXMJf4Ig7kFEyEQ9bRxzR0+WgL3XPHjdG8BCIRvePwd5mLv
ORRe+0k+TQ6cdgXocRnmCpCFkei1OCT7kVHpew8yoPjg4EFEimn6U9RV/D/2cucP
duLDv9ls1fO8XBDVz0MSGxRS+qOhmr8VgNstoKuDT007t6pPO7BX4kuhK0Th+Dn7
gPY4lJWiYi/+Fw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:24:19 2025 by rpki-client