Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft
File: 4iUB2aQBcJg48z0a4nm85xALPM8.mft (raw, json)
Hash identifier: ZkD8hRCMI3nLT/5gTfNYi4/uQUdDwf0KZOWyjl5I34w=
Subject key identifier: A6:F4:A4:43:F2:39:B1:D5:FE:BC:9E:9E:02:AB:AD:24:B6:77:5D:F8
Authority key identifier: E2:25:01:D9:A4:01:70:98:38:F3:3D:1A:E2:79:BC:E7:10:0B:3C:CF
Certificate issuer: /CN=e22501d9a401709838f33d1ae279bce7100b3ccf
Certificate serial: 0198D65F18AB66B021DF888158B89A4568FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4iUB2aQBcJg48z0a4nm85xALPM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft
Manifest number: 10C1
Signing time: Sat 23 Aug 2025 10:00:13 +0000
Manifest this update: Sat 23 Aug 2025 10:00:13 +0000
Manifest next update: Sun 24 Aug 2025 10:00:13 +0000
Files and hashes: 1: 4iUB2aQBcJg48z0a4nm85xALPM8.crl (hash: 4wBXjPhqHu3eGtItl4Ttrqf+g0zI34cqWLDQp0e1MaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4iUB2aQBcJg48z0a4nm85xALPM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:18:ab:66:b0:21:df:88:81:58:b8:9a:45:68:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e22501d9a401709838f33d1ae279bce7100b3ccf
Validity
Not Before: Aug 23 10:00:13 2025 GMT
Not After : Aug 24 10:00:13 2025 GMT
Subject: CN=a6f4a443f239b1d5febc9e9e02abad24b6775df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f2:ab:d2:b5:92:df:01:f7:6d:9f:91:69:93:
26:1a:f7:87:97:ad:44:1f:50:60:36:87:84:86:ae:
58:28:a8:60:4c:0e:d4:1e:cf:d7:c3:5b:36:bc:2f:
42:db:af:7f:7e:82:5e:8d:d3:2b:c9:3a:06:4a:56:
f9:c4:7e:bf:66:46:3b:b0:5c:4e:b5:86:18:6d:01:
12:7b:23:e0:ae:e8:e2:08:a2:5d:95:86:9a:f5:57:
f9:11:40:ef:8b:c9:e4:fc:ff:61:6a:ef:2d:57:e1:
2e:fe:43:5f:2b:f6:f8:57:4f:44:08:d9:1e:34:26:
6a:4c:0d:1f:e6:ef:11:fa:96:63:fc:69:97:8b:e1:
c1:bd:0b:8c:2e:77:a4:9c:c5:1c:a3:3d:6f:5b:bd:
d6:c4:f7:58:4b:90:0f:d1:3a:72:73:88:55:79:dc:
8d:44:6f:28:56:df:72:8a:11:f9:4b:4e:24:b1:96:
71:14:38:85:8e:1b:65:7f:44:b1:78:11:95:1a:ec:
b2:44:28:7e:2d:a4:67:ad:94:39:05:51:f5:50:21:
8b:58:dd:d0:10:c8:e0:d5:71:38:1a:90:42:df:eb:
5c:4e:e7:f3:79:f0:8e:5e:31:3d:a2:1e:18:9a:87:
09:72:fb:fa:5e:86:71:8e:2b:d9:be:df:a2:2c:6f:
06:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F4:A4:43:F2:39:B1:D5:FE:BC:9E:9E:02:AB:AD:24:B6:77:5D:F8
X509v3 Authority Key Identifier:
keyid:E2:25:01:D9:A4:01:70:98:38:F3:3D:1A:E2:79:BC:E7:10:0B:3C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4iUB2aQBcJg48z0a4nm85xALPM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:09:d4:5b:92:08:f4:40:5f:72:e8:9f:f8:f9:82:f2:c3:e6:
f0:21:f3:a0:40:17:76:3a:eb:8c:a8:b4:a1:ce:2c:81:15:68:
d5:56:fd:7a:10:cb:29:57:b2:ca:7b:86:ca:05:31:f4:0a:ee:
b9:27:ae:d3:85:83:c8:87:cc:2d:8c:86:c7:1a:3f:5c:ad:34:
e2:0a:dd:6e:77:74:52:0f:74:87:a4:1a:3d:bb:5f:46:20:c0:
76:e4:b7:c8:c7:19:fa:70:89:08:85:70:cd:e3:5c:1b:f1:8b:
37:22:83:d0:b1:f3:39:5b:b9:a6:7d:a5:dd:a9:f5:4b:53:f1:
c0:95:48:87:e6:81:c5:88:a7:7c:53:bb:85:05:09:33:2e:d7:
1b:8d:17:87:45:40:6d:ab:98:cf:1f:57:35:d5:60:02:d6:94:
64:d0:8e:ab:3c:26:82:d8:ff:5f:58:da:0b:1e:69:6f:e8:0f:
e3:ca:03:95:54:56:b0:41:23:3a:13:48:99:32:4d:b6:d3:48:
c0:3d:6d:1f:a7:66:ca:84:93:ed:1a:13:46:d2:73:83:e7:73:
06:77:1b:2d:9c:34:0e:63:13:7a:c1:3c:b3:19:43:22:36:d1:
47:64:21:6d:5e:62:dd:81:d0:c4:ec:92:7a:ff:c4:fb:41:4f:
82:4f:0e:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWXxirZrAh34iBWLiaRWj+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyMjUwMWQ5YTQwMTcwOTgzOGYzM2QxYWUyNzliY2U3MTAw
YjNjY2YwHhcNMjUwODIzMTAwMDEzWhcNMjUwODI0MTAwMDEzWjAzMTEwLwYDVQQD
EyhhNmY0YTQ0M2YyMzliMWQ1ZmViYzllOWUwMmFiYWQyNGI2Nzc1ZGY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPKr0rWS3wH3bZ+RaZMmGveHl61E
H1BgNoeEhq5YKKhgTA7UHs/Xw1s2vC9C269/foJejdMryToGSlb5xH6/ZkY7sFxO
tYYYbQESeyPgrujiCKJdlYaa9Vf5EUDvi8nk/P9hau8tV+Eu/kNfK/b4V09ECNke
NCZqTA0f5u8R+pZj/GmXi+HBvQuMLneknMUcoz1vW73WxPdYS5AP0Tpyc4hVedyN
RG8oVt9yihH5S04ksZZxFDiFjhtlf0SxeBGVGuyyRCh+LaRnrZQ5BVH1UCGLWN3Q
EMjg1XE4GpBC3+tcTufzefCOXjE9oh4YmocJcvv6XoZxjivZvt+iLG8GfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKb0pEPyObHV/ryengKrrSS2d134MB8GA1UdIwQY
MBaAFOIlAdmkAXCYOPM9GuJ5vOcQCzzPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGlVQjJhUUJjSmc0OHowYTRubTg1eEFMUE04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My82M2ZhZTktNDk5Zi00M2Q1LTg3Njgt
Zjk4MTFlZTNmYTg3LzEvNGlVQjJhUUJjSmc0OHowYTRubTg1eEFMUE04Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My82M2ZhZTktNDk5Zi00M2Q1LTg3NjgtZjk4MTFlZTNmYTg3
LzEvNGlVQjJhUUJjSmc0OHowYTRubTg1eEFMUE04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHQnUW5II
9EBfcuif+PmC8sPm8CHzoEAXdjrrjKi0oc4sgRVo1Vb9ehDLKVeyynuGygUx9Aru
uSeu04WDyIfMLYyGxxo/XK004grdbnd0Ug90h6QaPbtfRiDAduS3yMcZ+nCJCIVw
zeNcG/GLNyKD0LHzOVu5pn2l3an1S1PxwJVIh+aBxYinfFO7hQUJMy7XG40Xh0VA
bauYzx9XNdVgAtaUZNCOqzwmgtj/X1jaCx5pb+gP48oDlVRWsEEjOhNImTJNttNI
wD1tH6dmyoST7RoTRtJzg+dzBncbLZw0DmMTesE8sxlDIjbRR2QhbV5i3YHQxOyS
ev/E+0FPgk8OQA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:35:18 2025 by rpki-client