Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
File: v4iEmi616d1XGo50O-17lRPXoSE.mft (raw, json)
Hash identifier: THQaky40Rl0QFJclGJtRrXNERYpZM+Tr+HOjAd7HFxw=
Subject key identifier: A4:61:BE:F2:22:AB:E6:A7:56:61:5C:9F:F5:86:A4:30:4D:82:C3:DA
Authority key identifier: BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21
Certificate issuer: /CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121
Certificate serial: 0199FEB47A1DE4F56500F876AEDF7D466C49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
Manifest number: 02B4
Signing time: Sun 19 Oct 2025 23:01:04 +0000
Manifest this update: Sun 19 Oct 2025 23:01:04 +0000
Manifest next update: Mon 20 Oct 2025 23:01:04 +0000
Files and hashes: 1: 5iMuwWI8XaEhRZXS7r7Tcitw9PQ.roa (hash: 8fAOJFpGS1CZZLyn3E+heU8rt8qm4ywsWgdel84Aa/Q=)
2: YvRVUVUo7_yU7Iq1s_PjtWUSc3E.roa (hash: 573R9YYxB5EQXEuIaiXRONNginQD8FqOnode2lo9il4=)
3: v4iEmi616d1XGo50O-17lRPXoSE.crl (hash: AxMyjk/dQYVG0cORWnz/2HD3pXy/IZm/VeuOaL41hK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:7a:1d:e4:f5:65:00:f8:76:ae:df:7d:46:6c:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121
Validity
Not Before: Oct 19 23:01:04 2025 GMT
Not After : Oct 20 23:01:04 2025 GMT
Subject: CN=a461bef222abe6a756615c9ff586a4304d82c3da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:65:68:63:82:7c:48:2d:0b:7e:8d:45:f1:f7:
df:f2:08:2e:6e:eb:1e:6d:df:4a:50:ee:72:2e:36:
11:96:aa:0d:8c:24:a4:4f:2b:e6:a9:6a:f1:74:68:
9b:a7:80:11:60:a8:1e:8e:a5:f3:f7:34:08:6b:cc:
80:b6:c0:5d:b0:45:0f:1a:93:cc:4f:d2:74:d7:df:
5f:e8:64:c7:ad:1b:e8:b2:62:0b:b7:c0:cc:91:ab:
87:8a:c7:3a:64:75:0c:30:8e:4e:75:94:a1:1e:7a:
10:5b:02:3e:e1:21:cd:50:17:76:2a:bb:af:51:d5:
21:60:67:8e:00:64:42:f2:3e:c6:6b:c1:d8:b5:5c:
6f:71:5e:84:f3:e1:be:c4:c9:f4:f9:9a:5d:5b:b6:
55:ff:d6:99:5e:74:69:99:92:7f:55:fc:97:8c:c3:
cd:92:b8:ff:e0:cf:e8:60:e2:ac:9a:be:f0:e8:ad:
d3:f7:06:62:50:50:d4:5e:00:75:22:e6:0f:75:45:
ea:2a:fd:8b:6e:09:aa:76:fe:eb:9f:b1:b1:fd:ec:
ca:4b:9e:5e:5a:a7:f9:00:57:41:53:eb:54:41:1c:
9d:67:45:e9:56:f6:df:12:b6:28:fd:13:bb:35:53:
ef:0d:7c:f6:5d:0c:b8:cd:83:e5:be:d1:97:17:eb:
1f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:61:BE:F2:22:AB:E6:A7:56:61:5C:9F:F5:86:A4:30:4D:82:C3:DA
X509v3 Authority Key Identifier:
keyid:BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:83:1c:a0:6b:4d:b7:99:b3:78:3a:33:d7:19:63:1c:e4:4b:
8f:67:6a:5c:a6:86:cb:dc:1e:43:27:d8:ad:4f:f9:42:14:22:
96:da:73:fa:80:2f:39:be:4b:6b:f3:19:6a:e1:c9:19:05:82:
35:6f:ef:1f:50:16:09:3f:10:66:79:a9:bc:77:b8:cd:f3:f7:
bf:b5:6a:62:c8:01:69:f2:a3:be:6c:c5:83:3f:63:04:35:7e:
dc:fb:54:3f:bd:fc:f2:b7:7d:71:d9:a5:d9:e7:db:f6:6d:56:
6f:96:92:d2:90:9a:8e:10:54:03:1d:7e:1c:67:fa:66:3a:7f:
fa:98:57:f9:b2:6f:6f:df:1f:93:c0:ab:53:61:3e:87:12:d2:
7c:b6:17:6d:28:1f:77:e7:84:38:4d:25:3e:38:7d:2d:7f:6d:
35:a0:08:8a:0c:e2:66:05:d9:5f:8d:d5:8e:aa:90:d0:6d:71:
c7:68:7f:ca:a4:7a:be:8b:22:11:b3:8d:3a:c8:59:a7:03:ae:
dc:b1:65:08:4b:60:be:86:b0:a2:df:f5:47:ef:e4:ae:ac:40:
10:0b:32:21:e6:54:57:e0:5d:4d:13:cd:3f:b1:20:04:7a:40:
b2:fc:32:f1:65:db:7a:55:5d:51:bb:a9:5f:87:b6:1f:49:0f:
b8:05:01:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+tHod5PVlAPh2rt99RmxJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmODg4NDlhMmViNWU5ZGQ1NzFhOGU3NDNiZWQ3Yjk1MTNk
N2ExMjEwHhcNMjUxMDE5MjMwMTA0WhcNMjUxMDIwMjMwMTA0WjAzMTEwLwYDVQQD
EyhhNDYxYmVmMjIyYWJlNmE3NTY2MTVjOWZmNTg2YTQzMDRkODJjM2RhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmVoY4J8SC0Lfo1F8fff8ggubuse
bd9KUO5yLjYRlqoNjCSkTyvmqWrxdGibp4ARYKgejqXz9zQIa8yAtsBdsEUPGpPM
T9J0199f6GTHrRvosmILt8DMkauHisc6ZHUMMI5OdZShHnoQWwI+4SHNUBd2Kruv
UdUhYGeOAGRC8j7Ga8HYtVxvcV6E8+G+xMn0+ZpdW7ZV/9aZXnRpmZJ/VfyXjMPN
krj/4M/oYOKsmr7w6K3T9wZiUFDUXgB1IuYPdUXqKv2Lbgmqdv7rn7Gx/ezKS55e
Wqf5AFdBU+tUQRydZ0XpVvbfErYo/RO7NVPvDXz2XQy4zYPlvtGXF+sfdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKRhvvIiq+anVmFcn/WGpDBNgsPaMB8GA1UdIwQY
MBaAFL+IhJoutendVxqOdDvte5UT16EhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjRpRW1pNjE2ZDFYR281ME8tMTdsUlBYb1NFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9kYmM1OGUtMDI3Yi00YWFjLTlkZTYt
MjM3MzliNWZkODRjLzEvdjRpRW1pNjE2ZDFYR281ME8tMTdsUlBYb1NFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS9kYmM1OGUtMDI3Yi00YWFjLTlkZTYtMjM3MzliNWZkODRj
LzEvdjRpRW1pNjE2ZDFYR281ME8tMTdsUlBYb1NFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP4McoGtN
t5mzeDoz1xljHORLj2dqXKaGy9weQyfYrU/5QhQiltpz+oAvOb5La/MZauHJGQWC
NW/vH1AWCT8QZnmpvHe4zfP3v7VqYsgBafKjvmzFgz9jBDV+3PtUP7388rd9cdml
2efb9m1Wb5aS0pCajhBUAx1+HGf6Zjp/+phX+bJvb98fk8CrU2E+hxLSfLYXbSgf
d+eEOE0lPjh9LX9tNaAIigziZgXZX43VjqqQ0G1xx2h/yqR6vosiEbONOshZpwOu
3LFlCEtgvoawot/1R+/krqxAEAsyIeZUV+BdTRPNP7EgBHpAsvwy8WXbelVdUbup
X4e2H0kPuAUBCg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 04:11:41 2025 by rpki-client