Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
File: v4iEmi616d1XGo50O-17lRPXoSE.mft (raw, json)
Hash identifier: Mo4KmkSACt9ar1fSw4Z+g5yKTpt4/H4kY7tjqRjTncA=
Subject key identifier: CE:FB:3A:6A:15:B8:57:3B:8A:41:E1:83:C4:7D:B4:4C:2D:C1:51:5B
Authority key identifier: BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21
Certificate issuer: /CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121
Certificate serial: 0198D515E56D08BBD9D1BB8B07B01C88DB81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
Manifest number: 0219
Signing time: Sat 23 Aug 2025 04:00:38 +0000
Manifest this update: Sat 23 Aug 2025 04:00:38 +0000
Manifest next update: Sun 24 Aug 2025 04:00:38 +0000
Files and hashes: 1: Ex7Mch12NOvcmxXbqckMkUp1BGY.roa (hash: y3WSoYjG8azQeh2/ujI0bli2tl/55+iUCdei7rNkLgg=)
2: pIcPL0xVMGfbZp3ySADLcXmoV2U.roa (hash: I45yUURl6+DobBuXbEDbWDLdoODg1monacbKrlx9+d0=)
3: v4iEmi616d1XGo50O-17lRPXoSE.crl (hash: AScFzTZH5r3yfqD9DSbm6P6+wz1OM57Q+GkktaVRLI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:e5:6d:08:bb:d9:d1:bb:8b:07:b0:1c:88:db:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf88849a2eb5e9dd571a8e743bed7b9513d7a121
Validity
Not Before: Aug 23 04:00:38 2025 GMT
Not After : Aug 24 04:00:38 2025 GMT
Subject: CN=cefb3a6a15b8573b8a41e183c47db44c2dc1515b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b7:6f:6d:84:68:f1:83:6e:27:73:e9:92:42:
f5:a5:8b:d9:90:bf:82:11:eb:66:da:45:09:ec:98:
15:0c:ee:b9:59:08:14:22:ea:c1:9c:0f:6f:75:83:
d4:0e:6d:6b:41:f9:39:3b:ef:2d:dc:50:d3:3d:32:
69:bf:dc:1e:04:2b:b2:cb:89:a5:1a:8a:b3:33:d4:
e5:02:9d:f2:3a:91:13:c9:d3:7a:cf:87:44:65:99:
81:30:6c:ba:01:21:99:8e:89:7c:cf:b4:bc:44:5f:
32:f9:0f:0e:86:dc:b9:c4:50:68:51:83:87:f0:3f:
83:ed:e8:ed:8f:9b:44:b8:c8:88:3f:7b:0b:82:13:
76:d4:37:92:8b:50:d2:38:03:fe:67:fc:37:f9:31:
a0:8a:b7:31:c1:eb:ff:c8:51:c1:28:30:b5:77:13:
3e:6b:e6:6e:8b:03:66:d6:5d:18:92:49:a2:9b:14:
50:f0:5d:d7:35:a5:d9:e0:26:9e:43:27:04:37:f9:
56:87:1e:6d:78:d2:f5:79:a2:63:d2:b9:50:b9:94:
59:06:e0:61:0f:f2:1e:2d:88:24:cb:45:58:33:68:
5f:81:43:90:a6:16:86:79:14:bc:ce:b9:38:2b:5d:
2e:d3:ff:56:8d:80:82:57:33:5a:33:fa:8b:a0:93:
5f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:FB:3A:6A:15:B8:57:3B:8A:41:E1:83:C4:7D:B4:4C:2D:C1:51:5B
X509v3 Authority Key Identifier:
keyid:BF:88:84:9A:2E:B5:E9:DD:57:1A:8E:74:3B:ED:7B:95:13:D7:A1:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4iEmi616d1XGo50O-17lRPXoSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/dbc58e-027b-4aac-9de6-23739b5fd84c/1/v4iEmi616d1XGo50O-17lRPXoSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:21:9c:d9:20:0c:33:1a:22:1d:a8:ad:c5:ee:f4:c8:fe:e1:
3b:99:e6:89:c5:25:6c:ba:6a:ac:c4:42:f4:70:b0:33:31:02:
8c:31:dc:0c:b4:66:26:6c:a8:9c:7c:e9:4a:56:6d:2c:ab:d3:
f7:e8:b5:37:66:79:6e:57:ff:d9:46:8a:c2:10:7b:00:21:70:
ff:8a:d8:04:4d:77:bc:5e:e9:91:6a:9f:dd:a9:99:0d:01:3d:
7b:b6:01:bf:f3:2c:07:4f:10:ed:0d:12:f1:4c:ab:7e:c3:36:
65:5e:34:3c:cd:03:38:82:0e:40:58:79:59:2f:89:9b:28:e7:
4f:4e:66:be:89:64:fb:80:34:78:1b:83:ea:e1:d4:41:89:6b:
08:49:58:83:16:e6:1f:54:e6:b3:02:8a:d6:31:3c:8c:8a:eb:
44:6a:41:0a:5e:4f:a7:5b:53:34:e2:9d:03:3c:e8:9e:19:b8:
de:6c:eb:d3:54:4e:b9:20:38:80:b2:cd:f4:8c:40:48:29:a4:
7e:87:f8:a2:83:a6:55:63:3f:ee:89:14:e4:fe:c8:cc:15:74:
4c:50:6b:ce:31:13:31:b6:0e:ee:b7:cf:57:72:7d:d4:7c:70:
2b:75:a7:d3:92:7d:fc:fa:ec:a5:95:85:37:21:af:b8:8d:6d:
01:51:50:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:32:26 2025 by rpki-client