Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
File: 4TcnopRRvk3Zkitg0cWW6Aaplfs.mft (raw, json)
Hash identifier: 0Zdp6xhAa9WGOMqEz3U8QWOvVwJirfjIawIjH2eX5QQ=
Subject key identifier: C9:30:DC:BA:61:9D:07:29:53:4B:7C:AB:7D:81:06:7B:0E:6E:95:5E
Authority key identifier: E1:37:27:A2:94:51:BE:4D:D9:92:2B:60:D1:C5:96:E8:06:A9:95:FB
Certificate issuer: /CN=e13727a29451be4dd9922b60d1c596e806a995fb
Certificate serial: 0198D84F57ABD155486C88D57A570289C9ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 19:02:15 +0000
Manifest this update: Sat 23 Aug 2025 19:02:15 +0000
Manifest next update: Sun 24 Aug 2025 19:02:15 +0000
Files and hashes: 1: 4TcnopRRvk3Zkitg0cWW6Aaplfs.crl (hash: fGLZRQHnFLUOb0PVpXXRVYpNmFBULCnS7y9Bn2CVSm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:4f:57:ab:d1:55:48:6c:88:d5:7a:57:02:89:c9:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e13727a29451be4dd9922b60d1c596e806a995fb
Validity
Not Before: Aug 23 19:02:15 2025 GMT
Not After : Aug 24 19:02:15 2025 GMT
Subject: CN=c930dcba619d0729534b7cab7d81067b0e6e955e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:16:c0:e1:6b:a3:89:79:9e:e0:4a:42:9b:60:
1e:7a:dc:d1:e7:09:00:0c:95:a5:bd:c2:f2:9e:12:
0c:5a:e5:e9:1a:22:be:49:64:d7:e9:e2:62:15:85:
e1:c3:17:ea:24:a3:62:52:03:7e:fb:e8:5a:60:ff:
fe:a4:1f:2d:15:44:ef:5a:a6:ed:a1:e4:a3:9f:95:
33:b3:c2:fc:bb:41:01:63:a2:9f:97:25:6c:64:e8:
90:d6:b1:26:15:7e:80:09:dc:93:01:bf:63:f7:69:
f5:7c:1b:81:96:f9:a7:7b:88:d1:3f:49:29:fb:c3:
69:25:69:95:05:8e:f1:dc:e0:da:31:5d:ad:fe:3e:
52:11:82:75:05:a9:ad:3c:71:b4:38:90:3a:9b:7c:
79:b9:a0:01:fc:1f:47:56:09:18:30:99:2e:a8:71:
e1:a1:3d:fb:65:be:78:90:a0:21:a0:b2:06:bc:1f:
f0:46:55:3f:71:a0:30:2b:e2:4d:6e:5d:fa:64:cc:
c6:c6:73:3b:fe:a4:a6:09:84:ca:6a:53:71:2c:d9:
11:de:50:62:72:bb:7d:46:21:af:85:ba:89:5d:b2:
46:cb:2f:0c:32:b1:14:77:3b:ab:37:e9:12:bd:39:
10:6c:6c:f3:15:36:39:37:39:70:cb:a0:38:08:f5:
91:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:30:DC:BA:61:9D:07:29:53:4B:7C:AB:7D:81:06:7B:0E:6E:95:5E
X509v3 Authority Key Identifier:
keyid:E1:37:27:A2:94:51:BE:4D:D9:92:2B:60:D1:C5:96:E8:06:A9:95:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TcnopRRvk3Zkitg0cWW6Aaplfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/de37fa-1bd2-47f5-9e2b-ac4c8f19876d/1/4TcnopRRvk3Zkitg0cWW6Aaplfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:72:3a:ae:fe:e4:36:28:80:1a:8f:82:55:03:1c:61:f8:39:
e1:0f:37:8a:41:85:3e:62:60:22:f0:1f:6e:17:1a:9a:1f:d9:
2d:a2:70:92:de:34:cc:0c:61:03:8c:af:6b:5c:2d:ac:00:93:
85:20:da:1a:c0:2c:75:6c:dd:68:19:d9:2b:8c:ce:b1:29:8a:
d1:c0:7a:bc:74:e8:5b:a4:a8:2f:ae:7f:0d:ed:bb:57:3c:8d:
00:33:b6:8a:b6:51:25:7a:79:d0:95:5c:cf:fa:29:85:ba:90:
2c:26:8e:a2:8f:e2:1f:89:2e:e0:2b:c3:8b:be:56:25:68:c9:
b9:ed:25:6a:c2:04:e5:39:3d:4d:5c:fe:e9:7d:bf:3b:0a:78:
6f:99:b1:3a:83:44:37:51:d4:b9:f2:59:c8:e9:89:07:b6:e0:
b3:c9:a8:9b:fe:6f:e3:c5:67:a9:09:f7:4f:b5:f5:6e:e6:93:
03:64:40:b2:4f:f0:7f:05:6b:fe:e3:65:bc:c6:4e:cb:9a:6e:
76:ee:1d:bd:f6:76:ef:0d:4c:82:f4:fd:3a:93:dd:a3:f9:90:
0a:4e:dc:aa:9e:a3:ae:20:57:d7:54:4a:3f:17:c0:4c:fb:38:
4b:79:5d:b0:94:89:d3:d8:4a:11:9c:92:dc:4f:33:b4:60:96:
1c:18:43:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYT1er0VVIbIjVelcCicntMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxMzcyN2EyOTQ1MWJlNGRkOTkyMmI2MGQxYzU5NmU4MDZh
OTk1ZmIwHhcNMjUwODIzMTkwMjE1WhcNMjUwODI0MTkwMjE1WjAzMTEwLwYDVQQD
EyhjOTMwZGNiYTYxOWQwNzI5NTM0YjdjYWI3ZDgxMDY3YjBlNmU5NTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxbA4WujiXme4EpCm2AeetzR5wkA
DJWlvcLynhIMWuXpGiK+SWTX6eJiFYXhwxfqJKNiUgN+++haYP/+pB8tFUTvWqbt
oeSjn5Uzs8L8u0EBY6KflyVsZOiQ1rEmFX6ACdyTAb9j92n1fBuBlvmne4jRP0kp
+8NpJWmVBY7x3ODaMV2t/j5SEYJ1BamtPHG0OJA6m3x5uaAB/B9HVgkYMJkuqHHh
oT37Zb54kKAhoLIGvB/wRlU/caAwK+JNbl36ZMzGxnM7/qSmCYTKalNxLNkR3lBi
crt9RiGvhbqJXbJGyy8MMrEUdzurN+kSvTkQbGzzFTY5Nzlwy6A4CPWRhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMkw3LphnQcpU0t8q32BBnsObpVeMB8GA1UdIwQY
MBaAFOE3J6KUUb5N2ZIrYNHFlugGqZX7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFRjbm9wUlJ2azNaa2l0ZzBjV1c2QWFwbGZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9kZTM3ZmEtMWJkMi00N2Y1LTllMmIt
YWM0YzhmMTk4NzZkLzEvNFRjbm9wUlJ2azNaa2l0ZzBjV1c2QWFwbGZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9kZTM3ZmEtMWJkMi00N2Y1LTllMmItYWM0YzhmMTk4NzZk
LzEvNFRjbm9wUlJ2azNaa2l0ZzBjV1c2QWFwbGZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARHI6rv7k
NiiAGo+CVQMcYfg54Q83ikGFPmJgIvAfbhcamh/ZLaJwkt40zAxhA4yva1wtrACT
hSDaGsAsdWzdaBnZK4zOsSmK0cB6vHToW6SoL65/De27VzyNADO2irZRJXp50JVc
z/ophbqQLCaOoo/iH4ku4CvDi75WJWjJue0lasIE5Tk9TVz+6X2/Owp4b5mxOoNE
N1HUufJZyOmJB7bgs8mom/5v48VnqQn3T7X1buaTA2RAsk/wfwVr/uNlvMZOy5pu
du4dvfZ27w1MgvT9OpPdo/mQCk7cqp6jriBX11RKPxfATPs4S3ldsJSJ09hKEZyS
3E8ztGCWHBhD/A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 21:50:17 2025 by rpki-client