Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
File: 4IZuWnxyXctqE4zGw0DP2tQxXT4.mft (raw, json)
Hash identifier: 0Ja07UoFXyC0EovJxcFFYTuiPSF6Ht3JDPLcV0EcLUc=
Subject key identifier: E1:57:E5:44:4D:31:5B:6D:E8:6D:29:64:D5:B5:11:7D:81:5F:FD:0C
Authority key identifier: E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
Certificate issuer: /CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Certificate serial: 0199FC58A204638C16419598B826B6A21547
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
Manifest number: 16DE
Signing time: Sun 19 Oct 2025 12:01:30 +0000
Manifest this update: Sun 19 Oct 2025 12:01:30 +0000
Manifest next update: Mon 20 Oct 2025 12:01:30 +0000
Files and hashes: 1: 4IZuWnxyXctqE4zGw0DP2tQxXT4.crl (hash: jTnaLz2J45FxLuQaFqh1KZB9MI+qV6JCoysiNe86rPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:a2:04:63:8c:16:41:95:98:b8:26:b6:a2:15:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Validity
Not Before: Oct 19 12:01:30 2025 GMT
Not After : Oct 20 12:01:30 2025 GMT
Subject: CN=e157e5444d315b6de86d2964d5b5117d815ffd0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4e:35:de:94:f2:39:c7:5e:e7:11:f8:d5:37:
a5:30:71:cf:93:f2:a4:ef:1a:a0:e3:e8:55:9a:0c:
45:07:7c:2a:a0:a7:67:59:10:c9:64:e9:1a:d7:11:
5c:70:d9:c6:fe:e6:76:22:16:52:f2:b3:82:3b:90:
83:e7:b1:2c:57:99:0c:f2:89:bf:e6:af:7e:ce:fb:
de:8d:18:c9:68:17:99:80:c9:1a:ed:70:69:05:ca:
4c:5f:fc:7f:71:93:07:cd:05:f7:16:fd:83:08:97:
22:64:0a:56:c7:10:5f:9e:92:ba:5e:87:c3:53:bc:
ea:ec:41:2d:f7:43:97:81:fa:ef:e2:16:eb:48:9c:
d0:2d:e0:0b:09:c0:12:3a:8f:16:1d:44:08:30:33:
70:a1:b7:aa:4b:64:6c:45:37:81:97:e6:9d:f2:04:
6b:b4:23:90:77:ed:de:2c:2e:d4:6e:2b:58:d6:97:
75:6c:3e:50:9c:a7:60:bb:5b:cd:ea:1f:15:70:d0:
1d:ee:58:8a:cc:ac:a6:48:00:a8:6e:a6:5f:77:58:
74:ed:b0:b7:09:79:78:19:56:b9:02:4a:dd:e8:58:
03:23:48:6f:78:0e:9e:ef:c5:36:95:56:4d:a4:35:
6b:e2:18:ac:de:13:33:6c:53:d1:28:6e:46:86:11:
59:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:57:E5:44:4D:31:5B:6D:E8:6D:29:64:D5:B5:11:7D:81:5F:FD:0C
X509v3 Authority Key Identifier:
keyid:E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:78:6f:59:30:bb:e5:dd:f1:6e:8a:ef:39:99:00:1a:2b:d3:
5d:e7:b4:46:9c:84:79:42:40:2a:e8:8d:25:0d:7f:f8:a1:19:
15:ed:ee:bd:d2:3a:d9:20:aa:61:12:6e:0b:ba:44:84:21:ec:
94:39:c4:ea:17:b9:08:aa:78:b8:5e:9c:eb:12:ad:e2:0d:51:
d4:38:fb:8a:de:86:6e:fd:40:e2:78:1c:52:6e:39:40:2b:e4:
b8:e1:46:a5:f1:64:47:9c:bd:84:93:ef:d7:fa:a1:d8:1d:a0:
11:09:b9:74:ab:31:8c:e9:21:b5:03:49:2f:ad:19:73:a8:d6:
40:d7:be:3b:65:02:3b:c5:a8:bb:fc:e6:9f:8a:a9:04:2d:ff:
b5:93:14:26:a7:36:fd:fb:72:7e:07:91:f9:6d:5b:bc:2c:90:
15:8a:fa:bc:05:05:c1:08:3b:0f:87:85:62:1b:b2:ff:9e:cb:
90:98:10:78:1b:14:3e:ce:ab:2f:e5:80:69:89:83:26:a2:13:
9f:35:2c:a9:fe:5a:41:af:22:63:90:c9:85:6c:f2:52:98:c3:
ba:54:cc:16:cc:3d:af:4d:44:8b:e5:de:b9:94:a9:1c:8c:6c:
d1:e4:e6:cd:c5:77:de:5d:44:43:05:db:c9:68:fb:6a:b6:f4:
f5:e2:04:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:53:35 2025 by rpki-client