Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
File: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft (raw, json)
Hash identifier: txpfvn5L43NVsPeuZpqvrpPTB9k/b+dkALmYljnT644=
Subject key identifier: 2B:81:3C:D6:FF:6C:7E:CC:86:64:A2:DA:3B:27:9E:E6:9C:9E:15:26
Authority key identifier: E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
Certificate issuer: /CN=e1a323546484220cb402063380f4016369262acf
Certificate serial: 0198D54EB162BC5B88E5268B94BF3A7132DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
Manifest number: 098D
Signing time: Sat 23 Aug 2025 05:02:40 +0000
Manifest this update: Sat 23 Aug 2025 05:02:40 +0000
Manifest next update: Sun 24 Aug 2025 05:02:40 +0000
Files and hashes: 1: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl (hash: IN26pN50e78kHnI1ZhohM9cACTxZj9I/t9qGYBZGbN8=)
2: oLxnPDOjx34zqrjQ27ju_ZuWYV4.roa (hash: aFW6lgXJpeg0bmQI7iZHPliZcmK0ToNkD5OYtI2CIQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:b1:62:bc:5b:88:e5:26:8b:94:bf:3a:71:32:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1a323546484220cb402063380f4016369262acf
Validity
Not Before: Aug 23 05:02:40 2025 GMT
Not After : Aug 24 05:02:40 2025 GMT
Subject: CN=2b813cd6ff6c7ecc8664a2da3b279ee69c9e1526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:90:e4:5e:ef:40:ff:db:54:af:39:27:2e:84:
46:14:a8:38:8e:a9:78:cf:b0:1b:16:14:90:8d:e7:
8e:e6:7d:9d:45:df:fe:f5:2a:4b:97:55:f9:23:c7:
37:05:e6:1c:4b:d6:46:cd:c8:17:04:b4:51:df:ed:
75:5d:1c:95:c8:74:43:83:1a:3c:09:73:54:e3:57:
56:89:45:3d:fb:16:ee:f1:93:b8:4c:b3:fc:f5:f7:
59:73:59:a7:83:79:f9:a5:d4:60:e7:35:af:68:d3:
45:33:8b:27:43:c4:c5:d9:52:05:c8:73:ad:b1:e3:
12:1d:00:2b:e4:be:56:7a:1f:37:40:d0:7d:6d:86:
b8:69:44:52:98:f9:bc:bf:ca:2b:64:ea:b1:4d:4c:
49:3f:da:60:42:b9:fe:e2:2a:7f:19:b3:85:44:05:
09:1c:13:f2:5e:cc:ee:77:03:15:15:68:f2:d7:5d:
af:05:4b:39:9c:f6:20:a5:d9:ff:a0:71:a2:c7:b8:
62:11:10:1c:eb:6b:b2:be:43:45:fd:01:d5:2d:be:
97:c5:18:b8:21:02:d7:ce:63:1f:7d:cd:26:03:25:
0f:a8:55:49:4e:40:51:1a:01:04:e9:78:49:54:4d:
16:f7:7a:e5:e5:98:db:52:60:65:2e:96:6f:16:25:
1a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:81:3C:D6:FF:6C:7E:CC:86:64:A2:DA:3B:27:9E:E6:9C:9E:15:26
X509v3 Authority Key Identifier:
keyid:E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:ab:57:7d:41:5c:b3:d1:68:17:2e:1f:20:9b:b4:51:78:f8:
4e:2b:05:a2:89:ca:86:37:64:c2:b1:0a:f6:87:b9:fe:00:17:
ad:2a:fc:69:f3:3f:22:07:90:a7:d6:2d:aa:dd:10:f8:37:ad:
10:ac:27:2e:e8:75:5e:5f:cc:70:a2:bf:f7:22:b3:b5:a1:9b:
5a:61:95:f9:0c:8c:57:71:a2:28:a5:8f:cd:34:10:d1:d4:51:
ae:4d:f2:61:91:12:0b:f1:db:bb:4d:15:b4:20:19:e1:a8:0d:
bc:c2:cd:f6:1d:b1:f3:65:c5:01:0e:a3:b6:23:fa:ae:f5:87:
bd:94:48:9b:55:67:ac:01:5a:8e:05:54:20:e3:33:a5:78:60:
e9:af:ab:39:86:78:e7:70:f4:3c:4b:b9:04:52:16:1b:47:41:
98:5a:ee:14:47:de:53:68:ad:95:25:dd:4a:af:96:63:dd:77:
05:9d:8a:a0:02:c1:7c:ca:5b:7b:c7:12:44:82:b3:c5:7e:b7:
a2:2b:5e:b2:57:68:b6:17:d5:65:9a:9f:cf:0b:99:44:51:25:
b1:03:2b:ef:b4:2e:ad:c9:7c:d8:ff:bb:77:44:30:c7:74:50:
b3:dc:00:a4:49:a1:3e:bb:a2:fa:c1:86:29:ed:0b:d9:c4:06:
03:2f:b9:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTrFivFuI5SaLlL86cTLaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxYTMyMzU0NjQ4NDIyMGNiNDAyMDYzMzgwZjQwMTYzNjky
NjJhY2YwHhcNMjUwODIzMDUwMjQwWhcNMjUwODI0MDUwMjQwWjAzMTEwLwYDVQQD
EygyYjgxM2NkNmZmNmM3ZWNjODY2NGEyZGEzYjI3OWVlNjljOWUxNTI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoZDkXu9A/9tUrzknLoRGFKg4jql4
z7AbFhSQjeeO5n2dRd/+9SpLl1X5I8c3BeYcS9ZGzcgXBLRR3+11XRyVyHRDgxo8
CXNU41dWiUU9+xbu8ZO4TLP89fdZc1mng3n5pdRg5zWvaNNFM4snQ8TF2VIFyHOt
seMSHQAr5L5Weh83QNB9bYa4aURSmPm8v8orZOqxTUxJP9pgQrn+4ip/GbOFRAUJ
HBPyXszudwMVFWjy112vBUs5nPYgpdn/oHGix7hiERAc62uyvkNF/QHVLb6XxRi4
IQLXzmMffc0mAyUPqFVJTkBRGgEE6XhJVE0W93rl5ZjbUmBlLpZvFiUaHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCuBPNb/bH7MhmSi2jsnnuacnhUmMB8GA1UdIwQY
MBaAFOGjI1RkhCIMtAIGM4D0AWNpJirPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9kMjFkYTQtZjY1Yi00NTMxLTk3NmEt
OGVjMDYwNGU2OTI5LzEvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9kMjFkYTQtZjY1Yi00NTMxLTk3NmEtOGVjMDYwNGU2OTI5
LzEvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ6tXfUFc
s9FoFy4fIJu0UXj4TisFoonKhjdkwrEK9oe5/gAXrSr8afM/IgeQp9Ytqt0Q+Det
EKwnLuh1Xl/McKK/9yKztaGbWmGV+QyMV3GiKKWPzTQQ0dRRrk3yYZESC/Hbu00V
tCAZ4agNvMLN9h2x82XFAQ6jtiP6rvWHvZRIm1VnrAFajgVUIOMzpXhg6a+rOYZ4
53D0PEu5BFIWG0dBmFruFEfeU2itlSXdSq+WY913BZ2KoALBfMpbe8cSRIKzxX63
oitesldothfVZZqfzwuZRFElsQMr77Qurcl82P+7d0Qwx3RQs9wApEmhPrui+sGG
Ke0L2cQGAy+5Tg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:21 2025 by rpki-client