Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
File: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft (raw, json)
Hash identifier: RNhiQEatilpmhRY1I9R0H79MwAM0hCmrKjcabULL2SM=
Subject key identifier: C6:D9:FB:98:68:16:09:E3:8E:09:61:B6:BC:13:6E:C3:49:05:C4:D4
Authority key identifier: E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
Certificate issuer: /CN=e1a323546484220cb402063380f4016369262acf
Certificate serial: 0199FCC6701BF3114C3CBAA8ECFF438F119A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
Manifest number: 0A26
Signing time: Sun 19 Oct 2025 14:01:27 +0000
Manifest this update: Sun 19 Oct 2025 14:01:27 +0000
Manifest next update: Mon 20 Oct 2025 14:01:27 +0000
Files and hashes: 1: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl (hash: omkB/z9ae1FWmJUF7O6q9qssn06AANEKWdwU6V2MADc=)
2: oLxnPDOjx34zqrjQ27ju_ZuWYV4.roa (hash: aFW6lgXJpeg0bmQI7iZHPliZcmK0ToNkD5OYtI2CIQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:70:1b:f3:11:4c:3c:ba:a8:ec:ff:43:8f:11:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1a323546484220cb402063380f4016369262acf
Validity
Not Before: Oct 19 14:01:27 2025 GMT
Not After : Oct 20 14:01:27 2025 GMT
Subject: CN=c6d9fb98681609e38e0961b6bc136ec34905c4d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:12:eb:f4:df:68:b3:26:af:c4:97:c5:c2:
86:87:df:3f:dc:ca:9f:ae:f9:3b:5a:95:c1:7f:68:
15:41:fe:02:e7:96:44:bd:1a:97:c9:9a:3d:69:78:
1d:0c:a3:e2:49:7b:eb:0f:25:f8:b8:6b:5f:e7:e0:
0f:81:21:34:6c:da:24:15:ae:ac:22:1b:7e:ea:06:
fc:f6:a8:0b:d6:b9:5f:f2:b5:fc:ec:bc:0f:c5:0f:
d5:86:b4:c7:d9:da:66:48:34:84:55:15:ab:bd:15:
08:f2:e7:42:13:b4:a3:91:9d:b7:be:40:56:61:4f:
d7:84:07:e5:8d:5c:46:eb:fe:0a:37:fa:c6:09:71:
da:36:b1:b3:62:18:4a:77:c2:3b:9c:1c:cb:6a:6f:
08:a4:ad:ef:b6:69:20:cc:c1:89:a1:1f:57:66:de:
5b:9a:87:68:03:06:ae:bb:57:02:83:1e:76:77:19:
10:fb:72:b9:27:e9:f3:9e:90:9e:12:34:06:f3:d7:
04:47:f5:22:51:40:2e:1f:59:aa:e6:c3:70:18:7d:
c9:05:33:bd:68:f8:59:5a:6c:85:83:d1:a8:01:74:
c6:9a:da:f8:98:14:fc:d1:55:c9:86:d0:fd:c3:f8:
e7:3c:bd:d6:a9:b2:56:cb:96:36:50:50:e4:04:f0:
b1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D9:FB:98:68:16:09:E3:8E:09:61:B6:BC:13:6E:C3:49:05:C4:D4
X509v3 Authority Key Identifier:
keyid:E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:57:1f:4b:3e:d8:e6:15:92:dc:85:7b:44:9f:1f:d2:73:a2:
f0:93:20:96:4a:51:12:c2:ab:7e:55:bc:bc:d2:b7:23:b9:fa:
39:4c:e1:c3:09:bc:65:dd:dc:dd:ae:db:1e:76:a9:69:31:c8:
0f:40:47:f2:27:11:58:46:f7:01:18:bc:86:70:88:e1:db:82:
9d:90:70:78:b3:d2:92:58:7f:be:e8:69:fb:65:0c:5d:29:dd:
03:c8:dd:b2:b9:b2:fe:7f:e7:68:cf:19:95:40:4e:0b:20:ca:
fd:62:66:b5:b1:38:d4:64:dc:3c:b6:0b:f5:5d:c0:c7:c2:a4:
20:e3:d0:64:c3:f2:16:57:74:57:06:a0:b8:cd:57:2a:05:b0:
03:bc:17:e0:5e:0c:1d:1b:5c:95:5a:66:c1:43:74:9d:ee:01:
0c:4e:0a:1a:db:21:b1:c0:77:f9:51:1e:57:d9:11:a0:21:2d:
ad:48:7f:95:66:45:41:c1:6e:7c:72:f8:a7:eb:8f:90:33:8c:
a8:74:ff:59:5e:0a:a4:c7:0d:f4:84:29:07:53:84:d6:c2:d1:
65:02:7d:aa:76:9a:d1:a3:b7:a4:48:3e:30:a7:05:63:3b:d4:
9e:b5:cd:aa:63:42:3b:f4:78:9f:79:47:fc:d8:d4:14:ab:c8:
44:f0:84:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xnAb8xFMPLqo7P9DjxGaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxYTMyMzU0NjQ4NDIyMGNiNDAyMDYzMzgwZjQwMTYzNjky
NjJhY2YwHhcNMjUxMDE5MTQwMTI3WhcNMjUxMDIwMTQwMTI3WjAzMTEwLwYDVQQD
EyhjNmQ5ZmI5ODY4MTYwOWUzOGUwOTYxYjZiYzEzNmVjMzQ5MDVjNGQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoN8S6/TfaLMmr8SXxcKGh98/3Mqf
rvk7WpXBf2gVQf4C55ZEvRqXyZo9aXgdDKPiSXvrDyX4uGtf5+APgSE0bNokFa6s
Iht+6gb89qgL1rlf8rX87LwPxQ/VhrTH2dpmSDSEVRWrvRUI8udCE7SjkZ23vkBW
YU/XhAfljVxG6/4KN/rGCXHaNrGzYhhKd8I7nBzLam8IpK3vtmkgzMGJoR9XZt5b
modoAwauu1cCgx52dxkQ+3K5J+nznpCeEjQG89cER/UiUUAuH1mq5sNwGH3JBTO9
aPhZWmyFg9GoAXTGmtr4mBT80VXJhtD9w/jnPL3WqbJWy5Y2UFDkBPCxiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMbZ+5hoFgnjjglhtrwTbsNJBcTUMB8GA1UdIwQY
MBaAFOGjI1RkhCIMtAIGM4D0AWNpJirPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9kMjFkYTQtZjY1Yi00NTMxLTk3NmEt
OGVjMDYwNGU2OTI5LzEvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9kMjFkYTQtZjY1Yi00NTMxLTk3NmEtOGVjMDYwNGU2OTI5
LzEvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxVcfSz7Y
5hWS3IV7RJ8f0nOi8JMglkpREsKrflW8vNK3I7n6OUzhwwm8Zd3c3a7bHnapaTHI
D0BH8icRWEb3ARi8hnCI4duCnZBweLPSklh/vuhp+2UMXSndA8jdsrmy/n/naM8Z
lUBOCyDK/WJmtbE41GTcPLYL9V3Ax8KkIOPQZMPyFld0VwaguM1XKgWwA7wX4F4M
HRtclVpmwUN0ne4BDE4KGtshscB3+VEeV9kRoCEtrUh/lWZFQcFufHL4p+uPkDOM
qHT/WV4KpMcN9IQpB1OE1sLRZQJ9qnaa0aO3pEg+MKcFYzvUnrXNqmNCO/R4n3lH
/NjUFKvIRPCE5g==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:09 2025 by rpki-client