Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json)
Hash identifier: mpPj41i+oI5XeKUgV7I75nv5hWfDIYcrwEd6uFzaX6k=
Subject key identifier: 8B:35:A2:46:1E:E5:99:94:81:28:5D:F7:AB:3A:35:29:A2:6A:AE:8F
Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Certificate serial: 0199FD6B478B22D7B53E2399C2D0CC6C59A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
Manifest number: 0F77
Signing time: Sun 19 Oct 2025 17:01:30 +0000
Manifest this update: Sun 19 Oct 2025 17:01:30 +0000
Manifest next update: Mon 20 Oct 2025 17:01:30 +0000
Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: thtYmjHiGAmzeJRGjYSAdoJLspeV4CW0OSISkARLHmk=)
2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:47:8b:22:d7:b5:3e:23:99:c2:d0:cc:6c:59:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9
Validity
Not Before: Oct 19 17:01:30 2025 GMT
Not After : Oct 20 17:01:30 2025 GMT
Subject: CN=8b35a2461ee5999481285df7ab3a3529a26aae8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:95:f0:8a:76:31:00:6b:eb:80:3b:97:d8:88:
f6:35:47:9e:4a:4d:47:df:1f:cd:6b:6e:ce:27:0b:
e7:e7:21:41:f3:54:18:31:34:c6:0a:c0:14:df:6e:
4a:0d:4e:fe:64:e1:22:8f:08:d5:e5:c2:90:5f:07:
90:aa:42:77:98:d4:64:60:c0:b9:64:70:e4:24:5b:
dc:ab:8e:0c:11:ba:6a:81:29:ba:a8:5c:94:e6:3d:
e5:fd:8b:ed:a9:bf:01:d4:2b:72:6f:7b:db:90:1c:
ba:bc:31:00:df:9d:a9:ea:c0:cf:6a:cb:4a:c1:67:
79:d0:d4:f5:ee:e8:56:e2:22:d9:ed:1f:67:15:2d:
1e:3e:f3:84:b5:c4:48:39:04:0a:36:81:27:89:8e:
a8:af:db:73:b1:6a:ee:5e:c0:9c:8e:79:54:2b:4c:
21:6c:d5:22:0b:1c:a6:71:08:ae:79:3b:fe:46:b2:
3f:d7:8a:67:54:0d:cb:3a:d5:2e:a6:36:28:ad:74:
6a:85:cd:f7:f0:2f:dc:e2:81:dc:9c:0e:79:0b:9d:
ec:03:17:58:94:fa:e3:0f:1d:0a:0d:d6:23:84:97:
1c:f8:0d:ae:94:66:82:24:86:60:08:18:60:bf:af:
66:b5:80:2d:e3:e6:fc:91:e8:6f:e0:c7:f2:8a:ed:
44:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:35:A2:46:1E:E5:99:94:81:28:5D:F7:AB:3A:35:29:A2:6A:AE:8F
X509v3 Authority Key Identifier:
keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:21:3b:fa:19:c7:fc:aa:97:9e:8c:45:16:4d:a0:f0:65:70:
e4:54:41:d5:1b:14:a2:1a:6d:91:83:ae:5a:36:ba:b0:7a:01:
6e:2c:15:2f:e9:0f:ea:7a:07:c9:7d:ba:a7:52:f4:48:8b:a7:
7f:88:83:f4:7f:4d:99:06:4f:b0:a8:11:08:4d:ed:50:63:2d:
41:d1:ba:16:d3:23:ce:e9:98:ea:aa:7c:99:2d:b6:a1:97:d1:
c5:86:1a:59:d9:76:97:75:e4:79:0e:f5:fa:21:24:36:05:99:
34:93:4d:55:a2:fa:89:77:8c:62:54:2b:0f:a2:27:09:4f:3a:
40:96:fe:36:da:7b:d9:c4:b9:f7:31:b4:2a:81:b8:ed:f7:2d:
bf:81:b5:21:61:c0:a0:66:af:7c:71:75:6b:da:a4:24:b9:b1:
1f:de:0e:64:c8:32:66:48:f3:96:3b:c3:6c:81:51:f3:83:37:
a1:20:66:ed:2f:47:9f:c8:d7:1f:ac:72:3a:40:c4:50:38:a1:
87:e9:64:5b:48:fb:cc:32:30:ae:db:c1:cd:a2:d7:39:a2:02:
bf:52:44:df:9e:a2:3e:f0:fa:c2:e8:72:9d:6f:ea:7f:12:f0:
c1:1d:ae:3f:39:1e:69:f5:59:0f:de:09:17:d1:09:74:87:25:
1d:00:ca:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:50 2025 by rpki-client