Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
File: 4HG570GlOChYzZ7vmKf7nRJqpK4.mft (raw, json)
Hash identifier: IMapap7DjRh+eatEHvDzt46+flUbVvOoKDttyimAY/Y=
Subject key identifier: F0:A7:AE:3A:75:98:1C:84:2B:76:8B:50:70:A4:60:37:B0:77:98:7B
Authority key identifier: E0:71:B9:EF:41:A5:38:28:58:CD:9E:EF:98:A7:FB:9D:12:6A:A4:AE
Certificate issuer: /CN=e071b9ef41a5382858cd9eef98a7fb9d126aa4ae
Certificate serial: 0199FBEB2BDCA98A9F041B6A0F94C5E806F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
Manifest number: 040B
Signing time: Sun 19 Oct 2025 10:01:57 +0000
Manifest this update: Sun 19 Oct 2025 10:01:57 +0000
Manifest next update: Mon 20 Oct 2025 10:01:57 +0000
Files and hashes: 1: 4HG570GlOChYzZ7vmKf7nRJqpK4.crl (hash: ncJ7TSF0Q7RR0lXNJq49vIRpcAAcJltVpGsNXYGvIng=)
2: YBfLAkuYURNDoMTvjD2hLc0uuNc.roa (hash: gM7Y+qrK9OGNkcbA31bQAYiigRBUM5Di4cIR3nOhPM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:2b:dc:a9:8a:9f:04:1b:6a:0f:94:c5:e8:06:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e071b9ef41a5382858cd9eef98a7fb9d126aa4ae
Validity
Not Before: Oct 19 10:01:57 2025 GMT
Not After : Oct 20 10:01:57 2025 GMT
Subject: CN=f0a7ae3a75981c842b768b5070a46037b077987b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:80:b5:38:be:59:7c:c5:75:b1:d4:ef:6a:ff:
cd:be:b9:d4:0c:b7:95:ac:59:64:57:fe:9b:2f:e8:
bf:c4:e1:34:dc:c1:88:18:4f:f3:f0:d0:88:47:e6:
e6:d3:9a:de:d6:69:51:06:9f:a7:0b:d4:52:cc:17:
b2:e1:ce:8a:3a:d2:2c:7e:d9:0d:7c:90:45:2a:15:
e9:1d:e6:5e:b5:b3:0c:1b:31:d3:72:00:05:c1:e3:
39:92:d7:24:fe:71:43:c5:44:26:00:b0:51:c0:25:
2d:90:5d:3a:33:cd:14:5f:0b:e8:fe:46:53:b2:3a:
85:8f:3d:3a:4c:78:10:3b:d3:84:1b:9a:bb:ee:09:
2f:64:f8:44:82:55:b5:b9:c4:8d:b7:6c:fb:f8:60:
1b:7c:af:05:62:73:cc:21:6d:e9:59:48:a5:50:d2:
fe:07:79:29:01:49:d8:0d:46:fb:c2:be:5a:64:71:
e2:d6:17:1f:d6:ec:ad:aa:99:30:64:b3:21:0a:89:
a7:47:9e:f3:e5:97:8e:e6:63:48:bd:23:76:05:ba:
39:0c:1b:d7:fe:9b:f2:1f:94:31:7d:72:ee:5f:73:
d1:b1:40:11:71:5b:22:f5:57:24:b9:17:7d:0c:6d:
e6:19:e4:6b:a4:d0:dc:3e:24:8f:1c:72:55:cd:2e:
38:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A7:AE:3A:75:98:1C:84:2B:76:8B:50:70:A4:60:37:B0:77:98:7B
X509v3 Authority Key Identifier:
keyid:E0:71:B9:EF:41:A5:38:28:58:CD:9E:EF:98:A7:FB:9D:12:6A:A4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4HG570GlOChYzZ7vmKf7nRJqpK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/b81460-e06c-4352-ab1b-bb380bcabd28/1/4HG570GlOChYzZ7vmKf7nRJqpK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:95:fc:be:c8:ce:66:48:46:21:b3:20:32:66:c6:88:9c:36:
59:03:fe:31:52:94:17:76:35:9a:a1:9b:a4:07:46:08:6c:a9:
97:ab:54:f0:4b:49:f5:9d:62:57:99:07:70:32:2f:67:1e:87:
44:52:bd:80:b7:d6:fd:46:5f:68:86:20:57:2c:f6:c5:b8:c0:
56:97:ca:78:b1:9e:a2:43:9d:12:02:3b:a2:17:d2:6b:4e:e2:
6d:d6:96:6e:ea:1e:1f:02:37:0c:04:f2:8e:fb:f0:0c:12:9e:
d8:db:76:9b:84:6f:b2:01:84:82:ee:a8:b1:fd:e1:ea:5e:97:
c4:f6:a3:8b:bd:e8:1b:4d:4b:72:a6:71:5b:a0:1f:15:62:9f:
5d:c2:a7:fb:99:32:59:1e:f7:49:6e:95:c3:27:29:4e:e6:b9:
c4:b2:7f:ad:af:d9:f4:62:62:13:8e:33:a8:bc:33:68:97:06:
c7:01:fb:75:65:aa:53:b7:30:c8:88:53:0b:1e:76:54:9f:51:
8b:30:bd:00:24:02:53:e6:47:bd:e0:c0:b5:88:c1:bc:91:44:
19:e6:20:a5:13:ce:ae:58:01:70:c3:c8:86:93:9c:8c:07:0b:
3a:1b:d2:06:46:2f:24:77:9f:94:2b:3d:6b:4a:82:52:91:33:
e2:ee:3b:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:48 2025 by rpki-client