Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
File: tK4oip3bDvUKKUs8rpY-FHycfck.mft (raw, json)
Hash identifier: ioIytlW5eKgWyWuoYXL9i7IJBk/iXfBL+kIB7HzWH40=
Subject key identifier: 4E:70:DA:B4:C8:F6:E8:2E:8C:DC:7F:F2:4F:C1:E9:58:16:66:81:18
Authority key identifier: B4:AE:28:8A:9D:DB:0E:F5:0A:29:4B:3C:AE:96:3E:14:7C:9C:7D:C9
Certificate issuer: /CN=b4ae288a9ddb0ef50a294b3cae963e147c9c7dc9
Certificate serial: 0198D7735822D899FEFCA20A22A389988F10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 15:01:57 +0000
Manifest this update: Sat 23 Aug 2025 15:01:57 +0000
Manifest next update: Sun 24 Aug 2025 15:01:57 +0000
Files and hashes: 1: tK4oip3bDvUKKUs8rpY-FHycfck.crl (hash: MZmW9+9V44wcaFSxqEHApB9Rbl+CeW2OQeiJKjiK36M=)
2: u16TB_X_VEL7--qGdSVXn8Zs3wY.roa (hash: m8sRTErDjjsLnDtgYn9w7y6plArnvxsTKmxxZwh54Fs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:58:22:d8:99:fe:fc:a2:0a:22:a3:89:98:8f:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4ae288a9ddb0ef50a294b3cae963e147c9c7dc9
Validity
Not Before: Aug 23 15:01:57 2025 GMT
Not After : Aug 24 15:01:57 2025 GMT
Subject: CN=4e70dab4c8f6e82e8cdc7ff24fc1e95816668118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8f:9e:4d:a7:4c:a5:09:5c:24:88:a2:44:93:
12:cd:7d:5c:ca:bf:7b:29:e1:9a:6c:53:1a:e7:a3:
da:82:4c:ee:18:70:56:be:73:ea:d9:47:c1:ad:ff:
9f:1d:ba:a6:5f:45:b8:ec:93:d4:eb:a7:e0:03:c4:
e7:28:75:1f:cc:58:90:36:79:ff:f6:b6:7f:fa:c6:
10:b8:20:29:c0:37:40:df:18:d5:8f:03:13:34:ea:
06:75:ec:00:25:3a:25:0b:21:16:5b:91:a0:3e:a2:
b6:59:48:79:67:88:68:28:28:06:42:84:a4:1e:ad:
75:82:a0:3d:80:08:81:1b:24:f6:f5:ff:11:44:8e:
20:50:d3:9b:29:59:9d:5f:fb:b8:96:81:82:ae:cf:
32:b6:cf:3b:5c:89:72:97:22:d0:44:dd:9a:68:6d:
58:05:0a:8f:3e:53:f4:ee:c3:91:8a:17:9e:50:96:
63:93:d9:e2:1d:4f:97:f8:de:e9:20:29:6b:5f:2b:
a1:e5:28:cb:6e:a1:7a:91:b5:d8:17:2c:28:01:78:
31:78:2e:d9:46:39:1f:c6:ff:a3:7e:13:e3:21:74:
9d:6e:01:a5:74:b8:ef:27:12:2f:ef:be:41:50:e3:
d6:ae:65:3d:5e:bb:c1:2b:ca:cf:3d:f1:d8:5b:c1:
23:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:70:DA:B4:C8:F6:E8:2E:8C:DC:7F:F2:4F:C1:E9:58:16:66:81:18
X509v3 Authority Key Identifier:
keyid:B4:AE:28:8A:9D:DB:0E:F5:0A:29:4B:3C:AE:96:3E:14:7C:9C:7D:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:30:71:66:7e:d8:91:26:16:8c:8c:df:a1:13:2d:66:9d:12:
c0:05:f8:88:7a:e3:ea:6c:d0:ff:ce:b2:39:75:4d:ee:3a:0f:
67:59:b1:92:e5:e0:a3:eb:00:fd:6e:6d:04:83:9b:31:f0:b1:
9e:72:02:06:aa:ac:9a:97:50:c6:f5:ca:da:dc:76:47:d2:95:
d1:04:11:e3:cc:80:a7:05:eb:f2:bb:3b:30:ca:f7:5b:3b:2a:
c1:43:21:c8:4d:72:f4:16:e6:c9:bb:46:fc:de:11:ea:47:fa:
aa:25:c9:70:2e:fd:86:7a:a6:85:ce:8f:26:68:b9:19:38:24:
68:65:c9:dc:29:44:c1:1e:4d:14:04:ea:b8:bb:b6:77:b9:0a:
fe:44:ca:26:3f:bb:02:ca:a2:8b:1e:de:a4:dc:87:fa:1a:f9:
13:af:e3:2b:bc:98:dc:71:1d:df:72:48:27:75:0a:f1:27:de:
a8:11:06:c3:2f:ca:ad:cc:83:d1:56:a1:38:a2:77:c3:3b:be:
52:d2:97:53:8f:46:a4:c6:05:ae:c8:14:da:95:2f:a1:09:84:
b8:4d:d6:8c:ea:70:43:77:a5:d9:2d:78:75:77:fa:58:2a:ef:
09:a2:a9:97:12:0e:8f:bf:9c:ab:24:9b:c2:d8:ff:07:33:84:
35:d2:3f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:30:20 2025 by rpki-client