Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
File: 4kycUM9OLawF4fBDKCJOIKRgXXc.mft (raw, json)
Hash identifier: AyB7h1fk0vXDyt4ycUmVG//Ygs2jCje+PeyMnM0C2uw=
Subject key identifier: 5B:14:B8:B3:88:70:17:EC:50:11:9A:83:B7:C5:F3:41:65:9D:89:B0
Authority key identifier: E2:4C:9C:50:CF:4E:2D:AC:05:E1:F0:43:28:22:4E:20:A4:60:5D:77
Certificate issuer: /CN=e24c9c50cf4e2dac05e1f04328224e20a4605d77
Certificate serial: 0198D73ADAEAFE77365AC618112D703C7D0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
Manifest number: 0D32
Signing time: Sat 23 Aug 2025 14:00:15 +0000
Manifest this update: Sat 23 Aug 2025 14:00:15 +0000
Manifest next update: Sun 24 Aug 2025 14:00:15 +0000
Files and hashes: 1: 4kycUM9OLawF4fBDKCJOIKRgXXc.crl (hash: SRX0AjBCC2e4mteIFVMsOtMYE3Y0PEWH1IfJFwaCJkw=)
2: Q3-HdEPCyjZHl-Sg4_PuJRYIuT8.roa (hash: XEPQxkckVuIQ5rwgxJmegps237sKjQ4AEXFUBlmNa1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3a:da:ea:fe:77:36:5a:c6:18:11:2d:70:3c:7d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24c9c50cf4e2dac05e1f04328224e20a4605d77
Validity
Not Before: Aug 23 14:00:15 2025 GMT
Not After : Aug 24 14:00:15 2025 GMT
Subject: CN=5b14b8b3887017ec50119a83b7c5f341659d89b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0e:65:5f:0f:9b:8c:e1:8c:44:53:a4:58:27:
d4:15:49:bd:be:a0:20:5d:42:94:42:a5:d1:c5:c9:
c8:b7:24:2f:8a:14:78:e0:39:b7:f4:f8:98:16:5b:
93:44:3e:42:7c:54:06:3f:4a:bf:95:b8:13:8a:18:
f5:88:6e:5b:60:b9:e7:be:99:f7:9e:17:10:f5:7f:
68:d3:6f:c3:86:45:aa:a9:7c:63:04:c2:75:08:08:
ed:d6:32:66:66:47:5e:c3:6c:91:03:f4:3d:7d:17:
01:54:a1:da:c3:52:0e:f8:25:3c:fb:d5:06:74:b8:
f9:27:f1:20:66:de:e2:e4:a8:5f:58:0b:07:3b:a9:
69:db:40:d5:08:17:92:67:32:38:fb:ed:7a:29:29:
3e:ee:89:c1:31:9e:cf:77:37:0f:5e:a3:81:48:75:
40:24:d5:f9:65:36:be:fd:f3:f2:41:bd:9d:52:b8:
12:32:08:fd:4a:b3:a4:7b:f1:a1:ee:31:90:b1:15:
64:fd:43:93:0d:1d:8f:ec:e8:c5:6a:ef:ef:a4:a4:
6f:07:22:ed:17:8c:85:be:77:9f:a7:90:44:cc:91:
df:8a:57:03:bd:e2:4f:7c:a8:ed:b0:e8:e1:9a:aa:
e2:49:39:b0:9c:01:a4:24:46:ab:3a:b5:0e:22:2b:
5c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:14:B8:B3:88:70:17:EC:50:11:9A:83:B7:C5:F3:41:65:9D:89:B0
X509v3 Authority Key Identifier:
keyid:E2:4C:9C:50:CF:4E:2D:AC:05:E1:F0:43:28:22:4E:20:A4:60:5D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:5b:66:90:32:91:85:3e:90:10:8e:e6:90:15:db:d0:f0:e7:
3e:a9:b4:3b:bb:d3:a3:1e:f9:be:39:33:41:53:e1:bb:b2:3b:
69:b0:3c:7f:2a:c4:7d:8d:a7:31:b1:2a:38:36:98:c2:fc:54:
d4:c4:2d:75:b4:f2:ea:04:3d:f8:36:ea:70:dd:52:29:c6:5f:
3f:f7:06:e7:a8:8e:42:9e:1c:af:59:2c:f8:82:70:34:bf:16:
ed:d7:07:7e:7c:aa:80:7e:2f:77:df:92:d7:e8:a7:f3:ca:41:
29:96:16:70:41:d1:f5:1d:5a:fd:13:19:c7:e1:67:13:bf:9c:
7a:f0:8c:2b:a2:d5:10:de:34:5a:00:ee:62:d9:8e:31:7e:49:
0a:58:46:07:b7:20:a3:b3:cc:b7:bb:94:a3:8b:5f:2d:28:fd:
fc:9b:f6:ef:22:0e:22:3c:8b:2c:92:4c:c4:75:f8:fb:24:2f:
74:e1:37:7a:84:68:02:04:98:df:57:9e:46:b7:b9:4c:53:5a:
33:e9:63:d2:de:26:6e:ff:b6:05:04:d1:33:7c:7d:53:de:e7:
07:83:f1:f3:0b:7b:a0:42:62:c5:48:eb:67:6f:6f:37:e2:a5:
1f:d4:fd:28:d5:af:3e:8e:4f:bc:45:06:96:f5:07:eb:e4:b8:
91:1a:f6:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:19:15 2025 by rpki-client