Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
File: 4kycUM9OLawF4fBDKCJOIKRgXXc.mft (raw, json)
Hash identifier: GXXpLCsmX1ThfQ+HQrUukNt405FkkStldpekhUiWUrY=
Subject key identifier: 11:C8:1F:82:6C:CC:A8:AF:20:3A:20:96:2C:6E:30:77:B6:0E:E0:73
Authority key identifier: E2:4C:9C:50:CF:4E:2D:AC:05:E1:F0:43:28:22:4E:20:A4:60:5D:77
Certificate issuer: /CN=e24c9c50cf4e2dac05e1f04328224e20a4605d77
Certificate serial: 0199FD6B1815C2C5111993B21FA53474FACE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
Manifest number: 0DCB
Signing time: Sun 19 Oct 2025 17:01:17 +0000
Manifest this update: Sun 19 Oct 2025 17:01:17 +0000
Manifest next update: Mon 20 Oct 2025 17:01:17 +0000
Files and hashes: 1: 4kycUM9OLawF4fBDKCJOIKRgXXc.crl (hash: GWy2wE6yhkV9KcIPjsF2PMCqWnhVIKEABvSwLxV7emI=)
2: nmDQ5sn6P7ecn55KSWAGIphgo6U.roa (hash: fC95GsgDpVAuW+5RC4Zgw8UvFD2E/5JtR14wL2gAYEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:18:15:c2:c5:11:19:93:b2:1f:a5:34:74:fa:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24c9c50cf4e2dac05e1f04328224e20a4605d77
Validity
Not Before: Oct 19 17:01:17 2025 GMT
Not After : Oct 20 17:01:17 2025 GMT
Subject: CN=11c81f826ccca8af203a20962c6e3077b60ee073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:81:34:28:68:2a:99:39:57:4e:e3:94:86:77:
de:6a:24:ac:40:5e:b5:1e:72:0d:56:fe:4f:cd:18:
0b:52:16:f4:df:58:14:0f:60:80:70:3e:43:24:22:
97:60:a1:99:29:cc:3f:5c:32:c0:7b:a6:88:5c:b5:
47:45:c3:9c:56:c0:6c:cc:72:99:67:ad:27:5d:66:
41:a3:6d:4e:ea:76:e3:2f:79:f7:a8:0c:d2:8a:a6:
82:57:fb:df:82:49:77:4e:97:71:ad:22:b2:16:5a:
5b:a8:ca:89:ba:c5:12:9c:44:41:1d:a5:ee:22:4e:
b6:3e:66:5b:bd:88:74:10:6f:1f:70:8d:a1:41:8e:
1d:46:ad:e6:c9:a3:c2:3b:ca:8f:e6:7b:1e:1d:88:
a0:8d:7f:90:31:4b:20:a1:13:7f:d5:50:bf:10:6a:
63:6d:db:d9:f6:80:cf:fc:9d:2a:f0:a7:9b:5a:58:
63:00:81:a0:49:a6:53:6a:c5:fe:5e:5f:81:5b:ec:
4a:4d:1c:11:69:f4:2b:48:3e:17:9f:25:49:45:9a:
98:1b:50:e9:76:2d:f3:9d:1d:0a:32:45:05:68:23:
01:99:3a:53:2a:61:b3:c7:0a:4b:6e:f8:3a:2d:8a:
1f:fd:26:94:b4:9b:0b:e3:43:a4:2e:36:55:93:f0:
ab:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:C8:1F:82:6C:CC:A8:AF:20:3A:20:96:2C:6E:30:77:B6:0E:E0:73
X509v3 Authority Key Identifier:
keyid:E2:4C:9C:50:CF:4E:2D:AC:05:E1:F0:43:28:22:4E:20:A4:60:5D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kycUM9OLawF4fBDKCJOIKRgXXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/317cc1-64c2-472e-914b-0bfb86884404/1/4kycUM9OLawF4fBDKCJOIKRgXXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:9d:3a:86:8e:51:ed:f4:84:27:17:f1:66:7a:ae:1d:c9:7f:
59:db:3f:fa:8f:97:25:e2:4d:d5:6e:71:54:82:82:a1:62:cc:
04:57:06:f5:55:b6:12:66:a5:b2:71:15:fc:04:ba:0c:ba:2d:
94:b1:53:bd:7c:56:32:a9:65:6b:28:fa:43:7b:63:0e:96:62:
4a:1b:81:87:9d:e7:a0:88:c8:09:7d:3c:e9:96:07:cd:3f:6b:
fc:c4:e8:07:bc:d4:e0:7c:3d:cd:e2:d9:c6:2b:ce:98:7b:dc:
88:81:88:80:1d:6a:5d:c5:e0:6a:ab:3e:e7:64:3b:9a:fb:e3:
ba:61:45:5b:40:41:dd:ba:1d:ca:bd:d6:ea:98:1f:4b:72:c4:
0a:5b:b5:b0:81:05:7f:d0:c6:b3:9c:66:63:a1:88:64:b9:8d:
4c:af:e0:1a:f9:53:a1:5a:74:8f:15:a2:47:ba:fd:11:54:6d:
36:3f:7e:62:ca:16:fb:c1:f4:92:e2:d3:7a:65:a8:94:84:33:
94:16:d4:fa:4d:80:53:48:3e:8e:5a:20:33:40:ad:22:7a:f1:
1d:1b:68:d6:15:ec:3e:31:96:7e:db:3b:a7:c5:56:f4:e7:6e:
a5:7a:6d:91:50:32:d6:67:9e:44:c9:20:ad:5d:a7:8b:73:1f:
c3:a5:ee:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:29:47 2025 by rpki-client