Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier: GUmrhcZLivwsHnKM5Q8i0dqh1Ukyfhhqfx6NWZJrZdI=
Subject key identifier: 90:60:E3:6F:75:28:3A:65:FF:39:16:FA:9B:6C:5D:5C:A4:03:D1:62
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 019A71B933D00B9F3CC753237D9ECFB4C634
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number: 1467
Signing time: Tue 11 Nov 2025 07:02:34 +0000
Manifest this update: Tue 11 Nov 2025 07:02:34 +0000
Manifest next update: Wed 12 Nov 2025 07:02:34 +0000
Files and hashes: 1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: +e2EhuvlvoBO9pct8ewYUb15GMHn3bcEnbo1wTdXgl4=)
2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:33:d0:0b:9f:3c:c7:53:23:7d:9e:cf:b4:c6:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Nov 11 07:02:34 2025 GMT
Not After : Nov 12 07:02:34 2025 GMT
Subject: CN=9060e36f75283a65ff3916fa9b6c5d5ca403d162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:59:0e:2e:09:f4:ea:87:e7:46:3d:a3:05:65:
bb:d5:c1:45:01:aa:fe:87:96:36:3e:91:08:9e:f3:
9f:c2:90:eb:07:58:02:79:e1:e7:c4:1c:1c:29:bc:
f6:56:b7:01:5f:d5:12:1d:50:ee:52:0a:dc:fa:00:
05:d5:dc:d2:3b:6e:0e:0e:00:4c:70:c5:68:8f:b2:
fe:1d:36:7b:9b:70:62:64:18:ae:dd:7f:4f:d6:b7:
d8:a1:49:2d:fb:78:9b:ed:86:77:cb:c0:62:7f:7a:
2e:53:0f:4e:e0:29:55:4f:08:40:e7:73:80:3f:15:
d6:72:01:6b:92:95:92:4d:90:78:bb:e2:9d:c7:48:
e1:39:eb:40:e8:67:56:1e:0d:ce:54:09:32:c2:b1:
20:1e:d4:a7:d6:1c:12:95:06:54:b8:b0:d1:bd:8f:
78:18:67:18:23:59:29:f2:97:a5:1c:be:bc:46:7f:
64:58:5f:fb:40:16:c6:a9:d8:d1:47:40:7b:d8:bd:
27:59:01:0a:ce:d3:48:29:cb:48:4a:aa:01:7b:fb:
a2:03:6d:b0:e9:53:f6:98:d2:53:ae:f5:bb:1b:ae:
ad:28:0a:e3:79:d8:44:6e:c4:16:3a:c5:2f:21:83:
dd:d6:a0:5c:51:71:88:4c:1c:e5:fd:5d:42:7a:5a:
e8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:60:E3:6F:75:28:3A:65:FF:39:16:FA:9B:6C:5D:5C:A4:03:D1:62
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:f3:db:f8:d8:f8:d3:84:ca:e4:38:e3:cf:ea:45:c4:d7:5f:
01:b2:5a:8c:9e:b8:89:5a:32:88:7e:d0:41:19:80:0a:e3:eb:
e0:6c:f0:da:bb:89:c9:73:30:39:a0:05:ea:c7:1c:44:4c:c1:
53:33:14:fe:cb:aa:2e:a6:6d:2f:d6:4c:cb:9e:52:8d:41:6c:
c7:3a:b4:a6:c1:c8:1f:2f:21:02:12:0d:bc:2a:c1:64:85:c7:
d5:36:0d:73:37:99:83:2e:81:17:71:3a:9e:1c:da:e2:fa:b8:
b7:7e:6a:64:91:ab:d4:99:b2:74:46:1c:7e:22:9a:7e:b4:53:
8a:c8:4f:95:d6:27:ff:fa:e2:41:62:dc:5a:2a:cc:a9:95:15:
0c:89:52:6e:19:bc:e8:b9:83:cd:be:da:59:19:c3:32:2b:4b:
3a:62:18:51:21:dc:66:4c:c8:83:11:12:04:74:96:98:ba:ee:
b3:a2:1f:8a:3a:b4:47:23:ac:a5:19:09:ac:9b:ea:c0:94:c6:
7d:05:4b:03:2c:db:44:66:74:13:7f:66:40:c9:84:cf:d0:a7:
8e:f9:08:82:18:fb:60:61:bd:b6:ba:e7:c2:88:8a:a9:dc:66:
69:01:9e:1e:d4:7d:52:b3:6b:d1:d7:8d:af:b7:55:aa:5b:c7:
95:6b:3c:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:16:17 2025 by rpki-client