Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier: jgBWsKP58Tv3HIETeLsyADLMezggRH+wB7xBmVxiCIg=
Subject key identifier: 7D:F9:97:0A:15:AC:84:05:6C:0A:8B:C5:30:FF:35:00:75:DE:4D:E0
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 019923A0D835F0329FC71283129C3CAE73C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number: 13BA
Signing time: Sun 07 Sep 2025 10:02:47 +0000
Manifest this update: Sun 07 Sep 2025 10:02:47 +0000
Manifest next update: Mon 08 Sep 2025 10:02:47 +0000
Files and hashes: 1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: l/Cy5AyNSuTvlrKL/pbZlnttNYRCPGgRheT3PHlMf24=)
2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:d8:35:f0:32:9f:c7:12:83:12:9c:3c:ae:73:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Sep 7 10:02:47 2025 GMT
Not After : Sep 8 10:02:47 2025 GMT
Subject: CN=7df9970a15ac84056c0a8bc530ff350075de4de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:54:b6:8f:cf:23:07:b6:22:e5:15:ea:93:e6:
b3:89:b5:55:4c:94:f2:86:1d:11:3d:af:be:04:13:
9e:b5:38:d3:4d:23:7d:a6:2b:d3:a3:0b:d8:ed:fc:
23:87:d6:59:87:7b:3f:15:97:b6:f8:8a:bb:04:d7:
c0:4b:22:b0:d7:61:b4:22:ce:25:a2:9e:63:3a:56:
96:b7:58:2c:8f:fe:c0:78:ec:f3:79:b5:e2:24:70:
c2:a5:94:e9:34:90:5e:ea:d2:92:1f:06:d8:34:32:
fb:83:0f:66:9a:87:d4:46:c7:9f:0a:3b:5b:72:4d:
56:be:4c:0b:fe:b3:66:45:b2:db:70:75:3d:7a:5e:
a5:0b:91:77:f9:42:3e:33:dc:3c:33:2e:40:52:85:
6f:3b:7d:ff:f7:8e:30:8e:77:6f:87:09:e2:fe:00:
7b:51:4f:77:9e:32:6f:71:41:df:35:a6:ee:9c:86:
5e:2e:5d:f7:78:7f:25:05:e6:f4:60:93:38:c0:ca:
4a:44:5d:b4:d5:44:98:67:52:e9:42:f4:b0:d3:b2:
98:66:d6:4d:32:2b:e7:f3:aa:8f:12:70:4d:2a:fd:
0d:66:05:89:bb:4a:68:e8:9c:3f:f6:3c:7f:b8:78:
dd:84:8e:d8:a1:42:1c:8a:21:06:f6:20:79:f3:88:
29:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F9:97:0A:15:AC:84:05:6C:0A:8B:C5:30:FF:35:00:75:DE:4D:E0
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:d8:d2:54:15:11:64:e1:bc:06:65:96:b9:6c:f2:c0:2e:c2:
20:06:d8:f7:d4:50:77:b4:de:76:73:eb:0a:04:17:07:ed:63:
a9:33:ce:53:de:22:ad:2a:e8:cd:d8:0c:16:0f:5c:3d:14:51:
3e:7d:0e:15:2c:ea:06:da:a3:27:b6:19:c0:ff:7b:6c:20:38:
43:13:77:19:8e:93:51:d4:97:29:89:33:47:cf:68:c9:7e:cd:
e1:95:e3:86:61:43:c5:c0:ca:fd:92:3f:9b:aa:32:aa:5c:9a:
63:37:69:b2:84:d9:91:3a:34:93:05:a9:f9:62:8c:55:05:ed:
49:32:d4:3c:95:59:fe:8b:d7:08:b3:b9:70:41:fb:dd:2e:96:
7c:3a:e0:ee:86:6d:1b:81:54:fe:15:71:c6:a8:7a:6d:b0:63:
ec:68:f6:ba:9d:78:37:c2:49:82:1a:ad:31:c7:a9:8b:35:52:
e3:b7:e4:c6:f8:79:23:b8:51:8a:e9:fc:cf:b4:eb:7e:d7:fb:
95:e5:a9:6c:06:41:56:2f:6c:49:36:bd:de:c0:42:59:cf:90:
69:41:f4:7a:c2:3c:0d:b3:a9:49:02:a7:0c:5d:2b:4a:33:a0:
c0:51:16:0b:f9:17:97:62:0c:bb:83:81:4f:76:87:35:21:c4:
e4:d7:3c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:20:54 2025 by rpki-client