Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
File: 4koD-A9i2oZjUuGZCZfx1GzrL7A.mft (raw, json)
Hash identifier: mcdfrbBA7r55KFEAxC4t4mkUlsRNfxE9SqCujQJ/HBo=
Subject key identifier: 6E:0A:42:F3:9F:8C:58:DC:1C:92:50:B7:A1:51:27:86:D5:18:35:98
Authority key identifier: E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
Certificate issuer: /CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Certificate serial: 0199228C76EBEE4B3F155BF44A8FA77900A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
Manifest number: 132E
Signing time: Sun 07 Sep 2025 05:00:54 +0000
Manifest this update: Sun 07 Sep 2025 05:00:54 +0000
Manifest next update: Mon 08 Sep 2025 05:00:54 +0000
Files and hashes: 1: 4koD-A9i2oZjUuGZCZfx1GzrL7A.crl (hash: YobN29ucucBZuaXulW4ioAikuGE7ol0WWY/QaukSMK0=)
2: _SDGNnpAJAI5c9TTproSlcDE1Ew.roa (hash: FWM2UQvUNqFuHmMAV7nZEdUtqbqVwiTq2Q2yh+QWjTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:76:eb:ee:4b:3f:15:5b:f4:4a:8f:a7:79:00:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e24a03f80f62da866352e1990997f1d46ceb2fb0
Validity
Not Before: Sep 7 05:00:54 2025 GMT
Not After : Sep 8 05:00:54 2025 GMT
Subject: CN=6e0a42f39f8c58dc1c9250b7a1512786d5183598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:73:91:8a:71:ec:9c:7b:7c:cc:d4:f8:f8:a0:
54:17:73:7f:76:88:2d:46:a4:6f:7b:8f:9d:82:40:
73:64:ca:14:57:d1:e4:f0:f4:07:52:d1:64:70:e9:
b2:4c:c1:f7:ad:3d:31:20:84:01:69:14:a7:76:e5:
a1:6d:b3:d7:43:52:97:94:b8:f8:2b:0d:f2:5a:6d:
b0:d4:a2:79:92:bc:61:34:f9:e5:cf:36:d5:de:be:
6b:6e:88:8f:a5:8f:82:82:17:18:1b:07:da:39:9b:
43:86:3a:af:5b:3f:af:01:f7:72:93:7d:79:1e:ec:
68:40:dc:6f:80:79:af:68:cd:4b:80:2a:1a:b5:36:
28:2f:bf:fd:8b:d5:bc:b0:88:65:fb:af:70:ee:fe:
63:79:f5:31:cf:bd:35:ed:b0:71:e6:01:7f:97:86:
19:cb:8e:2a:e0:1f:42:66:92:43:fc:1a:5e:4f:1c:
af:ce:fb:4e:64:80:1d:31:8f:6f:03:81:34:fe:4c:
00:87:35:00:30:9e:12:fb:9d:89:ad:d2:fe:da:4a:
bf:fd:91:16:56:ec:8e:a7:36:5b:3d:1e:b7:5c:94:
0e:42:08:45:14:08:cb:05:b1:e5:8c:bd:03:2c:8e:
0a:2c:f3:2e:28:9b:13:92:13:17:41:87:e2:19:c7:
0f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:0A:42:F3:9F:8C:58:DC:1C:92:50:B7:A1:51:27:86:D5:18:35:98
X509v3 Authority Key Identifier:
keyid:E2:4A:03:F8:0F:62:DA:86:63:52:E1:99:09:97:F1:D4:6C:EB:2F:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4koD-A9i2oZjUuGZCZfx1GzrL7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/540c5f-a2a2-44e4-9287-41b54500fdcf/1/4koD-A9i2oZjUuGZCZfx1GzrL7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:01:09:e7:20:99:94:e9:6d:a1:cf:58:5b:ed:96:82:1b:fd:
2e:c0:85:e5:36:90:8a:0a:7e:a2:d8:b8:a1:32:ea:d5:01:17:
b2:63:8d:23:6f:8a:9f:35:c4:f0:a1:bc:21:54:94:e5:f6:c4:
2d:cd:44:3e:b4:fb:78:d5:85:97:be:78:fe:23:3e:81:42:73:
89:a9:d3:68:e3:29:c5:86:a5:c9:8a:5c:4a:8a:8a:e4:0f:d8:
d8:42:4d:45:87:1b:d9:66:57:78:63:0b:29:f7:8f:bb:04:e4:
87:94:11:fa:5a:98:cd:14:13:3c:fc:6d:b6:cc:0f:c6:7a:b2:
48:19:1e:fc:85:78:6d:bb:b1:63:35:6e:8a:8b:42:4e:a4:f5:
f8:10:68:7e:4c:01:be:ed:04:64:26:19:d2:58:59:5e:6a:e3:
ed:94:58:13:f2:44:6d:c5:b9:84:28:1b:3e:2f:2e:c2:b5:ee:
f6:4b:6c:b9:cb:d3:7c:66:4d:ff:34:84:23:71:5c:53:7b:af:
27:66:48:48:c0:12:55:91:b3:04:12:d5:32:62:47:fb:58:8d:
8f:76:f7:d0:a0:2f:c1:4b:d0:27:ff:56:fb:ac:f3:b3:6d:82:
84:d7:66:19:27:d0:2e:74:f8:b1:64:65:77:5a:94:d4:d8:ee:
72:98:5e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:46:14 2025 by rpki-client