Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json)
Hash identifier: Di/of2Vhxkuf4i4jyi7K+ja7gQ89QhoP6nJ4noxpMwg=
Subject key identifier: 5B:D8:FF:1A:AF:E8:C9:3A:92:0C:43:BC:27:E8:B9:05:CB:E4:79:D3
Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903
Certificate serial: 019A2B8CB472113FF6E42C1610407358CE7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
Manifest number: 0FB5
Signing time: Tue 28 Oct 2025 16:00:32 +0000
Manifest this update: Tue 28 Oct 2025 16:00:32 +0000
Manifest next update: Wed 29 Oct 2025 16:00:32 +0000
Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: 9R3e0wsdM1dInw7HvGLMA+TohAOGVoV3+dxq7UiKFcA=)
2: ZTmydTpXIXh_aFM6lIMP1nPGi4M.roa (hash: R6dO91YPQTwtwZipE8GfozYF7WvWuk+GMp9DghrSYmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2b:8c:b4:72:11:3f:f6:e4:2c:16:10:40:73:58:ce:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2834429775e6555e5742492286254b1da9f1903
Validity
Not Before: Oct 28 16:00:32 2025 GMT
Not After : Oct 29 16:00:32 2025 GMT
Subject: CN=5bd8ff1aafe8c93a920c43bc27e8b905cbe479d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a8:20:65:1e:19:e5:b2:0b:b9:a7:29:24:55:
52:3c:57:aa:42:ac:f5:3f:69:9f:05:de:55:24:f8:
4b:b5:3a:9f:ec:5a:03:7f:4f:16:bc:c6:fd:62:58:
fc:d5:33:f6:58:9f:91:4b:d1:93:31:03:13:13:19:
8c:b9:98:cb:22:a6:f5:8e:88:1e:06:e7:4c:10:06:
e1:00:57:62:03:db:4d:55:c7:12:4b:38:dc:b0:84:
ec:6d:07:81:11:7f:9b:4d:6b:14:9c:c8:4e:64:32:
5b:c5:97:95:6e:eb:b8:d9:15:43:3c:24:1d:ea:02:
18:fc:bf:a5:eb:69:67:b9:f1:14:9d:b2:22:1b:d2:
e7:25:29:da:94:f0:e6:5b:bc:30:39:79:68:d3:e1:
12:6c:d2:f5:1d:3d:7d:9f:73:7c:7a:fe:4d:c4:3e:
09:33:73:64:3d:44:11:69:39:f3:7d:cd:2c:21:2d:
ed:b9:35:b5:54:0c:af:85:63:41:e2:26:e9:14:62:
43:3b:c6:fd:cc:40:51:28:dd:c7:79:93:cd:c8:10:
48:ec:84:d0:13:57:92:df:e6:37:57:a1:11:1e:7e:
e4:25:ce:62:be:62:44:73:94:0c:90:d5:35:d0:46:
f4:89:e7:d5:6d:95:2d:59:93:0c:e0:4e:0e:4b:e9:
c0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D8:FF:1A:AF:E8:C9:3A:92:0C:43:BC:27:E8:B9:05:CB:E4:79:D3
X509v3 Authority Key Identifier:
keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:0f:3c:8b:31:3a:87:8c:41:ba:5b:86:11:c6:11:53:80:59:
03:02:92:b9:8c:25:4c:23:11:7c:88:f6:60:49:c9:c3:9c:9e:
17:56:53:f3:57:48:a8:a5:12:bf:18:b8:54:52:81:2a:00:c9:
3a:61:88:04:48:88:34:7d:e3:ca:e8:25:d4:bf:26:33:8f:bd:
1c:55:08:84:7f:03:21:5f:8a:5c:8d:63:22:b0:17:dc:b5:36:
64:1b:e3:38:78:da:f1:42:5c:c0:86:51:f2:7c:66:65:91:31:
71:94:14:da:bd:db:ab:15:7d:b7:7a:fb:a0:5b:0c:84:21:e6:
c3:8e:3d:5a:de:b0:48:b0:01:d4:f0:64:79:12:6c:f5:90:8f:
73:53:c3:a6:e5:ac:55:ff:fb:9e:08:df:c2:bd:a6:36:73:2d:
07:c5:81:a1:a5:55:b5:49:0e:e4:6c:19:e4:09:d2:df:28:12:
92:1a:22:99:fc:a9:d8:b4:35:f9:2c:5f:62:2f:88:e8:ba:79:
d2:b9:d9:b3:7b:20:f5:2d:d2:37:bc:01:17:3b:6d:01:6f:cb:
a9:21:2d:3f:97:bc:19:5a:e9:99:b1:02:2a:30:46:9b:9a:a4:
96:48:3b:7b:d6:a9:0b:d9:44:e0:71:f2:31:33:59:60:53:7e:
3b:db:73:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 19:04:10 2025 by rpki-client