Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
File: 4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft (raw, json)
Hash identifier: jjoYSShqI58pyyncT++E/C1H8Hk2LDbzPEsLoa0NY7U=
Subject key identifier: 31:49:35:3D:76:04:36:88:27:AA:89:A8:52:E5:2B:CF:30:68:AB:D7
Authority key identifier: E0:39:64:9F:AA:8F:9D:E3:DA:E9:1B:E7:99:A2:7E:2C:A6:62:87:89
Certificate issuer: /CN=e039649faa8f9de3dae91be799a27e2ca6628789
Certificate serial: 019A7225AC9596C20F1A892DCEA870282633
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
Manifest number: 1725
Signing time: Tue 11 Nov 2025 09:01:02 +0000
Manifest this update: Tue 11 Nov 2025 09:01:02 +0000
Manifest next update: Wed 12 Nov 2025 09:01:02 +0000
Files and hashes: 1: 4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl (hash: cmNfVqvfXnkhkPX67NUChdBPtRwIZXv71TTypjGY2Qg=)
2: nvFWMlN4X92KRkvOxX78tU9AiMU.roa (hash: Cawdk3ecA0ugRKq4sCsh7iIYZI6bpAW5VK6MQOdmMWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:ac:95:96:c2:0f:1a:89:2d:ce:a8:70:28:26:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e039649faa8f9de3dae91be799a27e2ca6628789
Validity
Not Before: Nov 11 09:01:02 2025 GMT
Not After : Nov 12 09:01:02 2025 GMT
Subject: CN=3149353d7604368827aa89a852e52bcf3068abd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f7:91:26:56:74:6b:e6:f5:8d:bf:ba:d4:9b:
80:0a:47:19:c9:c7:c6:57:b8:0a:da:45:06:37:56:
71:dd:7e:45:3d:fe:b1:27:06:e8:38:48:a0:56:4c:
a7:45:b6:57:fa:19:be:3f:09:73:9f:e4:fc:3e:5d:
ad:85:4b:9c:64:46:6a:5d:40:51:6b:ab:d9:e4:e6:
4c:9d:3b:c5:0d:3c:2b:cb:47:42:27:5e:38:8b:09:
0d:8e:6c:24:c2:6d:c0:fe:79:3e:a6:38:13:02:eb:
e4:a7:c3:98:28:6f:97:9f:f8:73:30:63:59:96:20:
53:99:db:fc:90:80:1f:35:e7:37:4b:d0:c1:dc:6c:
43:f8:02:27:27:b4:9f:e8:7a:ae:ee:c7:0b:8d:0e:
97:0e:99:ba:e8:be:ee:84:da:6f:b4:fe:9e:a9:62:
dc:0a:34:7a:31:c6:5f:21:2a:b5:5b:63:ab:50:ea:
cd:75:fb:8a:75:bd:b6:bb:13:ad:4f:8d:25:a5:e6:
5b:6d:1f:47:f4:17:f3:5e:91:69:8f:b3:24:e6:43:
28:56:f4:22:cd:25:79:14:de:df:d7:b9:66:4c:e4:
5a:11:ea:9a:dc:a7:00:94:ed:8e:05:b6:6f:2d:1e:
76:51:be:85:6c:a6:5f:27:ca:38:e7:da:75:69:f0:
c3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:49:35:3D:76:04:36:88:27:AA:89:A8:52:E5:2B:CF:30:68:AB:D7
X509v3 Authority Key Identifier:
keyid:E0:39:64:9F:AA:8F:9D:E3:DA:E9:1B:E7:99:A2:7E:2C:A6:62:87:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Dlkn6qPnePa6RvnmaJ-LKZih4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/2eface-d0a3-4339-8068-d7678a0787d1/1/4Dlkn6qPnePa6RvnmaJ-LKZih4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:d1:f7:56:9a:37:6b:60:a8:2b:b4:c7:98:25:01:55:0a:86:
ca:25:b8:11:be:73:63:3b:55:35:80:0c:79:96:af:e8:38:18:
47:63:ae:37:b1:b1:23:4d:ea:d3:7b:c9:8f:f6:ba:9f:09:18:
9a:ce:a4:eb:81:6f:8f:d9:a9:1d:9c:f4:c1:41:4e:74:08:b1:
90:68:98:55:46:68:0b:f5:22:17:e4:46:10:0c:dd:cb:d3:6b:
a1:6c:01:a5:b4:74:e8:f9:a6:0e:53:1c:85:6b:b4:9a:2f:36:
ee:9c:70:ed:72:00:27:0d:f3:ce:32:55:1d:87:49:3c:c2:c5:
a5:aa:ca:f7:51:07:a3:20:0c:33:c4:37:fb:23:2c:55:9b:4f:
fc:fe:26:ec:f3:f5:41:fb:f1:f0:d4:79:aa:56:83:5d:71:43:
c9:b7:f1:a4:94:ae:35:e5:73:2e:8f:57:06:f3:91:8a:71:dd:
81:07:94:dd:a0:46:84:2e:6e:3d:e8:eb:af:bd:a4:f7:f0:e6:
f1:48:52:82:28:bf:51:cb:ac:01:be:d9:72:e7:f8:56:df:f0:
45:89:81:62:c6:1b:14:08:e8:70:96:0e:46:94:70:e9:5f:5a:
7d:aa:ba:65:82:f8:ea:33:1e:1b:9e:8c:8e:f7:8b:5b:25:d7:
26:59:c6:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyJayVlsIPGoktzqhwKCYzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwMzk2NDlmYWE4ZjlkZTNkYWU5MWJlNzk5YTI3ZTJjYTY2
Mjg3ODkwHhcNMjUxMTExMDkwMTAyWhcNMjUxMTEyMDkwMTAyWjAzMTEwLwYDVQQD
EygzMTQ5MzUzZDc2MDQzNjg4MjdhYTg5YTg1MmU1MmJjZjMwNjhhYmQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/eRJlZ0a+b1jb+61JuACkcZycfG
V7gK2kUGN1Zx3X5FPf6xJwboOEigVkynRbZX+hm+Pwlzn+T8Pl2thUucZEZqXUBR
a6vZ5OZMnTvFDTwry0dCJ144iwkNjmwkwm3A/nk+pjgTAuvkp8OYKG+Xn/hzMGNZ
liBTmdv8kIAfNec3S9DB3GxD+AInJ7Sf6Hqu7scLjQ6XDpm66L7uhNpvtP6eqWLc
CjR6McZfISq1W2OrUOrNdfuKdb22uxOtT40lpeZbbR9H9BfzXpFpj7Mk5kMoVvQi
zSV5FN7f17lmTORaEeqa3KcAlO2OBbZvLR52Ub6FbKZfJ8o459p1afDDiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDFJNT12BDaIJ6qJqFLlK88waKvXMB8GA1UdIwQY
MBaAFOA5ZJ+qj53j2ukb55mifiymYoeJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNERsa242cVBuZVBhNlJ2bm1hSi1MS1ppaDRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8yZWZhY2UtZDBhMy00MzM5LTgwNjgt
ZDc2NzhhMDc4N2QxLzEvNERsa242cVBuZVBhNlJ2bm1hSi1MS1ppaDRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8yZWZhY2UtZDBhMy00MzM5LTgwNjgtZDc2NzhhMDc4N2Qx
LzEvNERsa242cVBuZVBhNlJ2bm1hSi1MS1ppaDRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwNH3Vpo3
a2CoK7THmCUBVQqGyiW4Eb5zYztVNYAMeZav6DgYR2OuN7GxI03q03vJj/a6nwkY
ms6k64Fvj9mpHZz0wUFOdAixkGiYVUZoC/UiF+RGEAzdy9NroWwBpbR06PmmDlMc
hWu0mi827pxw7XIAJw3zzjJVHYdJPMLFparK91EHoyAMM8Q3+yMsVZtP/P4m7PP1
Qfvx8NR5qlaDXXFDybfxpJSuNeVzLo9XBvORinHdgQeU3aBGhC5uPejrr72k9/Dm
8UhSgii/UcusAb7Zcuf4Vt/wRYmBYsYbFAjocJYORpRw6V9afaq6ZYL46jMeG56M
jveLWyXXJlnGqg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:15:54 2025 by rpki-client