Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
File: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft (raw, json)
Hash identifier: ghizIoRABZAHOg36swFzY3FdDDLDeeJPcTgNIqSLiyI=
Subject key identifier: 3B:C6:24:BF:FA:81:07:9D:03:B3:74:EB:3F:41:10:12:44:38:58:AB
Authority key identifier: 7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
Certificate issuer: /CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Certificate serial: 0199240DAC82E838C7E409E02A8F6F308BBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
Manifest number: 02A0
Signing time: Sun 07 Sep 2025 12:01:39 +0000
Manifest this update: Sun 07 Sep 2025 12:01:39 +0000
Manifest next update: Mon 08 Sep 2025 12:01:39 +0000
Files and hashes: 1: XIAriGwKiXIV89XyokuVSU6ok94.roa (hash: hF3zC1oiW03gwgTs9lo/n7vUmEiv8dfR/NI1cnnwuzk=)
2: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl (hash: jKA3uLb/XIeQBh+dnHHt1sEUdh7CUmOJyR1sitRBGOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:ac:82:e8:38:c7:e4:09:e0:2a:8f:6f:30:8b:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Validity
Not Before: Sep 7 12:01:39 2025 GMT
Not After : Sep 8 12:01:39 2025 GMT
Subject: CN=3bc624bffa81079d03b374eb3f411012443858ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:04:e9:ac:16:65:a6:58:25:d5:3a:dc:25:ca:
c9:6d:c5:8b:f8:7e:80:7b:33:98:79:c6:32:cc:02:
44:cc:8d:17:7f:a1:1a:32:9f:20:61:8c:ec:fa:6e:
bb:d1:a8:59:40:9b:47:01:45:8b:5b:31:9d:37:a9:
5e:ea:67:ee:11:db:48:81:d0:51:46:9e:17:11:cc:
11:8c:c8:0f:3f:0b:ad:ee:d5:79:73:f7:25:4b:eb:
e1:90:8d:d4:56:dd:c1:b3:87:4e:e2:7e:42:68:d0:
ae:96:24:c9:6f:08:c0:35:28:e5:a8:75:1d:96:1c:
4b:61:2f:e6:4e:1e:3d:6b:92:cf:c2:57:8a:90:49:
90:11:5d:4d:74:5c:22:6d:84:55:a2:3c:fa:8b:7e:
65:ec:38:29:06:d3:91:8c:45:a0:7a:2f:e2:90:c7:
4d:a6:31:88:c3:20:46:74:5b:fc:5c:80:6f:da:25:
7a:ad:d0:ed:aa:55:a0:38:96:87:32:18:e1:01:dc:
3e:5a:3b:28:e1:3b:9d:4a:7f:bf:df:c4:ba:98:36:
fd:d6:50:4d:6d:e9:c9:79:d1:35:a6:a6:34:4e:46:
c1:02:7d:10:01:fd:43:95:fa:2a:ea:55:43:99:5d:
87:fa:fe:56:b7:ed:6f:4a:53:d2:95:92:6c:93:c2:
79:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C6:24:BF:FA:81:07:9D:03:B3:74:EB:3F:41:10:12:44:38:58:AB
X509v3 Authority Key Identifier:
keyid:7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:50:7c:8b:71:6b:99:db:46:00:7a:f9:42:4c:f4:dc:bf:9d:
1b:3f:b3:4f:40:00:1f:72:9e:28:df:c9:19:96:36:0a:2b:3c:
0b:76:27:42:85:dc:3e:13:f8:04:b5:6d:fd:ad:9c:66:eb:63:
9a:86:62:14:6f:3d:56:66:84:bc:f0:ea:fc:0f:77:43:54:fd:
3a:97:86:db:bc:9b:04:70:82:50:15:79:0b:c4:c7:5e:e2:cc:
28:23:df:5e:8f:f4:85:91:70:57:60:cc:96:d1:d1:13:cb:d1:
8c:a5:cb:18:7c:b0:79:e0:a5:2b:15:d2:14:4e:7d:30:25:f0:
83:f7:ec:b1:70:d4:bc:3d:d4:70:77:25:a6:ad:0f:8e:85:8b:
67:62:f9:68:c1:a1:f7:53:15:c2:f0:62:8b:5c:16:44:fd:7c:
11:bd:ea:bc:a3:6b:70:9c:92:7a:c7:6f:39:c7:8d:7a:22:d6:
5c:71:43:92:71:08:8f:93:50:58:db:73:60:ab:fd:33:3a:4d:
ca:48:24:5c:c2:ef:26:49:6f:07:82:21:b1:15:7e:a7:84:71:
c7:e6:52:84:cc:11:a9:8e:05:56:a5:13:c4:eb:8e:c3:55:f4:
89:f6:86:46:27:3b:c1:c1:ef:d9:74:c7:24:d5:2d:7f:fb:5b:
fa:12:1c:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkkDayC6DjH5AngKo9vMIu/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmODVlOTkwMzU0Mzk3ZTM2YzBjYTkwM2EwYzYyMGM3NzA5
ZWZkY2QwHhcNMjUwOTA3MTIwMTM5WhcNMjUwOTA4MTIwMTM5WjAzMTEwLwYDVQQD
EygzYmM2MjRiZmZhODEwNzlkMDNiMzc0ZWIzZjQxMTAxMjQ0Mzg1OGFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ATprBZlplgl1TrcJcrJbcWL+H6A
ezOYecYyzAJEzI0Xf6EaMp8gYYzs+m670ahZQJtHAUWLWzGdN6le6mfuEdtIgdBR
Rp4XEcwRjMgPPwut7tV5c/clS+vhkI3UVt3Bs4dO4n5CaNCuliTJbwjANSjlqHUd
lhxLYS/mTh49a5LPwleKkEmQEV1NdFwibYRVojz6i35l7DgpBtORjEWgei/ikMdN
pjGIwyBGdFv8XIBv2iV6rdDtqlWgOJaHMhjhAdw+Wjso4TudSn+/38S6mDb91lBN
benJedE1pqY0TkbBAn0QAf1Dlfoq6lVDmV2H+v5Wt+1vSlPSlZJsk8J5awIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDvGJL/6gQedA7N06z9BEBJEOFirMB8GA1UdIwQY
MBaAFH+F6ZA1Q5fjbAypA6DGIMdwnv3NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS80YWUxNzUtNTVkMC00ODRkLThkMTEt
OGM5ZDU4MjNiYWQ5LzEvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS80YWUxNzUtNTVkMC00ODRkLThkMTEtOGM5ZDU4MjNiYWQ5
LzEvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAVB8i3Fr
mdtGAHr5Qkz03L+dGz+zT0AAH3KeKN/JGZY2Cis8C3YnQoXcPhP4BLVt/a2cZutj
moZiFG89VmaEvPDq/A93Q1T9OpeG27ybBHCCUBV5C8THXuLMKCPfXo/0hZFwV2DM
ltHRE8vRjKXLGHyweeClKxXSFE59MCXwg/fssXDUvD3UcHclpq0PjoWLZ2L5aMGh
91MVwvBii1wWRP18Eb3qvKNrcJySesdvOceNeiLWXHFDknEIj5NQWNtzYKv9MzpN
ykgkXMLvJklvB4IhsRV+p4Rxx+ZShMwRqY4FVqUTxOuOw1X0ifaGRic7wcHv2XTH
JNUtf/tb+hIcWA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:42:02 2025 by rpki-client