Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
File: 4sFE7jL911AT5_G4wtgH09rti74.mft (raw, json)
Hash identifier: zeTkSMNIUFxPvt6qRN5kvQ7J6MjNnPxojY/3v53hHHo=
Subject key identifier: E6:11:40:BF:7C:49:C6:DA:E5:80:5D:CE:C3:B3:A1:E1:91:3D:60:1D
Authority key identifier: E2:C1:44:EE:32:FD:D7:50:13:E7:F1:B8:C2:D8:07:D3:DA:ED:8B:BE
Certificate issuer: /CN=e2c144ee32fdd75013e7f1b8c2d807d3daed8bbe
Certificate serial: 019A70A56668FB67FF20E6BB483874CDDCA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sFE7jL911AT5_G4wtgH09rti74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 02:01:19 +0000
Manifest this update: Tue 11 Nov 2025 02:01:19 +0000
Manifest next update: Wed 12 Nov 2025 02:01:19 +0000
Files and hashes: 1: 4sFE7jL911AT5_G4wtgH09rti74.crl (hash: iJzBQ1By2KsJhJl2G+MTElobCe46RxypZpAVFUn5dio=)
2: at7Oxyqw1YSxEoUOaW5RKvIjf0s.roa (hash: yOhpw2razZhrT29WlGA/CY3Yi3Lil58jkjnW17t8rig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
rsync://rpki.ripe.net/repository/DEFAULT/4sFE7jL911AT5_G4wtgH09rti74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:66:68:fb:67:ff:20:e6:bb:48:38:74:cd:dc:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c144ee32fdd75013e7f1b8c2d807d3daed8bbe
Validity
Not Before: Nov 11 02:01:19 2025 GMT
Not After : Nov 12 02:01:19 2025 GMT
Subject: CN=e61140bf7c49c6dae5805dcec3b3a1e1913d601d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e9:35:5d:6e:6a:1d:45:63:e3:17:48:d6:71:
e0:ac:fc:e0:de:bd:1c:ba:cc:9c:b8:cc:22:23:35:
ef:03:82:d9:1c:d4:c4:af:35:c9:59:c3:74:2b:64:
4b:60:da:8c:b9:65:93:4b:e0:82:be:ed:db:e8:64:
84:6e:64:b0:e5:c5:75:d1:1c:34:1e:e4:90:97:46:
4e:00:1f:c3:b0:1f:55:02:da:cf:bb:73:6a:f6:88:
48:7c:1c:27:ac:f8:95:21:da:18:0e:dd:51:2d:06:
18:98:82:1b:58:54:37:d4:b5:85:48:09:16:39:ef:
c5:da:4a:2c:65:17:da:05:3a:06:2a:20:30:24:bd:
2a:13:1f:0c:41:2c:e5:63:01:cd:49:0f:8b:19:53:
92:71:98:5b:75:02:1f:5d:b7:fc:bd:fd:5d:a7:c5:
a6:c3:04:e7:7f:f9:a7:d3:cc:ea:04:7d:64:72:af:
4f:fc:95:cf:6f:14:29:1a:8a:df:ed:a1:4f:c7:7d:
f8:e6:fa:55:11:68:38:89:86:3f:01:a1:b6:2e:17:
da:50:f3:ea:ea:93:30:18:91:16:07:b1:ac:a5:86:
93:6d:6e:42:d0:a3:31:a3:3c:b0:97:a3:1a:19:67:
34:dd:9a:d1:2b:1f:46:8f:09:15:28:aa:8d:67:a2:
53:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:11:40:BF:7C:49:C6:DA:E5:80:5D:CE:C3:B3:A1:E1:91:3D:60:1D
X509v3 Authority Key Identifier:
keyid:E2:C1:44:EE:32:FD:D7:50:13:E7:F1:B8:C2:D8:07:D3:DA:ED:8B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sFE7jL911AT5_G4wtgH09rti74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ab:63:c2:bd:a0:bf:09:75:dc:3b:93:fa:30:4e:fb:c0:13:
1d:4b:2b:a0:44:8f:1d:66:cd:83:36:d2:7b:ef:7b:16:97:ef:
df:c5:67:37:5c:a5:91:66:f6:52:f9:54:ab:0c:6d:69:2b:52:
1d:25:7d:ce:43:f1:08:67:f6:cb:01:b3:03:92:ae:84:34:62:
25:aa:ac:58:40:89:d5:2c:71:29:c2:be:17:6b:72:00:67:92:
f0:e1:37:c0:5e:1d:f1:31:2e:09:bc:08:f6:4e:6e:50:1a:52:
aa:fb:90:95:51:6b:34:a4:ba:5e:6b:3e:72:d3:25:f3:07:0e:
bb:85:92:39:50:61:41:e3:f4:87:ec:94:77:c7:e1:de:61:21:
15:fb:1f:c0:82:72:08:90:d2:97:76:d2:c3:cd:7c:83:74:79:
82:e3:58:40:a9:bf:e7:fc:db:e4:84:d2:77:50:2b:ec:e4:de:
7f:6f:c0:90:d6:16:91:84:eb:9d:81:c5:b4:27:03:4f:3c:cb:
9f:5e:b5:4b:b1:47:3f:2b:d5:b0:45:ef:27:15:2f:93:dd:42:
ac:81:58:0b:4b:2c:e0:94:92:00:dd:68:fb:de:ec:5a:85:8a:
e6:6b:34:02:2d:8e:a0:96:75:f6:f6:ca:7e:1b:97:1b:68:88:
39:b4:7a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:48 2025 by rpki-client