Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
File: 4sFE7jL911AT5_G4wtgH09rti74.mft (raw, json)
Hash identifier: tIO+CaFLw1BpOKeeuI0+XPgonn9bA5na2/nDRzJcokA=
Subject key identifier: 1E:22:96:B6:5D:D6:36:03:09:90:28:32:99:9B:BF:17:F7:4C:DF:45
Authority key identifier: E2:C1:44:EE:32:FD:D7:50:13:E7:F1:B8:C2:D8:07:D3:DA:ED:8B:BE
Certificate issuer: /CN=e2c144ee32fdd75013e7f1b8c2d807d3daed8bbe
Certificate serial: 019933EDE673EE820E1F07A35D989B811918
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sFE7jL911AT5_G4wtgH09rti74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
Manifest number: 167A
Signing time: Wed 10 Sep 2025 14:00:52 +0000
Manifest this update: Wed 10 Sep 2025 14:00:52 +0000
Manifest next update: Thu 11 Sep 2025 14:00:52 +0000
Files and hashes: 1: 4sFE7jL911AT5_G4wtgH09rti74.crl (hash: U7opqsdyKcG867lPxCtQDS3ZpuzH+IsElOd6rAZCZTk=)
2: at7Oxyqw1YSxEoUOaW5RKvIjf0s.roa (hash: yOhpw2razZhrT29WlGA/CY3Yi3Lil58jkjnW17t8rig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
rsync://rpki.ripe.net/repository/DEFAULT/4sFE7jL911AT5_G4wtgH09rti74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 14:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:ed:e6:73:ee:82:0e:1f:07:a3:5d:98:9b:81:19:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c144ee32fdd75013e7f1b8c2d807d3daed8bbe
Validity
Not Before: Sep 10 14:00:52 2025 GMT
Not After : Sep 11 14:00:52 2025 GMT
Subject: CN=1e2296b65dd6360309902832999bbf17f74cdf45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7e:24:d1:ec:ba:4b:2f:32:21:4e:33:6f:85:
c7:21:0f:f6:ce:e2:1f:46:4a:a5:d0:fe:5a:c9:fe:
a7:ce:f7:e7:b3:4b:da:08:93:81:14:04:63:4d:03:
31:90:55:ba:2d:7e:19:b4:a7:46:1f:e1:70:dd:3c:
ac:52:54:47:ff:d4:fe:dd:19:e0:1a:4c:9f:4d:19:
d0:3f:b4:b4:27:fb:e1:78:e1:88:bb:eb:2f:0b:ae:
28:14:cd:82:b1:72:9d:c8:bd:1e:9f:07:81:20:28:
4a:39:1a:cc:bf:aa:5f:87:aa:54:3d:2d:3b:82:41:
88:a0:59:90:39:f5:42:fb:14:a8:1d:40:52:3c:47:
2b:29:d8:46:11:67:d3:43:24:1c:2f:1b:c4:05:4a:
f1:6c:79:58:4f:f5:24:6f:0e:73:9a:bd:ca:0a:34:
ae:7c:ba:78:e5:08:45:b6:8f:ed:86:54:15:54:2f:
75:a9:bc:29:5f:68:62:2d:8f:10:ab:a6:12:19:6b:
1d:52:23:9b:db:16:ef:4e:3c:17:de:bb:18:89:4f:
57:bd:ad:b6:fd:6c:32:77:9d:59:0a:57:fd:62:38:
63:fb:d3:00:4d:a8:06:5b:45:c6:bc:95:3e:ab:c1:
35:a0:f5:35:e2:27:f1:b5:df:ba:cd:66:22:c2:dd:
0c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:22:96:B6:5D:D6:36:03:09:90:28:32:99:9B:BF:17:F7:4C:DF:45
X509v3 Authority Key Identifier:
keyid:E2:C1:44:EE:32:FD:D7:50:13:E7:F1:B8:C2:D8:07:D3:DA:ED:8B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sFE7jL911AT5_G4wtgH09rti74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/59e14e-415f-401a-adce-e1df45980c78/1/4sFE7jL911AT5_G4wtgH09rti74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:7f:94:88:17:8f:4d:6b:f7:c4:ea:6a:92:f7:e9:ae:06:2e:
46:08:68:f4:99:6f:c2:fe:3a:4a:99:ea:dc:87:80:ac:6e:d1:
c4:57:8b:a1:16:ab:91:32:29:ce:22:74:01:6c:f5:90:ab:df:
2d:6c:6e:c8:ca:7f:49:c6:09:b5:cb:16:a1:1a:68:3f:ca:c0:
75:72:c3:63:7a:15:67:57:11:f0:70:14:92:91:b2:c0:7c:11:
75:1d:05:5b:fc:ed:e0:c6:fd:cf:de:ce:a3:3f:1f:e9:26:cf:
43:a6:11:3b:d7:a5:23:e4:8b:47:13:72:26:35:6f:11:0d:4f:
74:a9:9d:c5:ac:92:60:82:2a:de:27:05:03:64:91:81:c1:67:
5e:b3:00:74:67:17:94:1b:e4:de:03:92:86:55:46:e2:d3:bb:
83:b9:16:c2:54:0d:43:04:c2:cf:2e:1d:53:cb:04:dc:5d:75:
67:04:12:12:27:f3:fe:c9:62:8b:08:7c:4a:83:6c:d4:12:e7:
24:a7:ba:6f:3b:a7:9a:c2:84:6f:79:9f:a2:58:51:56:22:20:
75:64:f4:41:45:83:ca:4b:0c:6b:16:71:e8:09:89:9f:a5:11:
00:18:8d:ec:9f:e8:2b:0a:8f:c1:a1:2a:67:a7:a8:68:9b:54:
c5:57:0d:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 23:31:07 2025 by rpki-client