Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
File: 4rvHBn-KfFfWhtZ160aOmbhr1i0.mft (raw, json)
Hash identifier: HEmy+zhjPC7NuYf0IgQc9yeHznzVLBhEOB4uB0CyDUg=
Subject key identifier: F2:C6:49:E4:9E:68:EF:24:E9:DD:55:18:94:2D:9A:31:ED:BE:D1:12
Authority key identifier: E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
Certificate issuer: /CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Certificate serial: 019923A0A7E20754E33E1A68D2D37D349059
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
Manifest number: 1645
Signing time: Sun 07 Sep 2025 10:02:35 +0000
Manifest this update: Sun 07 Sep 2025 10:02:35 +0000
Manifest next update: Mon 08 Sep 2025 10:02:35 +0000
Files and hashes: 1: 4rvHBn-KfFfWhtZ160aOmbhr1i0.crl (hash: iC0ut20r6r1yq12L1Cu+T7W6YrNYCBZiIpd8PfYMKDw=)
2: S9IbEuckGJ-9L5NueHluP1etdYo.roa (hash: 3hI+07Eg5raje1kn4kUfDxud5d5a2unK+1/vO0g99aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:a7:e2:07:54:e3:3e:1a:68:d2:d3:7d:34:90:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Validity
Not Before: Sep 7 10:02:35 2025 GMT
Not After : Sep 8 10:02:35 2025 GMT
Subject: CN=f2c649e49e68ef24e9dd5518942d9a31edbed112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f5:eb:ea:cb:51:d9:6a:42:1e:ad:31:eb:ed:
1c:c4:de:99:79:7a:b6:d3:a8:a7:5d:67:27:56:c4:
3a:17:af:49:fc:24:fd:05:39:88:ee:93:82:ed:f2:
1a:f0:1a:7b:1d:51:9a:53:d9:0e:76:a5:97:e6:87:
5a:a1:54:28:71:e9:fd:5a:9c:97:03:f0:d1:d0:49:
9c:0f:3d:56:0f:d0:69:bd:8a:8d:55:87:58:83:2a:
2a:14:2b:66:8d:10:2c:4d:78:e2:fc:c0:38:a2:8b:
66:33:10:ee:b9:bd:5c:bd:fc:86:c8:99:b0:a8:af:
18:ed:16:86:45:2a:dc:61:ea:1d:62:ab:54:ef:fd:
07:00:36:38:f4:d7:d2:02:3a:ac:be:5c:44:3d:8e:
10:45:4d:25:4e:b9:fe:e0:fe:1a:5a:a4:4a:fa:de:
41:98:cf:74:94:cc:b0:5a:83:a4:eb:f4:1c:2e:50:
25:3a:08:e1:40:d2:80:cd:b8:71:d2:1c:80:4c:de:
36:a0:8e:e7:db:0f:f1:5a:d7:bd:4f:54:01:22:90:
8f:34:c2:c6:a2:ba:af:23:37:86:38:24:1b:99:32:
cc:81:0f:f8:dc:19:0f:8e:c7:07:30:28:88:03:cb:
48:0c:b3:6a:ee:59:91:29:c1:80:bb:a9:19:7a:b8:
23:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C6:49:E4:9E:68:EF:24:E9:DD:55:18:94:2D:9A:31:ED:BE:D1:12
X509v3 Authority Key Identifier:
keyid:E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:90:43:ec:f5:ec:9e:27:c4:0f:ec:f4:33:23:3e:e2:a7:3a:
cd:a1:18:ea:40:b2:8e:81:5d:36:6e:4f:10:a9:cc:72:03:96:
f5:2e:14:79:3a:ff:b0:e0:13:18:dd:14:89:87:9a:b8:cc:b4:
53:9c:46:7d:6e:b8:63:2d:b0:86:a5:8a:de:86:db:99:2c:c1:
60:62:e5:e6:83:00:c8:60:50:3c:19:1f:56:25:e0:8b:48:ca:
60:ad:46:fd:b9:85:3a:c8:6d:e2:16:1b:70:41:8a:5b:59:a3:
d3:43:d6:ad:6f:56:1a:2a:ef:14:9b:36:b2:d3:db:cb:17:d6:
33:9d:92:ef:f8:92:97:85:6b:d4:e4:ac:f3:5d:73:4d:10:3c:
b2:d3:4c:2f:f2:c8:75:23:d1:70:65:ae:86:dc:e9:02:55:eb:
17:20:92:c8:02:86:99:bf:b3:96:ed:32:a1:4a:c9:cd:33:07:
50:7e:d6:77:a3:15:25:29:f8:67:14:6e:7b:6a:d4:6a:95:ad:
7f:55:64:2c:20:50:cc:af:e6:32:8a:ac:3c:a7:e2:a2:0d:e4:
73:3c:7f:c9:5f:85:bf:fe:0c:8c:c9:7d:0f:91:29:bd:9c:17:
0c:3d:8a:b1:08:df:a9:82:56:0d:50:76:71:49:30:5b:91:67:
4b:46:8a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:42:03 2025 by rpki-client