Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
File: 4ygMY1Kgv7t50knIh17RhuzOioY.mft (raw, json)
Hash identifier: T0Rw6AOSav8a2Md88OiUQQlcXodG4dCxuE2SuTXYJrg=
Subject key identifier: CE:28:DD:1F:EF:EB:75:60:76:0D:AD:D3:7A:7B:3E:4D:51:DD:F7:6A
Authority key identifier: E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
Certificate issuer: /CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Certificate serial: 019922FAD7C037893C0E31F83A0241C830F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
Manifest number: 1678
Signing time: Sun 07 Sep 2025 07:01:28 +0000
Manifest this update: Sun 07 Sep 2025 07:01:28 +0000
Manifest next update: Mon 08 Sep 2025 07:01:28 +0000
Files and hashes: 1: 4ygMY1Kgv7t50knIh17RhuzOioY.crl (hash: TUdFPJ4lpdecfVF0nQP4n3mSvY+bTS0dErdhUIDIMUw=)
2: LKQwgiepoVu5_u8taIAcRutuJ-s.roa (hash: g/2UuKpKO1KSqMbVUrFxetjbdTbJKbXQ9uje0qgEhYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:d7:c0:37:89:3c:0e:31:f8:3a:02:41:c8:30:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3280c6352a0bfbb79d249c8875ed186ecce8a86
Validity
Not Before: Sep 7 07:01:28 2025 GMT
Not After : Sep 8 07:01:28 2025 GMT
Subject: CN=ce28dd1fefeb7560760dadd37a7b3e4d51ddf76a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9e:6b:b8:3e:87:df:b1:df:39:85:a4:64:01:
25:0f:84:e9:97:a0:f7:7b:de:b8:b1:fe:53:46:7b:
34:97:13:56:bb:f4:83:6a:23:87:3d:0d:2d:2a:7a:
f9:b5:30:3e:76:43:14:23:03:17:e6:99:04:45:9f:
f3:de:a2:e2:e9:29:a9:4e:58:7e:bf:d3:6c:e4:ce:
66:b3:d6:c9:36:01:bf:5d:d2:42:84:a5:af:94:5c:
af:00:75:70:a1:d7:c8:d2:9b:4f:f9:c7:f7:3c:5d:
28:21:12:7f:d3:47:5b:5c:3e:6f:1c:26:ee:1c:4f:
8b:81:ae:21:f5:d6:06:7b:9e:d1:ea:02:ce:00:7f:
ed:14:9b:a8:23:2b:83:0e:fa:bb:42:2b:10:71:8c:
c8:79:4d:12:7d:fd:3a:e0:cc:6f:f6:a6:c4:23:09:
7e:fe:01:10:a6:62:2b:06:ab:ee:a5:7e:fb:1a:35:
de:2c:b0:cf:ad:c5:68:37:e7:8c:b9:ec:d3:44:fc:
d6:19:c4:77:85:3f:c7:fa:fe:d7:84:8e:f8:ab:55:
fd:9b:12:64:5f:c4:4f:4b:37:ea:80:14:50:cf:f3:
10:05:d1:ea:d5:d3:98:04:6b:90:95:e5:2d:a6:b6:
da:81:64:bd:65:e9:db:f1:40:0b:37:43:e0:3a:40:
ea:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:28:DD:1F:EF:EB:75:60:76:0D:AD:D3:7A:7B:3E:4D:51:DD:F7:6A
X509v3 Authority Key Identifier:
keyid:E3:28:0C:63:52:A0:BF:BB:79:D2:49:C8:87:5E:D1:86:EC:CE:8A:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ygMY1Kgv7t50knIh17RhuzOioY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/59a032-c384-43df-8c9d-ef0b82189444/1/4ygMY1Kgv7t50knIh17RhuzOioY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:58:c0:16:f5:00:b7:dd:59:e2:f7:41:fd:e3:67:46:d7:af:
46:f5:bb:71:e6:85:3d:3a:13:79:93:67:71:03:af:38:40:ba:
7d:60:52:7d:3a:6c:e9:e7:50:aa:0a:ef:b6:e7:40:66:64:4d:
37:dc:bd:49:db:6f:6c:cd:9b:82:94:d6:46:b8:ec:ec:b7:84:
e3:0c:dc:2a:64:3e:b5:4c:d7:89:48:c2:26:9d:dd:d5:d4:a9:
29:1e:96:df:f1:a9:1d:e4:2a:3c:90:06:a1:be:5a:7c:93:c7:
62:4b:80:04:96:f3:3a:a1:63:8f:41:0f:37:cb:5f:0d:89:a6:
f4:78:f3:e8:c1:f7:55:21:8b:8e:aa:8d:e2:21:8c:48:05:31:
15:7a:fd:a3:99:e4:54:1f:92:5b:26:1b:ba:25:01:11:30:3f:
a5:e9:bc:7a:a3:ec:1f:54:d2:6a:85:8e:d1:50:e2:72:e9:8b:
d3:b9:9b:65:3a:02:1e:5c:07:4c:a0:04:d0:d6:7d:78:21:37:
e0:51:65:64:e6:cd:d8:91:95:7c:d9:90:0f:51:c2:c7:f8:bb:
c5:f4:f8:ca:ed:bd:2a:19:e8:68:33:39:41:f7:39:b3:a8:d1:
7b:f8:05:21:8b:2a:86:17:59:b9:05:a8:fe:72:ac:f7:39:0a:
a8:84:8f:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+tfAN4k8DjH4OgJByDD2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzMjgwYzYzNTJhMGJmYmI3OWQyNDljODg3NWVkMTg2ZWNj
ZThhODYwHhcNMjUwOTA3MDcwMTI4WhcNMjUwOTA4MDcwMTI4WjAzMTEwLwYDVQQD
EyhjZTI4ZGQxZmVmZWI3NTYwNzYwZGFkZDM3YTdiM2U0ZDUxZGRmNzZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZ5ruD6H37HfOYWkZAElD4Tpl6D3
e964sf5TRns0lxNWu/SDaiOHPQ0tKnr5tTA+dkMUIwMX5pkERZ/z3qLi6SmpTlh+
v9Ns5M5ms9bJNgG/XdJChKWvlFyvAHVwodfI0ptP+cf3PF0oIRJ/00dbXD5vHCbu
HE+Lga4h9dYGe57R6gLOAH/tFJuoIyuDDvq7QisQcYzIeU0Sff064Mxv9qbEIwl+
/gEQpmIrBqvupX77GjXeLLDPrcVoN+eMuezTRPzWGcR3hT/H+v7XhI74q1X9mxJk
X8RPSzfqgBRQz/MQBdHq1dOYBGuQleUtprbagWS9Zenb8UALN0PgOkDqVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM4o3R/v63Vgdg2t03p7Pk1R3fdqMB8GA1UdIwQY
MBaAFOMoDGNSoL+7edJJyIde0YbszoqGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHlnTVkxS2d2N3Q1MGtuSWgxN1JodXpPaW9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC81OWEwMzItYzM4NC00M2RmLThjOWQt
ZWYwYjgyMTg5NDQ0LzEvNHlnTVkxS2d2N3Q1MGtuSWgxN1JodXpPaW9ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC81OWEwMzItYzM4NC00M2RmLThjOWQtZWYwYjgyMTg5NDQ0
LzEvNHlnTVkxS2d2N3Q1MGtuSWgxN1JodXpPaW9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhFjAFvUA
t91Z4vdB/eNnRtevRvW7ceaFPToTeZNncQOvOEC6fWBSfTps6edQqgrvtudAZmRN
N9y9SdtvbM2bgpTWRrjs7LeE4wzcKmQ+tUzXiUjCJp3d1dSpKR6W3/GpHeQqPJAG
ob5afJPHYkuABJbzOqFjj0EPN8tfDYmm9Hjz6MH3VSGLjqqN4iGMSAUxFXr9o5nk
VB+SWyYbuiUBETA/pem8eqPsH1TSaoWO0VDicumL07mbZToCHlwHTKAE0NZ9eCE3
4FFlZObN2JGVfNmQD1HCx/i7xfT4yu29KhnoaDM5Qfc5s6jRe/gFIYsqhhdZuQWo
/nKs9zkKqISP0g==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:21 2025 by rpki-client