Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
File: 4z2f_axY52ErCVFE_sBrolhapqg.mft (raw, json)
Hash identifier: 2dDWrgvfB+0AXf3R58D/yUI9/BqftyZxG3ud76olwgw=
Subject key identifier: 9D:E5:FF:B1:84:2F:E8:1C:E3:C5:F1:56:09:52:8F:58:AC:D1:A7:D1
Authority key identifier: E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
Certificate issuer: /CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Certificate serial: 019922553E56CF0D110B11F969E60C5D4DC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
Manifest number: 13C8
Signing time: Sun 07 Sep 2025 04:00:35 +0000
Manifest this update: Sun 07 Sep 2025 04:00:35 +0000
Manifest next update: Mon 08 Sep 2025 04:00:35 +0000
Files and hashes: 1: 4z2f_axY52ErCVFE_sBrolhapqg.crl (hash: MgQBaR4RGeF81MRG+BH5M8XS+vB55QXsEXywkdSRn58=)
2: kDBI9l_YMVWuxKarh0cfBt-co8E.roa (hash: Cmec62sAgGLnTuvkkeIcYM85TIkQ74UMRSA2arV5eDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:3e:56:cf:0d:11:0b:11:f9:69:e6:0c:5d:4d:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Validity
Not Before: Sep 7 04:00:35 2025 GMT
Not After : Sep 8 04:00:35 2025 GMT
Subject: CN=9de5ffb1842fe81ce3c5f15609528f58acd1a7d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4e:96:ef:7d:60:9e:72:97:21:c9:1e:21:c8:
20:70:dc:f3:e0:5c:ae:f0:27:03:14:e2:10:4f:34:
af:ce:42:0d:7a:52:1c:fd:d6:55:35:44:6c:16:c1:
dd:83:6b:c0:0e:cc:5e:9f:56:e6:3e:56:41:5b:a1:
9e:4f:59:cd:f3:3f:91:9c:d5:d9:d2:0d:06:27:99:
6f:03:4b:69:75:c1:ea:d4:cf:ee:ea:fe:8a:7b:49:
2b:d8:9a:40:20:6c:3d:e1:8f:90:63:1a:4a:d1:5d:
19:cd:c7:96:01:24:ad:4f:c3:ef:22:d9:f3:95:58:
66:c8:f2:1d:8c:6b:07:ce:a0:36:ee:ea:15:7b:82:
b5:ca:25:2e:be:13:31:15:51:0c:af:37:3f:14:62:
d4:b8:5a:f1:92:78:9d:17:11:ed:cf:23:fe:ae:86:
a8:d9:ce:85:90:ed:96:a1:69:84:84:0a:02:51:72:
b9:5e:0a:4f:13:15:c8:c9:f8:00:50:b5:9e:7c:39:
b8:50:eb:da:82:82:9c:ae:99:b0:ef:16:c4:ed:6d:
0a:06:c4:3c:3d:9a:fa:7a:87:37:7e:63:31:74:6f:
eb:da:c8:cd:ee:3b:c9:bb:fe:26:a9:65:58:ae:54:
1b:24:00:17:77:b5:1b:97:19:0e:b9:49:d1:b9:e5:
8d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E5:FF:B1:84:2F:E8:1C:E3:C5:F1:56:09:52:8F:58:AC:D1:A7:D1
X509v3 Authority Key Identifier:
keyid:E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:8b:c8:8c:bb:bd:59:82:95:71:1d:90:45:a0:ef:a4:d8:9e:
61:2d:bf:0c:9e:d5:63:a5:06:80:21:00:ba:7b:cc:d8:9a:a0:
cf:00:80:df:13:6b:04:12:57:96:d7:2c:8d:9d:56:21:16:63:
08:e1:a9:6c:a3:0d:55:74:2d:8f:2c:75:41:7d:e5:69:b4:cb:
11:d0:76:d1:f4:e9:60:3b:79:b2:28:9e:e0:ee:f3:a9:d3:86:
be:72:cd:cf:8f:0b:22:39:49:0f:01:ad:75:10:f4:61:f1:72:
d5:c9:93:db:a3:d1:92:e2:bd:37:ae:e1:d0:3b:3e:23:19:9a:
30:21:99:fb:aa:d2:83:ae:b4:ae:3a:be:83:ab:ae:d4:88:23:
b3:95:4d:b8:51:00:45:17:9d:70:2a:9a:a5:ba:c6:c8:22:8d:
48:dd:58:c6:76:5b:d5:3b:b0:2a:99:e4:bc:68:d6:7a:4c:82:
ca:b9:c4:a9:0a:41:22:1c:8f:88:05:0a:74:69:e7:e8:7c:38:
ce:5f:b9:6e:ed:24:8b:c8:f1:fc:c5:cf:16:e4:e7:7a:06:9c:
65:59:86:f3:80:8b:3b:9d:5c:ac:5d:a2:49:74:98:0b:9d:15:
73:fe:97:69:9a:25:fc:27:84:9f:38:72:00:8b:83:12:f5:8f:
06:9c:3e:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVT5Wzw0RCxH5aeYMXU3FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzM2Q5ZmZkYWM1OGU3NjEyYjA5NTE0NGZlYzA2YmEyNTg1
YWE2YTgwHhcNMjUwOTA3MDQwMDM1WhcNMjUwOTA4MDQwMDM1WjAzMTEwLwYDVQQD
Eyg5ZGU1ZmZiMTg0MmZlODFjZTNjNWYxNTYwOTUyOGY1OGFjZDFhN2QxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmk6W731gnnKXIckeIcggcNzz4Fyu
8CcDFOIQTzSvzkINelIc/dZVNURsFsHdg2vADsxen1bmPlZBW6GeT1nN8z+RnNXZ
0g0GJ5lvA0tpdcHq1M/u6v6Ke0kr2JpAIGw94Y+QYxpK0V0ZzceWASStT8PvItnz
lVhmyPIdjGsHzqA27uoVe4K1yiUuvhMxFVEMrzc/FGLUuFrxknidFxHtzyP+roao
2c6FkO2WoWmEhAoCUXK5XgpPExXIyfgAULWefDm4UOvagoKcrpmw7xbE7W0KBsQ8
PZr6eoc3fmMxdG/r2sjN7jvJu/4mqWVYrlQbJAAXd7UblxkOuUnRueWN7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ3l/7GEL+gc48XxVglSj1is0afRMB8GA1UdIwQY
MBaAFOM9n/2sWOdhKwlRRP7Aa6JYWqaoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHoyZl9heFk1MkVyQ1ZGRV9zQnJvbGhhcHFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hMzQyMDAtNGI5Yi00MzM0LWExNTkt
OWNiMjk2MzAxZTY0LzEvNHoyZl9heFk1MkVyQ1ZGRV9zQnJvbGhhcHFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9hMzQyMDAtNGI5Yi00MzM0LWExNTktOWNiMjk2MzAxZTY0
LzEvNHoyZl9heFk1MkVyQ1ZGRV9zQnJvbGhhcHFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjovIjLu9
WYKVcR2QRaDvpNieYS2/DJ7VY6UGgCEAunvM2JqgzwCA3xNrBBJXltcsjZ1WIRZj
COGpbKMNVXQtjyx1QX3labTLEdB20fTpYDt5siie4O7zqdOGvnLNz48LIjlJDwGt
dRD0YfFy1cmT26PRkuK9N67h0Ds+IxmaMCGZ+6rSg660rjq+g6uu1Igjs5VNuFEA
RRedcCqapbrGyCKNSN1YxnZb1TuwKpnkvGjWekyCyrnEqQpBIhyPiAUKdGnn6Hw4
zl+5bu0ki8jx/MXPFuTnegacZVmG84CLO51crF2iSXSYC50Vc/6XaZol/CeEnzhy
AIuDEvWPBpw+IQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:32:42 2025 by rpki-client