Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
File: 4qEN5v-uWQQnJEoDND22asVkJ1o.mft (raw, json)
Hash identifier: kCwbYyc1NwuRiXh5Ymw4wUUWqxMr6Nd6hoGzrFWfeBc=
Subject key identifier: B0:92:0E:DE:97:9E:37:CF:68:D4:60:5B:38:9D:A9:B6:DF:9B:57:E0
Authority key identifier: E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
Certificate issuer: /CN=e2a10de6ffae590427244a03343db66ac564275a
Certificate serial: 019A4EF4D1519F4D849073F2961AE1A8F5A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
Manifest number: 1455
Signing time: Tue 04 Nov 2025 13:00:58 +0000
Manifest this update: Tue 04 Nov 2025 13:00:58 +0000
Manifest next update: Wed 05 Nov 2025 13:00:58 +0000
Files and hashes: 1: 4qEN5v-uWQQnJEoDND22asVkJ1o.crl (hash: 6KWumobHey3fuKQOwe6v89ivsmrGLg1te8NIBawROQE=)
2: EMEQainrdjhvrSxfRt2EdTwfFho.roa (hash: MgfrBxxTqDVEh7a/Ypney2yykLPSmFU/4+sRkVkl74s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:d1:51:9f:4d:84:90:73:f2:96:1a:e1:a8:f5:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2a10de6ffae590427244a03343db66ac564275a
Validity
Not Before: Nov 4 13:00:58 2025 GMT
Not After : Nov 5 13:00:58 2025 GMT
Subject: CN=b0920ede979e37cf68d4605b389da9b6df9b57e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b0:87:67:9d:7f:14:93:38:f4:a5:51:2c:0c:
5a:b3:ac:f0:cc:09:e9:22:3c:56:b2:ed:27:47:59:
66:db:3b:62:b2:30:83:55:fd:5c:73:4f:b5:15:59:
d4:a9:20:f3:d8:31:b5:80:d6:d0:16:55:6d:5c:9b:
68:76:25:dc:9c:64:0d:c4:bd:4c:5e:b6:2a:1b:b5:
72:1c:87:ad:ee:c9:8e:b8:7b:8c:4f:e0:db:c5:e7:
3c:32:4c:ce:4e:9e:6b:1f:10:15:63:d6:39:31:e0:
9d:1e:88:83:1e:d9:2b:25:f3:23:75:ef:de:c3:50:
7d:ab:11:20:6b:e7:94:06:8c:ec:6f:db:45:3b:51:
6a:0d:39:5d:0b:f4:64:fe:c6:52:18:c8:65:2b:53:
f3:fd:20:67:cb:f4:9d:a4:22:d5:7e:8f:96:07:4d:
38:56:99:ad:a5:cf:86:43:6e:03:aa:c4:2f:23:ea:
69:49:29:38:3e:04:a4:2e:3a:4c:a7:84:f8:10:0b:
b2:dc:7c:8c:2e:be:db:ed:bb:4f:03:b5:f4:3c:9f:
11:86:96:17:83:54:a1:98:b9:92:90:15:16:58:ed:
ee:fd:c2:a4:c8:43:c4:a9:51:4d:5c:df:9d:29:0b:
da:f6:6d:97:7d:42:cc:63:39:b2:91:fd:2d:83:17:
86:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:92:0E:DE:97:9E:37:CF:68:D4:60:5B:38:9D:A9:B6:DF:9B:57:E0
X509v3 Authority Key Identifier:
keyid:E2:A1:0D:E6:FF:AE:59:04:27:24:4A:03:34:3D:B6:6A:C5:64:27:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4qEN5v-uWQQnJEoDND22asVkJ1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a8bb57-c181-4695-9be7-57554058620b/1/4qEN5v-uWQQnJEoDND22asVkJ1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:89:de:d4:fd:f7:ce:59:63:62:c8:a6:46:20:71:c3:75:b8:
e1:33:b2:0c:7c:71:c7:07:60:f0:1e:10:da:4f:7f:07:58:1c:
b7:df:8a:d2:a1:76:6c:59:80:f8:c7:76:a8:44:86:9b:d9:6b:
41:ff:0a:d4:1d:a3:fd:b8:50:59:81:d8:ca:cc:ef:7b:fc:49:
bf:af:2e:58:e0:db:76:7d:d1:66:37:fc:69:0c:88:a3:44:c1:
28:1b:97:a6:2b:43:f4:da:0f:17:c0:e1:8e:e3:4a:bc:c8:06:
8c:01:5c:50:4e:14:da:3d:0d:30:d9:42:7d:cd:19:89:a3:d6:
05:2b:cf:2a:1c:a6:39:62:13:da:28:4d:31:d6:62:de:14:be:
bd:aa:25:4f:51:c3:3f:fb:fd:e0:51:a9:31:4c:50:1a:5c:0c:
4c:10:93:66:9d:fb:03:9b:54:1b:8c:40:71:7a:f0:40:e5:ba:
6b:de:a4:dd:f2:d6:bf:9e:14:19:56:a6:28:ea:95:5a:8e:4e:
8d:18:15:87:46:38:1c:4d:b4:ef:cc:a3:c9:98:c5:f7:e7:4d:
79:93:d8:e0:6b:36:79:83:55:1d:64:b9:ee:9c:b0:ff:b4:67:
5f:69:f5:d8:9b:16:01:03:59:89:ca:7a:96:ef:88:4d:e1:4b:
66:16:49:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9NFRn02EkHPylhrhqPWiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYTEwZGU2ZmZhZTU5MDQyNzI0NGEwMzM0M2RiNjZhYzU2
NDI3NWEwHhcNMjUxMTA0MTMwMDU4WhcNMjUxMTA1MTMwMDU4WjAzMTEwLwYDVQQD
EyhiMDkyMGVkZTk3OWUzN2NmNjhkNDYwNWIzODlkYTliNmRmOWI1N2UwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA77CHZ51/FJM49KVRLAxas6zwzAnp
IjxWsu0nR1lm2ztisjCDVf1cc0+1FVnUqSDz2DG1gNbQFlVtXJtodiXcnGQNxL1M
XrYqG7VyHIet7smOuHuMT+Dbxec8MkzOTp5rHxAVY9Y5MeCdHoiDHtkrJfMjde/e
w1B9qxEga+eUBozsb9tFO1FqDTldC/Rk/sZSGMhlK1Pz/SBny/SdpCLVfo+WB004
Vpmtpc+GQ24DqsQvI+ppSSk4PgSkLjpMp4T4EAuy3HyMLr7b7btPA7X0PJ8RhpYX
g1ShmLmSkBUWWO3u/cKkyEPEqVFNXN+dKQva9m2XfULMYzmykf0tgxeGJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLCSDt6XnjfPaNRgWzidqbbfm1fgMB8GA1UdIwQY
MBaAFOKhDeb/rlkEJyRKAzQ9tmrFZCdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hOGJiNTctYzE4MS00Njk1LTliZTct
NTc1NTQwNTg2MjBiLzEvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9hOGJiNTctYzE4MS00Njk1LTliZTctNTc1NTQwNTg2MjBi
LzEvNHFFTjV2LXVXUVFuSkVvRE5EMjJhc1ZrSjFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWone1P33
zlljYsimRiBxw3W44TOyDHxxxwdg8B4Q2k9/B1gct9+K0qF2bFmA+Md2qESGm9lr
Qf8K1B2j/bhQWYHYyszve/xJv68uWODbdn3RZjf8aQyIo0TBKBuXpitD9NoPF8Dh
juNKvMgGjAFcUE4U2j0NMNlCfc0ZiaPWBSvPKhymOWIT2ihNMdZi3hS+vaolT1HD
P/v94FGpMUxQGlwMTBCTZp37A5tUG4xAcXrwQOW6a96k3fLWv54UGVamKOqVWo5O
jRgVh0Y4HE2078yjyZjF9+dNeZPY4Gs2eYNVHWS57pyw/7RnX2n12JsWAQNZicp6
lu+ITeFLZhZJcA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:21:52 2025 by rpki-client