Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
File: 4KM3CoQbiT57aPhqOTNjWC4QVkg.mft (raw, json)
Hash identifier: vFu7kfRZ+tZBcfBX2hNlQb41b29X2ECTFKMyF8x0ULk=
Subject key identifier: 1E:84:1D:81:1A:D0:49:C9:B4:8A:BE:9E:91:71:10:89:FA:24:25:F4
Authority key identifier: E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
Certificate issuer: /CN=e0a3370a841b893e7b68f86a393363582e105648
Certificate serial: 019A4F623D13843AFC05C3FD0ED699B1ABE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
Manifest number: 0BE7
Signing time: Tue 04 Nov 2025 15:00:29 +0000
Manifest this update: Tue 04 Nov 2025 15:00:29 +0000
Manifest next update: Wed 05 Nov 2025 15:00:29 +0000
Files and hashes: 1: 4KM3CoQbiT57aPhqOTNjWC4QVkg.crl (hash: d08YehC2zyBUgNCNnRMzAtDg7r4O1K2WVFlUTh5PQII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:3d:13:84:3a:fc:05:c3:fd:0e:d6:99:b1:ab:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0a3370a841b893e7b68f86a393363582e105648
Validity
Not Before: Nov 4 15:00:29 2025 GMT
Not After : Nov 5 15:00:29 2025 GMT
Subject: CN=1e841d811ad049c9b48abe9e91711089fa2425f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:14:85:40:71:12:0a:5c:0f:b7:46:d0:92:00:
3e:89:18:97:90:06:e9:d5:80:27:00:d6:19:19:56:
e0:1f:6b:18:9d:f3:92:6e:8b:90:cc:9a:8b:08:59:
f2:85:a6:02:de:52:fa:82:93:1a:ff:9b:11:66:1c:
89:d8:74:84:0f:cf:2b:8e:69:56:81:c5:fa:3c:0e:
62:f6:88:6b:12:9f:3c:ab:31:43:fd:53:bc:f4:ee:
77:a8:57:71:32:1f:fd:67:ea:58:3b:95:42:aa:dc:
fa:92:02:65:bc:d6:0f:2d:f0:5c:ac:99:5d:fc:e4:
5c:f5:30:1f:18:64:96:43:02:2e:fc:1d:29:91:67:
39:a4:98:31:54:4e:19:1d:0c:7a:fd:22:49:5e:b0:
16:3e:81:e8:b0:dd:b7:fb:22:ba:71:8f:8a:20:fb:
37:b4:2c:6a:4c:68:c0:ce:e3:20:5a:9a:45:22:51:
a6:b4:dd:26:31:30:10:fa:ab:32:6b:8a:56:0e:72:
e1:c2:ab:33:ec:01:d4:cd:b3:57:54:c7:21:d8:25:
fd:72:4a:60:c8:56:93:89:b8:d3:37:e7:6b:52:7a:
f4:7d:c2:43:48:93:0d:4a:af:b3:9d:36:0b:ed:7b:
9f:73:5b:ee:b4:27:60:0a:8a:29:ef:63:ea:de:30:
e3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:84:1D:81:1A:D0:49:C9:B4:8A:BE:9E:91:71:10:89:FA:24:25:F4
X509v3 Authority Key Identifier:
keyid:E0:A3:37:0A:84:1B:89:3E:7B:68:F8:6A:39:33:63:58:2E:10:56:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KM3CoQbiT57aPhqOTNjWC4QVkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/95746e-be52-42ee-9cc8-c3edb4d8f71e/1/4KM3CoQbiT57aPhqOTNjWC4QVkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:61:4b:08:20:4e:49:da:2d:37:06:5a:67:b2:cf:89:1a:59:
ee:cb:8a:20:cd:53:af:69:fc:50:8d:3a:57:0c:ab:60:a0:a7:
6f:10:2b:9f:99:ea:10:69:04:c7:71:05:ae:9a:3d:44:24:a0:
5d:0e:17:46:c2:eb:42:a0:c5:ee:96:58:4c:7e:31:30:9e:8d:
07:12:b1:66:3b:8a:0b:88:b9:37:be:be:cb:4d:18:56:a9:70:
bb:26:51:af:27:c7:a5:0d:44:cc:47:74:72:35:27:a2:83:03:
43:1f:3a:5c:2f:cd:21:55:54:c6:39:c3:84:5d:6c:e8:cd:48:
2f:3b:d7:ec:58:c4:e4:a4:5c:bb:d4:41:ea:db:72:26:e5:d8:
cc:6b:1f:74:20:f6:7c:6d:b6:35:6f:74:31:76:dc:19:c9:a1:
87:a4:e6:8f:88:99:5a:e8:c1:ea:77:74:e1:4c:3f:84:08:f4:
07:95:c5:bd:6a:4f:d4:36:68:c7:78:c2:e1:36:7c:a0:c0:5a:
a3:0e:a6:85:d9:82:66:2a:95:b2:35:5b:9e:3a:a1:0b:5f:82:
74:9d:ad:13:41:36:73:14:9b:39:23:5d:10:3f:9b:f2:d5:44:
4b:ba:fc:8e:f5:33:1a:f2:94:32:87:08:b5:ea:2f:3b:c4:9b:
a8:a8:55:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYj0ThDr8BcP9DtaZsavoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwYTMzNzBhODQxYjg5M2U3YjY4Zjg2YTM5MzM2MzU4MmUx
MDU2NDgwHhcNMjUxMTA0MTUwMDI5WhcNMjUxMTA1MTUwMDI5WjAzMTEwLwYDVQQD
EygxZTg0MWQ4MTFhZDA0OWM5YjQ4YWJlOWU5MTcxMTA4OWZhMjQyNWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshSFQHESClwPt0bQkgA+iRiXkAbp
1YAnANYZGVbgH2sYnfOSbouQzJqLCFnyhaYC3lL6gpMa/5sRZhyJ2HSED88rjmlW
gcX6PA5i9ohrEp88qzFD/VO89O53qFdxMh/9Z+pYO5VCqtz6kgJlvNYPLfBcrJld
/ORc9TAfGGSWQwIu/B0pkWc5pJgxVE4ZHQx6/SJJXrAWPoHosN23+yK6cY+KIPs3
tCxqTGjAzuMgWppFIlGmtN0mMTAQ+qsya4pWDnLhwqsz7AHUzbNXVMch2CX9ckpg
yFaTibjTN+drUnr0fcJDSJMNSq+znTYL7Xufc1vutCdgCoop72Pq3jDj4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB6EHYEa0EnJtIq+npFxEIn6JCX0MB8GA1UdIwQY
MBaAFOCjNwqEG4k+e2j4ajkzY1guEFZIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEtNM0NvUWJpVDU3YVBocU9UTmpXQzRRVmtnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC85NTc0NmUtYmU1Mi00MmVlLTljYzgt
YzNlZGI0ZDhmNzFlLzEvNEtNM0NvUWJpVDU3YVBocU9UTmpXQzRRVmtnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC85NTc0NmUtYmU1Mi00MmVlLTljYzgtYzNlZGI0ZDhmNzFl
LzEvNEtNM0NvUWJpVDU3YVBocU9UTmpXQzRRVmtnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo2FLCCBO
SdotNwZaZ7LPiRpZ7suKIM1Tr2n8UI06VwyrYKCnbxArn5nqEGkEx3EFrpo9RCSg
XQ4XRsLrQqDF7pZYTH4xMJ6NBxKxZjuKC4i5N76+y00YVqlwuyZRryfHpQ1EzEd0
cjUnooMDQx86XC/NIVVUxjnDhF1s6M1ILzvX7FjE5KRcu9RB6ttyJuXYzGsfdCD2
fG22NW90MXbcGcmhh6Tmj4iZWujB6nd04Uw/hAj0B5XFvWpP1DZox3jC4TZ8oMBa
ow6mhdmCZiqVsjVbnjqhC1+CdJ2tE0E2cxSbOSNdED+b8tVES7r8jvUzGvKUMocI
teovO8SbqKhVzw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 17:52:44 2025 by rpki-client