Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
File: 4tNxxKeqqFX4zDsa6oAilCCoDyA.mft (raw, json)
Hash identifier: Att34QPskJRPiXRma7Z6YwaTiwr4R4KHMkzJ8Ds7Q2w=
Subject key identifier: 0F:CD:F0:4A:7E:1C:21:8C:41:41:4B:DF:F9:83:04:FF:76:2C:22:71
Authority key identifier: E2:D3:71:C4:A7:AA:A8:55:F8:CC:3B:1A:EA:80:22:94:20:A8:0F:20
Certificate issuer: /CN=e2d371c4a7aaa855f8cc3b1aea80229420a80f20
Certificate serial: 019A533FA2F5CC822F4570B4865618B23841
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
Manifest number: 1711
Signing time: Wed 05 Nov 2025 09:01:10 +0000
Manifest this update: Wed 05 Nov 2025 09:01:10 +0000
Manifest next update: Thu 06 Nov 2025 09:01:10 +0000
Files and hashes: 1: 4tNxxKeqqFX4zDsa6oAilCCoDyA.crl (hash: IAJFE5Ac6K5xPCMusJqAzDFFT8G6fVYWJTRNZJAUs9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:3f:a2:f5:cc:82:2f:45:70:b4:86:56:18:b2:38:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d371c4a7aaa855f8cc3b1aea80229420a80f20
Validity
Not Before: Nov 5 09:01:10 2025 GMT
Not After : Nov 6 09:01:10 2025 GMT
Subject: CN=0fcdf04a7e1c218c41414bdff98304ff762c2271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:da:f5:a5:19:bf:50:8e:19:ee:10:39:02:88:
be:53:50:69:c0:40:1d:9c:a4:dd:37:8f:4d:6d:98:
b3:66:da:6d:f3:06:f2:59:db:b5:17:20:da:6e:20:
c4:81:b4:c3:75:61:a6:2b:27:65:fb:74:97:ad:e6:
43:fd:7a:8a:07:34:7c:7b:30:e7:aa:14:c2:44:49:
e4:23:fd:d2:23:3e:05:fa:01:64:72:05:26:7c:7e:
ca:0d:17:fb:f4:05:30:d6:d9:21:bd:b4:61:51:ac:
6d:be:83:25:17:99:09:21:69:9c:f2:ac:60:02:b5:
10:a8:31:01:11:6c:70:23:57:b4:ba:b1:ed:2b:cc:
62:19:aa:73:40:c8:cb:a5:91:d1:59:69:dd:db:f9:
95:69:03:18:a1:5d:19:97:b0:0c:b9:c4:27:06:24:
31:3a:36:a6:b6:8b:33:44:2e:c5:9f:be:56:08:de:
79:b7:fb:23:53:e7:81:5a:5a:bf:48:61:8a:2e:e9:
df:42:28:ed:36:fd:52:b0:b1:f1:a9:2c:de:0b:2b:
8c:65:b0:9f:2b:d6:c7:0b:81:04:17:83:48:92:38:
d9:ef:88:08:29:e5:bd:11:07:86:e2:18:3b:2f:a9:
2c:8f:60:ab:fa:4b:b7:e7:d2:fb:f2:f4:c6:41:dc:
bc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:CD:F0:4A:7E:1C:21:8C:41:41:4B:DF:F9:83:04:FF:76:2C:22:71
X509v3 Authority Key Identifier:
keyid:E2:D3:71:C4:A7:AA:A8:55:F8:CC:3B:1A:EA:80:22:94:20:A8:0F:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tNxxKeqqFX4zDsa6oAilCCoDyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/feaa30-142a-4fe0-aab9-907a58c994c2/1/4tNxxKeqqFX4zDsa6oAilCCoDyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:10:ed:d8:94:bc:5e:2f:94:94:35:0d:7f:97:e0:95:e7:ed:
2d:29:63:e5:dd:59:0a:97:7d:1b:45:ff:e8:22:dd:ee:5c:a5:
24:92:54:58:10:b2:8f:ad:50:16:ff:68:02:a1:6d:43:b6:cf:
9a:98:02:4f:5e:88:57:1f:a5:da:e7:65:fa:c5:df:ad:b1:31:
d9:2a:5e:09:1e:65:07:b7:c9:86:fa:48:43:fa:e0:b7:f2:9c:
42:29:dd:79:1c:e6:1c:fd:6e:4d:fe:f9:e4:d3:65:98:1e:d6:
8c:ad:b1:7b:53:6f:f9:f5:83:93:d9:de:e6:44:b1:cb:9a:39:
15:c3:7a:fa:00:17:09:9e:d4:c6:6c:43:39:c9:5e:51:09:e6:
24:a5:74:47:22:41:70:8c:db:3a:5c:99:5d:46:0a:68:13:b6:
97:d8:d2:bc:52:70:8e:c9:c6:38:73:c2:ab:93:05:b0:a3:fc:
4a:ec:03:9b:60:57:1c:c1:b9:dd:c9:6a:db:ef:31:f3:64:a0:
97:b0:40:6c:e6:cc:95:b2:57:a1:86:4c:a0:89:2e:07:0e:61:
6b:a1:aa:e2:5a:a5:30:d4:fa:7a:f2:db:0b:f0:15:bc:24:eb:
d6:db:0e:c2:4a:5c:dd:7e:4e:bd:ed:66:48:04:6d:03:7b:d9:
ac:05:79:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpTP6L1zIIvRXC0hlYYsjhBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyZDM3MWM0YTdhYWE4NTVmOGNjM2IxYWVhODAyMjk0MjBh
ODBmMjAwHhcNMjUxMTA1MDkwMTEwWhcNMjUxMTA2MDkwMTEwWjAzMTEwLwYDVQQD
EygwZmNkZjA0YTdlMWMyMThjNDE0MTRiZGZmOTgzMDRmZjc2MmMyMjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkdr1pRm/UI4Z7hA5Aoi+U1BpwEAd
nKTdN49NbZizZtpt8wbyWdu1FyDabiDEgbTDdWGmKydl+3SXreZD/XqKBzR8ezDn
qhTCREnkI/3SIz4F+gFkcgUmfH7KDRf79AUw1tkhvbRhUaxtvoMlF5kJIWmc8qxg
ArUQqDEBEWxwI1e0urHtK8xiGapzQMjLpZHRWWnd2/mVaQMYoV0Zl7AMucQnBiQx
OjamtoszRC7Fn75WCN55t/sjU+eBWlq/SGGKLunfQijtNv1SsLHxqSzeCyuMZbCf
K9bHC4EEF4NIkjjZ74gIKeW9EQeG4hg7L6ksj2Cr+ku359L78vTGQdy8sQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA/N8Ep+HCGMQUFL3/mDBP92LCJxMB8GA1UdIwQY
MBaAFOLTccSnqqhV+Mw7GuqAIpQgqA8gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHROeHhLZXFxRlg0ekRzYTZvQWlsQ0NvRHlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9mZWFhMzAtMTQyYS00ZmUwLWFhYjkt
OTA3YTU4Yzk5NGMyLzEvNHROeHhLZXFxRlg0ekRzYTZvQWlsQ0NvRHlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9mZWFhMzAtMTQyYS00ZmUwLWFhYjktOTA3YTU4Yzk5NGMy
LzEvNHROeHhLZXFxRlg0ekRzYTZvQWlsQ0NvRHlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATRDt2JS8
Xi+UlDUNf5fgleftLSlj5d1ZCpd9G0X/6CLd7lylJJJUWBCyj61QFv9oAqFtQ7bP
mpgCT16IVx+l2udl+sXfrbEx2SpeCR5lB7fJhvpIQ/rgt/KcQindeRzmHP1uTf75
5NNlmB7WjK2xe1Nv+fWDk9ne5kSxy5o5FcN6+gAXCZ7UxmxDOcleUQnmJKV0RyJB
cIzbOlyZXUYKaBO2l9jSvFJwjsnGOHPCq5MFsKP8SuwDm2BXHMG53clq2+8x82Sg
l7BAbObMlbJXoYZMoIkuBw5ha6Gq4lqlMNT6evLbC/AVvCTr1tsOwkpc3X5Ove1m
SARtA3vZrAV57A==
-----END CERTIFICATE-----
Generated at Wed Nov 5 11:26:44 2025 by rpki-client