Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
File: g4heOKx3ysBEgptTyzslq-Yen2Q.mft (raw, json)
Hash identifier: bkM2PCQXSpkw8VLGY1iNd/GsMrdA3SH2fqNAy8rTJEo=
Subject key identifier: 9E:82:52:31:16:93:23:3C:0C:DC:27:23:20:F0:17:87:B4:0A:94:51
Authority key identifier: 83:88:5E:38:AC:77:CA:C0:44:82:9B:53:CB:3B:25:AB:E6:1E:9F:64
Certificate issuer: /CN=83885e38ac77cac044829b53cb3b25abe61e9f64
Certificate serial: 019A4E4FEBD6C3D1BDCDCBBABF7208522E91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
Manifest number: 071D
Signing time: Tue 04 Nov 2025 10:00:51 +0000
Manifest this update: Tue 04 Nov 2025 10:00:51 +0000
Manifest next update: Wed 05 Nov 2025 10:00:51 +0000
Files and hashes: 1: c8jr9RK1jYIIU9J_37XkvdpDKPQ.roa (hash: FypzDCTYnJOnd+60Jv/bTV7/TP6pt9nWegIKGFpscqo=)
2: g4heOKx3ysBEgptTyzslq-Yen2Q.crl (hash: q9/qo/31ECaRML/nMXtMRLiZLtMEZtoQvbvUFFsx9fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:eb:d6:c3:d1:bd:cd:cb:ba:bf:72:08:52:2e:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83885e38ac77cac044829b53cb3b25abe61e9f64
Validity
Not Before: Nov 4 10:00:51 2025 GMT
Not After : Nov 5 10:00:51 2025 GMT
Subject: CN=9e8252311693233c0cdc272320f01787b40a9451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a7:ab:9c:d7:96:95:7f:9a:1b:f6:47:db:9d:
80:b1:36:c2:bd:03:3c:12:a8:a1:de:79:03:06:6e:
7a:eb:a6:07:85:40:80:ee:17:c6:24:f6:38:d9:2b:
42:03:71:d0:29:ab:a1:1a:56:d2:2e:e8:55:3d:22:
48:9a:3c:a0:4a:e4:aa:32:ea:e1:13:00:fd:23:b9:
e7:f7:07:d3:56:96:cc:f5:00:e8:87:26:2a:2e:e4:
72:78:cc:c8:74:88:a6:68:35:b3:ee:2f:a4:3c:25:
a0:38:63:9d:62:60:dd:64:14:8b:86:bb:e1:9c:e7:
22:a8:0a:24:12:d1:66:66:8b:7c:31:34:31:3b:8d:
bc:25:71:23:48:3e:92:c6:c9:83:3b:69:c4:dd:40:
15:70:bb:02:ec:d7:22:3a:eb:19:47:43:f2:f9:1e:
6a:e4:65:d3:0e:d4:80:a7:60:75:c9:9c:5a:fe:b2:
51:55:67:ae:a8:48:c8:a3:86:ba:45:6b:30:1d:43:
c2:df:5a:b1:6d:fd:fb:28:42:db:8d:b3:a9:b3:f6:
3e:93:e3:58:40:a4:12:df:0c:0b:65:09:28:31:0e:
f4:c5:81:d6:12:25:9a:d0:3d:c9:2e:f5:00:5c:4c:
7d:13:0f:2c:d1:b9:cf:a2:c8:2c:10:64:7b:43:49:
89:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:82:52:31:16:93:23:3C:0C:DC:27:23:20:F0:17:87:B4:0A:94:51
X509v3 Authority Key Identifier:
keyid:83:88:5E:38:AC:77:CA:C0:44:82:9B:53:CB:3B:25:AB:E6:1E:9F:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:2f:61:b0:db:04:f1:96:e6:9f:11:43:1e:5c:f5:5b:bf:35:
ea:e5:7a:fc:bd:02:b3:bb:ab:ae:ca:49:42:dd:31:6b:2e:0d:
a3:62:d2:5c:a8:4c:f4:6d:45:2d:fb:f4:56:6a:50:93:87:50:
a4:8f:27:09:4b:4d:3f:32:93:34:2c:5d:78:34:58:97:1b:a6:
1c:3f:d1:e2:fc:8a:14:c1:24:7e:ef:00:0a:82:a4:b1:e0:e1:
2b:55:0b:c2:a4:d3:f7:f4:eb:c9:78:b0:50:c0:1b:f7:77:1e:
7c:d6:5b:da:c7:41:b4:9d:d2:f1:bc:96:22:04:58:fe:a9:7c:
d8:d6:5d:77:c3:35:7e:82:f0:2f:11:bd:05:c9:d1:6d:8d:a4:
1d:09:c5:aa:90:a7:11:8a:07:9b:ac:3c:95:3a:ca:d7:6b:df:
46:db:9d:2f:76:f0:a0:91:3d:86:76:1a:78:0b:94:66:84:9d:
40:ef:a4:35:83:53:56:0b:87:6c:c2:16:83:08:d4:2b:4c:98:
7d:65:8a:80:b5:08:8c:ef:9b:2a:5d:96:20:be:5e:9d:4b:a4:
5f:7a:79:1f:f3:0b:90:54:bb:2d:c5:c1:c7:ac:9e:5b:10:11:
18:dd:24:4e:9d:7a:a4:bc:e8:33:e1:28:d9:4b:e0:6c:58:bf:
05:74:a6:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOT+vWw9G9zcu6v3IIUi6RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzODg1ZTM4YWM3N2NhYzA0NDgyOWI1M2NiM2IyNWFiZTYx
ZTlmNjQwHhcNMjUxMTA0MTAwMDUxWhcNMjUxMTA1MTAwMDUxWjAzMTEwLwYDVQQD
Eyg5ZTgyNTIzMTE2OTMyMzNjMGNkYzI3MjMyMGYwMTc4N2I0MGE5NDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA06ernNeWlX+aG/ZH252AsTbCvQM8
Eqih3nkDBm5666YHhUCA7hfGJPY42StCA3HQKauhGlbSLuhVPSJImjygSuSqMurh
EwD9I7nn9wfTVpbM9QDohyYqLuRyeMzIdIimaDWz7i+kPCWgOGOdYmDdZBSLhrvh
nOciqAokEtFmZot8MTQxO428JXEjSD6SxsmDO2nE3UAVcLsC7NciOusZR0Py+R5q
5GXTDtSAp2B1yZxa/rJRVWeuqEjIo4a6RWswHUPC31qxbf37KELbjbOps/Y+k+NY
QKQS3wwLZQkoMQ70xYHWEiWa0D3JLvUAXEx9Ew8s0bnPosgsEGR7Q0mJLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ6CUjEWkyM8DNwnIyDwF4e0CpRRMB8GA1UdIwQY
MBaAFIOIXjisd8rARIKbU8s7JavmHp9kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzRoZU9LeDN5c0JFZ3B0VHl6c2xxLVllbjJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC80NjM2ODYtY2U0OC00ODdjLWJjM2Qt
YTJmNTllYWU4NmQwLzEvZzRoZU9LeDN5c0JFZ3B0VHl6c2xxLVllbjJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC80NjM2ODYtY2U0OC00ODdjLWJjM2QtYTJmNTllYWU4NmQw
LzEvZzRoZU9LeDN5c0JFZ3B0VHl6c2xxLVllbjJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAii9hsNsE
8ZbmnxFDHlz1W7816uV6/L0Cs7urrspJQt0xay4No2LSXKhM9G1FLfv0VmpQk4dQ
pI8nCUtNPzKTNCxdeDRYlxumHD/R4vyKFMEkfu8ACoKkseDhK1ULwqTT9/TryXiw
UMAb93cefNZb2sdBtJ3S8byWIgRY/ql82NZdd8M1foLwLxG9BcnRbY2kHQnFqpCn
EYoHm6w8lTrK12vfRtudL3bwoJE9hnYaeAuUZoSdQO+kNYNTVguHbMIWgwjUK0yY
fWWKgLUIjO+bKl2WIL5enUukX3p5H/MLkFS7LcXBx6yeWxARGN0kTp16pLzoM+Eo
2UvgbFi/BXSmVA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:48:03 2025 by rpki-client