
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
File: 4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft (raw, json)
Hash identifier: 25/LKhBnh7XWJfnM7ORc6ZKfaoKC5QJpp2HAV4j7IM0=
Subject key identifier: 44:FB:1C:A6:BD:BF:3D:89:F4:EF:37:08:84:F4:C2:DB:E9:B3:0C:44
Authority key identifier: E3:34:EC:39:34:48:D8:3B:F1:51:5F:49:67:A4:48:09:8E:55:FB:43
Certificate issuer: /CN=e334ec393448d83bf1515f4967a448098e55fb43
Certificate serial: 019874191C1E20944DDBE1F2D53AED90D022
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
Manifest number: 1616
Signing time: Mon 04 Aug 2025 08:00:59 +0000
Manifest this update: Mon 04 Aug 2025 08:00:59 +0000
Manifest next update: Tue 05 Aug 2025 08:00:59 +0000
Files and hashes: 1: 3i7bDwmXfkGeboYerA9gz4okFig.roa (hash: fWhHLCsrKiodDbQX5MlZg8yk8IDQZFwIAhXPpQk2VnY=)
2: 4zTsOTRI2DvxUV9JZ6RICY5V-0M.crl (hash: MLP4IYSDX/DHeqSBQHzCJqmdoKtJfR8szKsVABH/+J0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:19:1c:1e:20:94:4d:db:e1:f2:d5:3a:ed:90:d0:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e334ec393448d83bf1515f4967a448098e55fb43
Validity
Not Before: Aug 4 08:00:59 2025 GMT
Not After : Aug 5 08:00:59 2025 GMT
Subject: CN=44fb1ca6bdbf3d89f4ef370884f4c2dbe9b30c44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4a:67:37:a3:1a:c8:a2:04:54:8d:ea:03:80:
1a:96:8d:1f:88:c8:d8:f9:7b:c6:ae:23:96:d4:66:
3e:68:3a:6a:b2:55:47:2f:f5:f9:4e:57:e9:a1:31:
eb:2b:13:c9:e5:69:d0:5b:33:d0:1d:7f:8e:18:09:
26:96:0f:e7:98:ef:60:23:b2:30:5a:12:99:c7:d6:
70:96:e8:ae:65:34:f2:8a:8b:ec:60:42:80:3c:d0:
cb:6e:6d:1c:63:f0:fe:67:e5:e8:97:a1:72:18:59:
0a:83:ce:84:31:3e:85:75:31:9f:69:21:75:50:12:
9e:2e:54:4f:d9:a8:bc:04:d3:44:f9:eb:f8:5e:98:
b0:78:a2:40:4e:ab:06:99:2d:b9:10:78:af:4c:bb:
13:0a:49:a2:8a:2c:3e:5f:71:be:1f:ec:60:03:69:
03:2d:6e:43:a7:d7:c2:6e:06:3f:11:ef:82:3b:14:
c0:a3:01:00:a8:a9:41:09:a3:0e:06:08:5a:06:f5:
2e:66:61:ad:d4:7b:47:c6:31:4e:94:22:44:21:40:
8c:a5:d3:e9:49:32:50:cc:e2:da:80:35:be:ab:62:
11:58:08:e1:75:9c:e3:0f:13:56:34:d5:8b:82:49:
90:0a:a8:84:92:37:fd:e6:a3:23:ef:01:28:35:0a:
5e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:FB:1C:A6:BD:BF:3D:89:F4:EF:37:08:84:F4:C2:DB:E9:B3:0C:44
X509v3 Authority Key Identifier:
keyid:E3:34:EC:39:34:48:D8:3B:F1:51:5F:49:67:A4:48:09:8E:55:FB:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zTsOTRI2DvxUV9JZ6RICY5V-0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/19bd8a-c6f1-42e2-8460-cdab19a3fdeb/1/4zTsOTRI2DvxUV9JZ6RICY5V-0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:59:ae:12:73:5e:0f:b0:c2:8a:37:49:7d:bb:30:7a:8b:27:
24:a2:62:d6:c6:4b:d9:d0:04:30:25:24:ba:b8:00:c6:53:1b:
f2:e9:7f:48:13:02:72:e5:18:35:96:29:45:31:4b:de:67:57:
8e:59:eb:51:66:84:15:66:bb:14:63:cb:e9:ea:d4:a2:0d:5d:
4d:bf:8a:63:0d:4e:a3:d2:8a:29:4e:0d:a3:3d:16:c9:ef:db:
fc:94:9d:fe:5c:42:96:23:a6:a2:1c:50:eb:d9:7e:c6:31:bc:
3a:21:b1:db:8a:32:bf:88:9a:e7:70:b4:45:f3:4d:b2:54:e8:
0a:6d:d9:48:d3:db:ae:8e:87:0d:bc:db:fe:d1:7a:eb:7a:00:
c2:1a:03:98:a7:22:5b:f5:6b:4d:da:d3:65:ee:ae:84:cc:b8:
27:43:1a:4b:b9:2a:7d:2b:49:db:63:7d:fa:93:3c:b0:12:2b:
be:1f:7b:cf:99:98:2b:cd:b8:ea:25:87:fb:21:1a:4e:e1:9a:
ab:9d:70:f7:68:d9:2f:40:6b:a4:59:b9:05:37:6b:00:89:87:
c1:ed:a0:70:b5:8f:3a:1b:2e:42:95:81:0d:5f:9a:40:15:fc:
dc:9a:7f:40:8c:b7:ae:33:e6:fa:07:0b:c6:16:93:96:cc:77:
9d:5e:7f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:06:04 2025 by rpki-client