Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
File: g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft (raw, json)
Hash identifier: aNwvH4TLCefLig2e7YYpLtGDbn8Db7PN+Mv4VWooDKY=
Subject key identifier: D9:AF:A1:A1:C6:2A:0C:64:74:70:A7:3F:A3:02:35:43:96:45:DF:BD
Authority key identifier: 83:8C:4F:81:0D:7A:20:A7:83:A4:FA:B1:C0:34:46:7B:82:50:51:B9
Certificate issuer: /CN=838c4f810d7a20a783a4fab1c034467b825051b9
Certificate serial: 019872CF4C48594C571CD850B4BD779F949B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
Manifest number: 1615
Signing time: Mon 04 Aug 2025 02:00:44 +0000
Manifest this update: Mon 04 Aug 2025 02:00:44 +0000
Manifest next update: Tue 05 Aug 2025 02:00:44 +0000
Files and hashes: 1: JRNBLXBQWgTuBg1-jZxrM7iYCuQ.roa (hash: A/80zWYF3RYk10mzwst52/4Qz1yzT35DfBM28lDeN+s=)
2: g4xPgQ16IKeDpPqxwDRGe4JQUbk.crl (hash: xOCdTaZVSf1WLLHQd/Yd1JaKYkedPvymnjXDb5Rs3o8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:4c:48:59:4c:57:1c:d8:50:b4:bd:77:9f:94:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=838c4f810d7a20a783a4fab1c034467b825051b9
Validity
Not Before: Aug 4 02:00:44 2025 GMT
Not After : Aug 5 02:00:44 2025 GMT
Subject: CN=d9afa1a1c62a0c647470a73fa30235439645dfbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:92:23:66:9f:99:ed:bb:48:a0:df:9e:f9:e7:
44:fd:99:60:d9:af:f2:e7:b5:49:24:74:f6:45:f0:
30:58:5d:84:fb:f0:59:de:53:49:b9:1d:c7:e2:9e:
17:5c:81:ff:49:49:0c:2f:fe:ec:89:58:75:d0:66:
f6:8b:d8:f9:d4:8d:a0:62:b8:77:72:35:07:b3:f3:
82:94:61:28:3c:f8:3e:74:e0:82:cd:d7:e7:5c:ec:
37:ff:12:4b:50:c0:d7:cb:a7:c7:e7:64:7b:26:71:
7c:94:ab:f3:cc:57:10:65:44:d4:a0:02:05:44:a0:
11:ad:3e:28:40:76:7d:19:6e:9d:0a:37:d9:ec:06:
cb:c7:94:19:1e:d0:de:c3:d9:b6:4b:16:d0:49:7b:
d5:ed:a8:9e:a7:bd:57:14:71:63:bd:47:3e:02:3c:
e6:de:61:76:fd:6e:d6:c5:e9:31:e3:63:96:31:df:
de:49:c1:c1:ee:4f:0b:49:bf:34:86:34:12:a3:d4:
1b:b7:6b:7a:41:53:81:c6:4b:6b:be:b1:c8:b3:84:
5d:35:4d:fa:0d:cb:d0:33:c3:93:f3:4e:d1:c9:ed:
25:6f:14:9e:4f:d7:54:34:be:87:79:12:72:1c:50:
8a:99:2a:ed:fe:61:b7:1d:46:6b:97:fd:94:2c:1a:
46:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:AF:A1:A1:C6:2A:0C:64:74:70:A7:3F:A3:02:35:43:96:45:DF:BD
X509v3 Authority Key Identifier:
keyid:83:8C:4F:81:0D:7A:20:A7:83:A4:FA:B1:C0:34:46:7B:82:50:51:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g4xPgQ16IKeDpPqxwDRGe4JQUbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/250423-fa91-4a22-b83a-83e47580b3ec/1/g4xPgQ16IKeDpPqxwDRGe4JQUbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:8f:8f:b1:61:59:59:f8:a1:cf:4a:61:7c:2f:a7:9f:c0:0e:
59:37:47:e1:8b:2b:c1:41:d2:2f:e3:dc:ae:a3:ac:81:33:59:
3c:ba:f3:a0:70:3d:2c:7f:93:96:35:8d:e1:b8:d0:32:41:4f:
b6:1d:79:e9:58:d9:d7:50:0c:2c:50:1f:cc:da:d5:93:34:27:
21:62:5c:7d:eb:8c:95:30:e9:07:66:15:10:53:80:4b:a9:d2:
a1:76:5c:df:41:96:28:c0:60:81:8d:ef:48:20:81:ed:b8:cb:
7a:18:42:b0:a0:bc:01:31:49:fc:a6:38:0f:03:f2:00:e2:31:
15:b7:3e:c7:b7:a9:85:be:46:90:ff:3e:9f:ad:3e:ce:b3:ef:
eb:cb:88:75:af:d2:6b:41:c3:c3:a1:d0:09:3d:ba:90:92:21:
4b:8b:2d:8f:2c:bd:cb:c8:b6:56:9c:7f:92:ac:28:5c:fa:28:
33:bb:dc:95:d1:d5:97:c9:33:81:e6:97:d2:f3:9f:fd:13:51:
06:92:d2:74:86:41:6d:5f:ea:68:78:d2:a4:93:ff:a0:e3:b5:
8e:cf:59:93:cc:0a:16:63:62:a9:a5:47:d3:85:d7:98:c1:7c:
f2:e2:12:02:8b:9f:f2:3f:21:c1:72:03:1b:8d:cf:8f:97:9f:
e6:1b:51:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhyz0xIWUxXHNhQtL13n5SbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzOGM0ZjgxMGQ3YTIwYTc4M2E0ZmFiMWMwMzQ0NjdiODI1
MDUxYjkwHhcNMjUwODA0MDIwMDQ0WhcNMjUwODA1MDIwMDQ0WjAzMTEwLwYDVQQD
EyhkOWFmYTFhMWM2MmEwYzY0NzQ3MGE3M2ZhMzAyMzU0Mzk2NDVkZmJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspIjZp+Z7btIoN+e+edE/Zlg2a/y
57VJJHT2RfAwWF2E+/BZ3lNJuR3H4p4XXIH/SUkML/7siVh10Gb2i9j51I2gYrh3
cjUHs/OClGEoPPg+dOCCzdfnXOw3/xJLUMDXy6fH52R7JnF8lKvzzFcQZUTUoAIF
RKARrT4oQHZ9GW6dCjfZ7AbLx5QZHtDew9m2SxbQSXvV7aiep71XFHFjvUc+Ajzm
3mF2/W7Wxekx42OWMd/eScHB7k8LSb80hjQSo9Qbt2t6QVOBxktrvrHIs4RdNU36
DcvQM8OT807Rye0lbxSeT9dUNL6HeRJyHFCKmSrt/mG3HUZrl/2ULBpGtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNmvoaHGKgxkdHCnP6MCNUOWRd+9MB8GA1UdIwQY
MBaAFIOMT4ENeiCng6T6scA0RnuCUFG5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzR4UGdRMTZJS2VEcFBxeHdEUkdlNEpRVWJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy8yNTA0MjMtZmE5MS00YTIyLWI4M2Et
ODNlNDc1ODBiM2VjLzEvZzR4UGdRMTZJS2VEcFBxeHdEUkdlNEpRVWJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy8yNTA0MjMtZmE5MS00YTIyLWI4M2EtODNlNDc1ODBiM2Vj
LzEvZzR4UGdRMTZJS2VEcFBxeHdEUkdlNEpRVWJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGI+PsWFZ
Wfihz0phfC+nn8AOWTdH4YsrwUHSL+PcrqOsgTNZPLrzoHA9LH+TljWN4bjQMkFP
th156VjZ11AMLFAfzNrVkzQnIWJcfeuMlTDpB2YVEFOAS6nSoXZc30GWKMBggY3v
SCCB7bjLehhCsKC8ATFJ/KY4DwPyAOIxFbc+x7ephb5GkP8+n60+zrPv68uIda/S
a0HDw6HQCT26kJIhS4stjyy9y8i2Vpx/kqwoXPooM7vcldHVl8kzgeaX0vOf/RNR
BpLSdIZBbV/qaHjSpJP/oOO1js9Zk8wKFmNiqaVH04XXmMF88uISAouf8j8hwXID
G43Pj5ef5htRcw==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:19:30 2025 by rpki-client