
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
File: 4auG-AxLsqxW5B7HokauKWnY01g.mft (raw, json)
Hash identifier: EDYyKNi6/IL7B5X1WwhLe2fnyQDobxIWBGzhWOWXQ8w=
Subject key identifier: 99:EB:02:1A:37:FF:D3:C5:A9:31:D7:E3:51:0C:39:38:D9:D6:9C:53
Authority key identifier: E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
Certificate issuer: /CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Certificate serial: 0197575A935E5AF03EEFB652B743F81E4439
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
Manifest number: 054D
Signing time: Tue 10 Jun 2025 01:00:43 +0000
Manifest this update: Tue 10 Jun 2025 01:00:43 +0000
Manifest next update: Wed 11 Jun 2025 01:00:43 +0000
Files and hashes: 1: 4auG-AxLsqxW5B7HokauKWnY01g.crl (hash: oZ3KliMvUYYE/Bw5hy2NinoXsukLmPhcKFmaaIy86LQ=)
2: IrEzCg-L6ChV6NO0z_pSKTvObkE.roa (hash: BAxTmTfKNgnausi613sLgqp7n2C4MuqhHvDS7/1g8aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:5a:93:5e:5a:f0:3e:ef:b6:52:b7:43:f8:1e:44:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ab86f80c4bb2ac56e41ec7a246ae2969d8d358
Validity
Not Before: Jun 10 01:00:43 2025 GMT
Not After : Jun 11 01:00:43 2025 GMT
Subject: CN=99eb021a37ffd3c5a931d7e3510c3938d9d69c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b7:7a:74:87:a2:5d:f4:ed:56:8c:4c:4c:2a:
86:63:72:a1:be:ac:ee:76:fa:4f:f5:a7:c1:cb:d9:
4f:1a:ac:97:fa:1b:f8:bc:9e:75:e2:47:70:ed:4a:
9e:c6:2b:cf:2e:65:37:2a:75:3b:a8:b4:2a:8e:60:
0a:3c:9b:f3:83:39:01:f6:cf:fe:12:30:4d:a3:86:
22:70:99:10:cd:26:e7:39:84:91:50:6b:09:8d:1a:
18:d0:63:0b:2f:ae:dc:cf:3f:42:8a:4c:f5:1c:d6:
38:fa:cc:c3:98:ae:3b:80:97:e9:d3:a2:0a:be:8c:
1b:83:c0:ef:d8:ad:cc:15:34:86:d4:a2:7c:db:56:
9d:29:93:24:6b:52:e8:64:6e:4c:92:5b:f4:63:63:
d1:79:3d:bd:04:b2:22:fe:2d:1c:df:75:85:59:d0:
5c:cd:6b:f4:9e:33:32:83:dd:b8:4b:e7:56:06:72:
59:45:a2:b9:14:dc:f3:05:d2:02:5d:2f:24:19:0d:
20:f8:e2:8e:05:4f:73:12:f0:b8:c5:bd:d4:bf:fd:
7a:72:25:de:73:6a:72:e0:34:43:fb:15:56:64:dd:
28:ee:a5:9d:de:3e:97:29:8d:c1:f5:27:39:ad:b3:
82:87:4b:1d:17:2f:ec:c2:37:c7:e5:09:10:f8:41:
49:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EB:02:1A:37:FF:D3:C5:A9:31:D7:E3:51:0C:39:38:D9:D6:9C:53
X509v3 Authority Key Identifier:
keyid:E1:AB:86:F8:0C:4B:B2:AC:56:E4:1E:C7:A2:46:AE:29:69:D8:D3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4auG-AxLsqxW5B7HokauKWnY01g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1240eb-bab4-45ad-9387-516f11acb3ae/1/4auG-AxLsqxW5B7HokauKWnY01g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:33:7f:47:37:d8:a0:99:53:30:cd:f4:77:5f:5c:21:d8:1c:
1e:ea:59:94:b9:88:27:96:e0:61:60:01:5d:88:b7:89:57:b1:
30:a6:01:bd:05:b9:51:36:f1:18:62:0f:31:91:31:7d:92:ff:
de:88:a5:a6:54:b3:5f:6d:cd:b4:dc:85:9b:c7:72:cb:0a:bb:
7a:d9:a6:01:06:23:07:14:e8:d6:4c:96:10:2e:85:d9:0d:9b:
f6:73:be:96:96:90:28:f1:ab:33:80:25:68:7a:e1:dc:30:e6:
1e:bb:ca:ee:63:5f:c6:1f:75:f2:c5:49:a2:fd:2b:a5:ef:b9:
e5:ab:4e:77:61:d7:43:d2:01:1f:47:d7:de:d7:c5:11:35:2a:
a4:84:96:5a:67:21:37:d2:e8:44:66:5f:5e:84:21:a9:cb:04:
7c:14:bd:31:43:7d:c6:6d:4c:3f:4a:f9:f6:8e:ef:72:82:94:
b4:33:82:b0:75:99:1e:f8:1f:af:ed:04:f8:c5:a6:79:8a:06:
18:47:89:ec:dd:64:31:19:9e:03:05:59:30:9a:5b:5c:be:de:
c1:b5:95:29:9a:6d:f6:af:0e:2e:89:44:5a:a1:49:73:de:08:
ff:4d:63:cf:ad:74:f5:58:64:69:38:01:b7:e6:c2:f4:f6:2c:
c7:bf:f6:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 10:47:16 2025 by rpki-client